域名查询权威网站,wordpress安全 插件,全网营销推广系统,广告营销案例分析目录
一、实验环境搭建
1. Centos 7-5——Client
2. Centos 7-1——网关服务器
3. Centos 7-2——Web1
4. Centos 7-3——Web2
5. Centos 7-4——Nginx
二、在Nginx服务器上搭建LNMP服务#xff0c;并且能够对外提供Discuz论坛服务#xff1b;在Web1、Web2服务器上搭建…目录
一、实验环境搭建
1. Centos 7-5——Client
2. Centos 7-1——网关服务器
3. Centos 7-2——Web1
4. Centos 7-3——Web2
5. Centos 7-4——Nginx
二、在Nginx服务器上搭建LNMP服务并且能够对外提供Discuz论坛服务在Web1、Web2服务器上搭建Tomcat 服务。
1.Nginx服务器——编译安装Nginx
2.Nginx服务器——搭建PHP
3.Nginx服务器——编译安装搭建Mysql
4.配置数据库
5.配置PHP测试页
6.安装论坛
7.Web1——搭建Tomcat
7.1安装Oracle JDK
7.2安装Tomcat
8.Web2——搭建Tomcat
8.1安装Oracle JDK
8.2安装Tomcat
三、为nginx服务配置虚拟主机新增两个域名 www.kgc.com 和 www.benet.com使用http://www.kgc.com/index.php可访问上一题的Discuz论坛页面。使用http://www.benet.com则访问/var/www/html目录中的index.html文件的内容内容自定义。
1.Nginx服务器配置
2.客户端配置
3.测试
四、对基于www.benet.com域名的虚拟机主机的nginx服务调优隐藏nginx版本号缓存静态图片网页时间为1天设置防盗链功能。
1.Nginx配置
2.测试
五、网关服务器搭建NFS服务提供的文件系统使用LVM类型共享目录名称为/mnt/nfs要求根据日期对Discuz论坛服务的访问日志进行日志分割要求每天生成一份日志文件保存到NFS服务共享的目录内。
1.网关服务器配置——搭建NFS服务
2.Nginx服务器——共享目录
3.日志分割
六、要求配置location匹配请求地址http://www.kgc.com/test/XXXX使用户访问该路径下的文件时返回/var/share/nginx/html/目录下的文件内容。
要求使用rewrite将使用域名www.benet.com 请求以 .php 结尾的访问都跳转到域名www.kgc.com上而且后面的参数保持不变比如访问http://www.benet.com/bbs/index.php跳转到http://www.kgc.com/bbs/index.php。
1.Nginx服务器配置
2.测试
七、在Nginx服务器上对基于www.benet.com域名的虚拟机主机设置动静分离由nginx提供静态页面服务将对 .jsp文件的动态页面请求转发到Tomcat 服务器处理并实现负载均衡
1.Nginx服务配置
2.Tomcat1服务器配置
3.Tomcat2服务器配置
4.测试
八、在网关服务器上设置SNAT/DNAT使client使用网关服务器的ens36接口的IP地址访问也可实现上一题的效果。
1.代理服务器配置
2.测试 服务器IP地址规划client12.0.0.12/24网关服务器ens36:12.0.0.1/24、ens33192.168.241.11/24Web1192.168.241.22/24Web2192.168.241.23/24Nginx192.168.241.24/24。 一、实验环境搭建
Centos7-5作为Client12.0.0.12/24Centos7-1作为网关服务器搭配两块网卡ens33 192.168.241.11/24ens36 12.0.0.1/24Centos7-2作为Web1192.168.241.22/24 提供web1服务Centos7-3作为Web2192.168.241.23/24 提供web2服务Centos7-4作为Nginx服务器192.168.241.24/24
1. Centos 7-5——Client 2. Centos 7-1——网关服务器 [rootlocalhost ~]#vim /etc/sysconfig/network-scripts/ifcfg-ens33[rootlocalhost ~]#cp /etc/sysconfig/network-scripts/ifcfg-ens33 /etc/sysconfig/network-scripts/ifcfg-ens36
[rootlocalhost ~]#vim /etc/sysconfig/network-scripts/ifcfg-ens36[rootlocalhost ~]#systemctl restart network
[rootlocalhost ~]#ifconfig
ens33: flags4163UP,BROADCAST,RUNNING,MULTICAST mtu 1500inet 192.168.241.11 netmask 255.255.255.0 broadcast 192.168.241.255inet6 fe80::de6f:32c8:5a64:a6b2 prefixlen 64 scopeid 0x20linkether 00:0c:29:51:4b:b5 txqueuelen 1000 (Ethernet)RX packets 2457 bytes 231114 (225.6 KiB)RX errors 0 dropped 0 overruns 0 frame 0TX packets 1289 bytes 162490 (158.6 KiB)TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0ens36: flags4163UP,BROADCAST,RUNNING,MULTICAST mtu 1500inet 12.0.0.1 netmask 255.255.255.0 broadcast 