码迷,mamicode.com
首页 > Web开发 > 详细

LAMP之apache2.4

时间:2016-04-08 20:09:24      阅读:364      评论:0      收藏:0      [点我收藏+]

标签:虚拟主机 web httpd

http2.4系列相对于http2.2系列新增的功能有

 1) MPM支持在运行时装载

 2)支持event

 3)异步读写

 4)在每模块及每目录上指定日志级别

 5)每请求配置

 6)增强版的表达式分析器

 7)毫秒级的keepalive timeout

 8)支持主机名的虚拟主机不在需要NameVirtualHost指令

 9)支持使用自定义变量

  新增的模块由mod_proxy_fcgi,mod_ratelimit,mod_request,mod_remoteip

  对应IP的访问做了修改,不在使用order,allow deny这些机制,而是统一使用require进行

一:环境准备:

# yum groupinstall "Development tools" -y

# yum groupinstall "Desktop Platform Development" -y

# yum groupinstall "Server Platform Development" -y

wget -O /etc/yum.repos.d/epel.repo http://mirrors.aliyun.com/repo/epel-6.repo

yum install gd-devel libjpeg-devel libpng-devel freetype-devel libxml2-devel curl-devel bzip2-devel net-snmp-devel pcre-devel openssl-devel  mhash-devel  mcrypt libmcrypt-devel libcurl-devel

二:安装arp

[root@master1 ~]# tar xf apr-1.5.2.tar.gz
[root@master1 ~]# cd apr-1.5.2

[root@master1 apr-1.5.2]# ./configure --prefix=/usr/local/apr

[root@master1 apr-1.5.2]# make && make install


三:安装arp-util

[root@master1 ~]# tar xf apr-util-1.5.4.tar.gz
[root@master1 ~]# cd apr-util-1.5.4

[root@master1 apr-util-1.5.4]# ./configure --prefix=/usr/local/apr-util --with-apr=/usr/local/apr

[root@master1 apr-util-1.5.4]# make && make install


四:安装httpd

[root@master1 ~]# tar xf httpd-2.4.18.tar.gz
[root@master1 ~]# cd httpd-2.4.18

[root@master1 httpd-2.4.18]# ./configure --prefix=/usr/local/httpd --sysconfdir=/etc/httpd --enable-so --enable--ssl --enable-cgi --enable-rewrite --with-zlib --with-pcre --with-apr=/usr/local/apr --with-apr-util=/usr/local/apr-util --enable-modeles=most --enable-mpms-shared=all --with-mpm=event --with-sockets


1:导出httpd头文件
[root@master1 ~]# ln -sv /usr/local/httpd/include /usr/include/httpd
`/usr/include/httpd‘ -> `/usr/local/httpd/include‘

2:环境变量导出:

[root@master1 ~]# echo "export PATH=/usr/local/httpd/bin:$PATH" > /etc/profile.d/httpd.sh
[root@master1 ~]# source /etc/profile.d/httpd.sh 

3:建立启动脚本

#!/bin/bash
#
# httpd        Startup script for the Apache HTTP Server
#
# chkconfig: - 85 15
# description: The Apache HTTP Server is an efficient and extensible  \
#          server implementing the current HTTP standards.
# processname: httpd
# config: /etc/httpd/httpd.conf
# config: /etc/sysconfig/httpd
# pidfile: /var/run/httpd/httpd.pid
#
### BEGIN INIT INFO
# Provides: httpd
# Required-Start: $local_fs $remote_fs $network $named
# Required-Stop: $local_fs $remote_fs $network
# Should-Start: distcache
# Short-Description: start and stop Apache HTTP Server
# Description: The Apache HTTP Server is an extensible server
#  implementing the current HTTP standards.
### END INIT INFO
# Source function library.
. /etc/rc.d/init.d/functions
if [ -f /etc/sysconfig/httpd ]; then
        . /etc/sysconfig/httpd
fi
# Start httpd in the C locale by default.
HTTPD_LANG=${HTTPD_LANG-"C"}
# This will prevent initlog from swallowing up a pass-phrase prompt if
# mod_ssl needs a pass-phrase from the user.
INITLOG_ARGS=""
# Set HTTPD=/usr/sbin/httpd.worker in /etc/sysconfig/httpd to use a server
# with the thread-based "worker" MPM; BE WARNED that some modules may not
# work correctly with a thread-based MPM; notably PHP will refuse to start.
# Path to the apachectl script, server binary, and short-form for messages.
apachectl=/usr/local/httpd/bin/apachectl
httpd=/usr/local/httpd/bin/httpd
prog=httpd
pidfile=${PIDFILE-/var/run/httpd/httpd.pid}
lockfile=${LOCKFILE-/var/lock/subsys/httpd}
RETVAL=0
STOP_TIMEOUT=${STOP_TIMEOUT-10}
# The semantics of these two functions differ from the way apachectl does
# things -- attempting to start while running is a failure, and shutdown
# when not running is also a failure.  So we just do it the way init scripts
# are expected to behave here.
start() {
        echo -n $"Starting $prog: "
        LANG=$HTTPD_LANG daemon --pidfile=${pidfile} $httpd $OPTIONS
        RETVAL=$?
        echo
        [ $RETVAL = 0 ] && touch ${lockfile}
        return $RETVAL
}
# When stopping httpd, a delay (of default 10 second) is required
# before SIGKILLing the httpd parent; this gives enough time for the
# httpd parent to SIGKILL any errant children.
stop() {
    echo -n $"Stopping $prog: "
    killproc httpd
    RETVAL=$?
    echo
    [ $RETVAL = 0 ] && rm -f ${lockfile} ${pidfile}
}
reload() {
    echo -n $"Reloading $prog: "
    if ! LANG=$HTTPD_LANG $httpd $OPTIONS -t >&/dev/null; then
        RETVAL=6
        echo $"not reloading due to configuration syntax error"
        failure $"not reloading $httpd due to configuration syntax error"
    else
        # Force LSB behaviour from killproc
        LSB=1 killproc -p ${pidfile} $httpd -HUP
        RETVAL=$?
        if [ $RETVAL -eq 7 ]; then
            failure $"httpd shutdown"
        fi
    fi
    echo
}
# See how we were called.
case "$1" in
  start)
    start
    stop
    ;;
  status)
        status -p ${pidfile} $httpd
    RETVAL=$?
    ;;
  restart)
    stop
    start
    ;;
  condrestart|try-restart)
    if status -p ${pidfile} $httpd >&/dev/null; then
        stop
        start
    fi
    ;;
  force-reload|reload)
        reload
    ;;
  graceful|help|configtest|fullstatus)
    $apachectl $@
    RETVAL=$?
    ;;
  *)
    echo $"Usage: $prog {start|stop|restart|condrestart|try-restart|force-reload|reload|status|fullstatus|graceful|help|configtest}"
    RETVAL=2
esac
exit $RETVAL
                      