12.0.0.255inet6 fe80::8cb:b13b:40ac:6df1 prefixlen 64 scopeid 0x20linkether 00:0c:29:51:4b:bf txqueuelen 1000 (Ethernet)RX packets 557 bytes 36406 (35.5 KiB)RX errors 0 dropped 0 overruns 0 frame 0TX packets 345 bytes 60396 (58.9 KiB)TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0lo: flags73UP,LOOPBACK,RUNNING mtu 65536inet 127.0.0.1 netmask 255.0.0.0inet6 ::1 prefixlen 128 scopeid 0x10hostloop txqueuelen 1 (Local Loopback)RX packets 111 bytes 9742 (9.5 KiB)RX errors 0 dropped 0 overruns 0 frame 0TX packets 111 bytes 9742 (9.5 KiB)TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0virbr0: flags4099UP,BROADCAST,MULTICAST mtu 1500inet 192.168.122.1 netmask 255.255.255.0 broadcast 192.168.122.255ether 52:54:00:53:c1:45 txqueuelen 1000 (Ethernet)RX packets 0 bytes 0 (0.0 B)RX errors 0 dropped 0 overruns 0 frame 0TX packets 0 bytes 0 (0.0 B)TX errors 0 dropped 0 overruns 0 carrier 0 collisions 03. Centos 7-2——Web1
[rootnode2 ~]#ifconfig
ens33: flags4163UP,BROADCAST,RUNNING,MULTICAST mtu 1500inet 192.168.241.22 netmask 255.255.255.0 broadcast 192.168.241.255inet6 fe80::d9cd:6857:3bdc:7454 prefixlen 64 scopeid 0x20linkether 00:0c:29:3e:a0:08 txqueuelen 1000 (Ethernet)RX packets 1702 bytes 169840 (165.8 KiB)RX errors 0 dropped 0 overruns 0 frame 0TX packets 674 bytes 72150 (70.4 KiB)TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0lo: flags73UP,LOOPBACK,RUNNING mtu 65536inet 127.0.0.1 netmask 255.0.0.0inet6 ::1 prefixlen 128 scopeid 0x10hostloop txqueuelen 1 (Local Loopback)RX packets 64 bytes 5568 (5.4 KiB)RX errors 0 dropped 0 overruns 0 frame 0TX packets 64 bytes 5568 (5.4 KiB)TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0virbr0: flags4099UP,BROADCAST,MULTICAST mtu 1500inet 192.168.122.1 netmask 255.255.255.0 broadcast 192.168.122.255ether 52:54:00:fe:22:f2 txqueuelen 1000 (Ethernet)RX packets 0 bytes 0 (0.0 B)RX errors 0 dropped 0 overruns 0 frame 0TX packets 0 bytes 0 (0.0 B)TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
4. Centos 7-3——Web2
[rootnode3 ~]#ifconfig
ens33: flags4163UP,BROADCAST,RUNNING,MULTICAST mtu 1500inet 192.168.241.23 netmask 255.255.255.0 broadcast 192.168.241.255inet6 fe80::f11e:5019:be57:47b8 prefixlen 64 scopeid 0x20linkether 00:0c:29:6b:71:15 txqueuelen 1000 (Ethernet)RX packets 1174 bytes 121065 (118.2 KiB)RX errors 0 dropped 0 overruns 0 frame 0TX packets 246 bytes 25828 (25.2 KiB)TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0lo: flags73UP,LOOPBACK,RUNNING mtu 65536inet 127.0.0.1 netmask 255.0.0.0inet6 ::1 prefixlen 128 scopeid 0x10hostloop txqueuelen 1 (Local Loopback)RX packets 36 bytes 4212 (4.1 KiB)RX errors 0 dropped 0 overruns 0 frame 0TX packets 36 bytes 4212 (4.1 KiB)TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0virbr0: flags4099UP,BROADCAST,MULTICAST mtu 1500inet 192.168.122.1 netmask 255.255.255.0 broadcast 192.168.122.255ether 52:54:00:9d:e9:ac txqueuelen 1000 (Ethernet)RX packets 0 bytes 0 (0.0 B)RX errors 0 dropped 0 overruns 0 frame 0TX packets 0 bytes 0 (0.0 B)TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
5. Centos 7-4——Nginx
[rootG ~]#ifconfig
ens33: flags4163UP,BROADCAST,RUNNING,MULTICAST mtu 1500inet 192.168.241.24 netmask 255.255.255.0 broadcast 192.168.241.255inet6 fe80::871f:7f65:7279:5914 prefixlen 64 scopeid 0x20linkether 00:0c:29:8c:91:84 txqueuelen 1000 (Ethernet)RX packets 1407 bytes 140138 (136.8 KiB)RX errors 0 dropped 0 overruns 0 frame 0TX packets 481 bytes 45344 (44.2 KiB)TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0lo: flags73UP,LOOPBACK,RUNNING mtu 65536inet 127.0.0.1 netmask 255.0.0.0inet6 ::1 prefixlen 128 scopeid 0x10hostloop txqueuelen 1 (Local Loopback)RX packets 64 bytes 5248 (5.1 KiB)RX errors 0 dropped 0 overruns 0 frame 0TX packets 64 bytes 5248 (5.1 KiB)TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0virbr0: flags4099UP,BROADCAST,MULTICAST mtu 1500inet 192.168.122.1 netmask 255.255.255.0 broadcast 192.168.122.255ether 52:54:00:d2:18:b8 txqueuelen 1000 (Ethernet)RX packets 0 bytes 0 (0.0 B)RX errors 0 dropped 0 overruns 0 frame 0TX packets 0 bytes 0 (0.0 B)TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0二、在Nginx服务器上搭建LNMP服务并且能够对外提供Discuz论坛服务在Web1、Web2服务器上搭建Tomcat 服务。
Nginx搭建LNMP架构
1.Nginx服务器——编译安装Nginx
[rootG ~]#yum -y install pcre-devel zlib-devel gcc gcc-c make
#安装依赖环境
[rootG ~]#useradd -M -s /sbin/nologin nginx
#创建程序管理用户Nginx
[rootG opt]#cd /opt
[rootG opt]#wget http://nginx.org/download/nginx-1.18.0.tar.gz
#下载压缩文件
[rootG opt]#ls
nginx-1.18.0.tar.gz
[rootG opt]#tar xf nginx-1.18.0.tar.gz
[rootG opt]#cd nginx-1.18.0/
[rootG nginx-1.18.0]#./configure \--prefix/usr/local/nginx \--usernginx \--groupnginx \--with-http_stub_status_module
[rootG nginx-1.18.0]#make -j2
[rootG nginx-1.18.0]#make install
[rootG nginx-1.18.0]#ln -s /usr/local/nginx/sbin/nginx /usr/local/sbin/
[rootG nginx-1.18.0]#vim /lib/systemd/system/nginx.service
[rootG nginx-1.18.0]#cat /lib/systemd/system/nginx.service
[Unit]
Descriptionnginx
Afternetwork.target
[Service]
Typeforking
PIDFile/usr/local/nginx/logs/nginx.pid
ExecStart/usr/local/nginx/sbin/nginx
ExecReload/bin/kill -1 $MAINPID
ExecStop/bin/kill -3 $MAINPID
PrivateTmptrue
[Install]
WantedBymulti-user.target
[rootG nginx-1.18.0]#systemctl daemon-reload
[rootG nginx-1.18.0]#systemctl enable --now nginx.service
Created symlink from /etc/systemd/system/multi-user.target.wants/nginx.service to /usr/lib/systemd/system/nginx.service.