[root@master1 ~]# vim /etc/rc.d/init.d/httpd

[root@master1 ~]# chmod +x /etc/rc.d/init.d/httpd

[root@master1 ~]# chkconfig --add httpd

四:注意点:

--with-mpm=event 支持event 模型

--enable-so 支持动态装卸模块

--enable-modeles=most 启用大部分模块支持

--enable-mpms-shared=all  所有模块做成共享

 

--with--xxx  默认目录是/usr. 如果是自己编译,就指定目录。

/usr/local/apache24/build/config.nice 文件,是查看编译时用到的参数

httpd -M  查看启动的动态模块

 

五:httpd.conf 配置文件讲解

1:基于IP的控制法则

DocumentRoot "/usr/local/apache24/htdocs"

   <Directory "/usr/local/apache24/htdocs">

       Options Indexes FollowSymLinks

       AllowOverride None

       Require all granted

    </Directory>

控制特定的IP访问:

    Reauire all granted: 允许所有主机访问.

    Require all deny   : 拒绝所有主机访问

 控制特定的IP访问:

    Require ip IPADDR : 指定来源主机访问

    Require not ip IPADDR: 拒绝指定来源地址的主机访问。

                   IPADDR为下面几种形式:

                      ip: 192.168.1.1

                      Network/Mask: 192.168.1.1/255.255.255.0

                      Network/Length: 192.168.1.1/24

                      Net:  192.168

 

  控制特定主机(HOSTNAME)访问

     Require host HOSTNAME

     Require not host HOSTNAME

                      HOSTNAME为下面形式:

                       FQDN:特定主机

                       DOMAIN:指定域内所有主机。

 

 

2:虚拟主机:

   在httpd.conf关闭中心主机:#DocumentRoot

   #支持FQDN的不在需要NameVirtualHost指令

   在httpd.conf打开Include conf/extra/httpd-vhosts.conf 支持

 

  -------------例子如下--------------------------

    <VirtualHost *:80>

       DocumentRoot "/vhost/www.test.com"

       ServerName www.test.com

       ServerAlias test.com

       ErrorLog "logs/test_error_log"

       CustomLog "logs/test_access_log" combined

       <Directory "/vhost/www.test.com">

            Options None

            AllowOverride None

            Require all granted

       </Directory>

</VirtualHost>


基于用户验证

<VirtualHost *:80>

       DocumentRoot "/vhost/www.test2.com"

       ServerName www.test2.com

       ServerAlias test2.com

       ErrorLog "logs/test2_error_log"

       CustomLog "logs/test2_access_log" combined

       <Directory "/vhost/www.test2.com">

       Options None

       AllowOverride AuthConfig    //需要认证

       AuthType Basic                    //认证类型为基本认证

       AuthName "shouquan"        // 这个只是给用户显示一个标题

        AuthUserFile /etc/httpd/.userpasswd   // 认证的密码文件

        Require valid-user            //可以读取认证文件的用户,vaild-user 表示所有合法用户

       </Directory>

</VirtualHost>


3:生成认证文件 .userpasswd  用户为wskfnso

# htpasswd -c -m /etc/httpd/.userpasswd wskfnso

  ------------------------------------------------------

4:在window的hosts文件中添加对两个域名的解析.测试如下

技术分享



本文出自 “centos6 运维学习” 博客,请务必保留此出处http://wskfnso.blog.51cto.com/4025557/1761877

LAMP之apache2.4

标签:虚拟主机 web httpd

原文地址:http://wskfnso.blog.51cto.com/4025557/1761877

(0)
(0)
   
举报
评论 一句话评论(0
登录后才能评论!
© 2014 mamicode.com 版权所有  联系我们:gaon5@hotmail.com
迷上了代码!