[rootG nginx-1.18.0]#systemctl status nginx.service
● nginx.service - nginxLoaded: loaded (/usr/lib/systemd/system/nginx.service; enabled; vendor preset: disabled)Active: active (running) since 六 2024-03-09 12:37:29 CST; 4s agoProcess: 39778 ExecStart/usr/local/nginx/sbin/nginx (codeexited, status0/SUCCESS)Main PID: 39779 (nginx)CGroup: /system.slice/nginx.service├─39779 nginx: master process /usr/local/nginx/sbin/nginx└─39780 nginx: worker process3月 09 12:37:29 G.D systemd[1]: Starting nginx...
3月 09 12:37:29 G.D systemd[1]: Started nginx.
[rootG nginx-1.18.0]#chown -R nginx:nginx /usr/local/nginx/
2.Nginx服务器——搭建PHP
[rootG ~]#cd /opt
[rootG ~]#yum -y install gd \libjpeg libjpeg-devel \libpng libpng-devel \freetype freetype-devel \libxml2 libxml2-devel \zlib zlib-devel \curl curl-devel \openssl openssl-devel
[rootG opt]#rz -E
rz waiting to receive.
[rootG opt]#ls
nginx-1.18.0 nginx-1.18.0.tar.gz php-7.1.10.tar.bz2
[rootG opt]#tar xf php-7.1.10.tar.bz2
[rootG opt]#cd php-7.1.10/
[rootG php-7.1.10]#./configure \
--prefix/usr/local/php \
--with-mysql-sock/usr/local/mysql/mysql.sock \
--with-mysqli \
--with-zlib \
--with-curl \
--with-gd \
--with-jpeg-dir \
--with-png-dir \
--with-freetype-dir \
--with-openssl \
--enable-fpm \
--enable-mbstring \
--enable-xml \
--enable-session \
--enable-ftp \
--enable-pdo \
--enable-tokenizer \
--enable-zip
[rootG php-7.1.10]#make -j2
[rootG php-7.1.10]#make install
[rootG php-7.1.10]#ln -s /usr/local/php/bin/* /usr/local/bin/
[rootG php-7.1.10]#ln -s /usr/local/php/sbin/* /usr/local/sbin/
#优化路径#调整进程服务配置文件
[rootG php-7.1.10]#cp /opt/php-7.1.10/php.ini-development /usr/local/php/lib/php.ini
[rootG php-7.1.10]#vim /usr/local/php/lib/php.ini-1170G- mysqli.default_socket /usr/local/mysql/mysql.sock-939G- date.timezone Asia/Shangha[rootG php-7.1.10]#sed -n 939p;1170p /usr/local/php/lib/php.ini
date.timezone Asia/Shanghai
mysqli.default_socket /usr/local/mysql/mysql.sock
[rootG php-7.1.10]#cd /usr/local/php/etc/
[rootG etc]#cp php-fpm.conf.default php-fpm.conf
[rootG etc]#vim php-fpm.conf
[rootG etc]#sed -n 17p php-fpm.conf
pid run/php-fpm.pid#调整扩展配置文件
[rootG etc]#cd /usr/local/php/etc/php-fpm.d/
[rootG php-fpm.d]#cp www.conf.default www.conf
[rootG php-fpm.d]#ls
www.conf www.conf.default#启动PHP
[rootG php-fpm.d]#cp /opt/php-7.1.10/sapi/fpm/php-fpm.service /usr/lib/systemd/system/php-fpm.service
[rootG php-fpm.d]#systemctl restart php-fpm.service
[rootG php-fpm.d]#systemctl status php-fpm.service
● php-fpm.service - The PHP FastCGI Process ManagerLoaded: loaded (/usr/lib/systemd/system/php-fpm.service; disabled; vendor preset: disabled)Active: active (running) since 六 2024-03-09 13:01:36 CST; 5s agoMain PID: 47397 (php-fpm)CGroup: /system.slice/php-fpm.service├─47397 php-fpm: master process (/usr/local/php/etc/php-fpm.con...├─47400 php-fpm: pool www└─47401 php-fpm: pool www3月 09 13:01:36 G.D systemd[1]: Started The PHP FastCGI Process Manager.
3月 09 13:01:36 G.D systemd[1]: Starting The PHP FastCGI Process Manager...
Hint: Some lines were ellipsized, use -l to show in full.
3.Nginx服务器——编译安装搭建Mysql
[rootG opt]#yum -y install \ncurses \ncurses-devel \bison \cmake
#环境依赖包
[rootG opt]#yum -y install gcc gcc-c cmake bison bison-devel zlib-devel libcurl-devel libarchive-devel boost-devel ncurses-devel gnutls-devel libxml2-devel openssl-devel libevent-devel libaio-devel
#安装依赖环境
[rootG opt]#useradd -M -s /sbin/nologin mysql
#创建运行用户
[rootG opt]#rz -E
rz waiting to receive.
[rootG opt]#ls
mysql-boost-5.7.20.tar.gz nginx-1.18.0.tar.gz php-7.1.10.tar.bz2
nginx-1.18.0 php-7.1.10
[rootG opt]#tar xf mysql-boost-5.7.20.tar.gz
[rootG opt]#cd mysql-5.7.20/
[rootG mysql-5.7.20]#cmake \-DCMAKE_INSTALL_PREFIX/usr/local/mysql \-DMYSQL_UNIX_ADDR/usr/local/mysql/mysql.sock \-DSYSCONFDIR/etc \-DSYSTEMD_PID_DIR/usr/local/mysql \-DDEFAULT_CHARSETutf8 \-DDEFAULT_COLLATIONutf8_general_ci \-DWITH_EXTRA_CHARSETSall \-DWITH_INNOBASE_STORAGE_ENGINE1 \-DWITH_ARCHIVE_STORAGE_ENGINE1 \-DWITH_BLACKHOLE_STORAGE_ENGINE1 \-DWITH_PERFSCHEMA_STORAGE_ENGINE1 \-DMYSQL_DATADIR/usr/local/mysql/data \-DWITH_BOOSTboost \-DWITH_SYSTEMD1
[rootG mysql-5.7.20]#make -j4
[rootG mysql-5.7.20]#make install
[rootG mysql-5.7.20]#vim /etc/my.cnf
#修改mysql配置文件
[rootG mysql-5.7.20]#cat /etc/my.cnf
[client]
port 3306
socket/usr/local/mysql/mysql.sock[mysqld]
user mysql
basedir/usr/local/mysql
datadir/usr/local/mysql/data
port 3306
character-set-serverutf8
pid-file /usr/local/mysql/mysqld.pid
socket/usr/local/mysql/mysql.sock
bind-address 0.0.0.0
skip-name-resolve
max_connections2048
default-storage-engineINNODB
max_allowed_packet16M
server-id 1sql_modeNO_ENGINE_SUBSTITUTION,STRICT_TRANS_TABLES,NO_AUTO_CREATE_USER,NO_AUTO_VALUE_ON_ZERO,NO_ZERO_IN_DATE,NO_ZERO_DATE,ERROR_FOR_DIVISION_BY_ZERO,PIPES_AS_CONCAT,ANSI_QUOTES
[rootG mysql-5.7.20]#chown -R mysql:mysql /usr/local/mysql/
[rootG mysql-5.7.20]#chown mysql:mysql /etc/my.cnf
#更改mysql安装目录和配置文件的属主属组[rootG mysql-5.7.20]#echo export PATH/usr/local/mysql/bin:/usr/local/mysql/lib:$PATH /etc/profile
#设置路径环境变量
[rootG mysql-5.7.20]#echo $PATH
/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/root/bin
[rootG mysql-5.7.20]#source /etc/profile
[rootG mysql-5.7.20]#echo $PATH
/usr/local/mysql/bin:/usr/local/mysql/lib:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/root/bin[rootG mysql-5.7.20]#cd /usr/local/mysql/bin/
[rootG bin]#./mysqld \--initialize-insecure \--usermysql \--basedir/usr/local/mysql \--datadir/usr/local/mysql/data
#初始化数据库[rootG bin]#cp /usr/local/mysql/usr/lib/systemd/system/mysqld.service
/usr/lib/systemd/system/
#添加mysqld系统服务
[rootG bin]#systemctl daemon-reload
[rootG bin]#systemctl start mysqld.service
[rootG bin]#systemctl enable mysqld
Created symlink from /etc/systemd/system/multi-user.target.wants/mysqld.service to /usr/lib/systemd/system/mysqld.service.
[rootG bin]#systemctl status mysqld.service
● mysqld.service - MySQL ServerLoaded: loaded (/usr/lib/systemd/system/mysqld.service; enabled; vendor preset: disabled)Active: active (running) since 六 2024-03-09 13:46:17 CST; 8s agoDocs: man:mysqld(8)http://dev.mysql.com/doc/refman/en/using-systemd.htmlMain PID: 66268 (mysqld)CGroup: /system.slice/mysqld.service└─66268 /usr/local/mysql/bin/mysqld --daemonize --pid-file/usr...3月 09 13:46:17 G.D mysqld[66265]: 2024-03-09T05:46:17.637646Z 0 [Warni...e.
3月 09 13:46:17 G.D mysqld[66265]: 2024-03-09T05:46:17.637658Z 0 [Warni...e.
3月 09 13:46:17 G.D mysqld[66265]: 2024-03-09T05:46:17.637661Z 0 [Warni...e.
3月 09 13:46:17 G.D mysqld[66265]: 2024-03-09T05:46:17.637667Z 0 [Warni...e.
3月 09 13:46:17 G.D mysqld[66265]: 2024-03-09T05:46:17.638510Z 0 [Warni...e.
3月 09 13:46:17 G.D mysqld[66265]: 2024-03-09T05:46:17.638519Z 0 [Warni...e.
3月 09 13:46:17 G.D mysqld[66265]: 2024-03-09T05:46:17.642575Z 0 [Note]...ts
3月 09 13:46:17 G.D mysqld[66265]: 2024-03-09T05:46:17.642946Z 0 [Note]...s.
3月 09 13:46:17 G.D mysqld[66265]: Version: 5.7.20 socket: /usr/loc...on
3月 09 13:46:17 G.D systemd[1]: Started MySQL Server.
Hint: Some lines were ellipsized, use -l to show in full.
[rootG ~]#mysql -uroot -p
Enter password:
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 6
Server version: 5.7.20 Source distributionCopyright (c) 2000, 2017, Oracle and/or its affiliates. All rights reserved.Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.Type help; or \h for help. Type \c to clear the current input statement.mysql ^DBye
4.配置数据库
[rootG ~]#mysql -u root -p
Enter password:
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 8
Server version: 5.7.20 Source distributionCopyright (c) 2000, 2017, Oracle and/or its affiliates. All rights reserved.Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.Type help; or \h for help. Type \c to clear the current input statement.mysql CREATE DATABASE bbs;
Query OK, 1 row affected (0.00 sec)mysql GRANT all ON bbs.* TO bbsuser% IDENTIFIED BY admin123;
Query OK, 0 rows affected, 1 warning (0.00 sec)mysql GRANT all ON bbs.* TO bbsuserlocalhost IDENTIFIED BY admin123;
Query OK, 0 rows affected, 2 warnings (0.00 sec)mysql flush privileges;
Query OK, 0 rows affected (0.00 sec)mysql ^DBye5.配置PHP测试页
[rootG ~]#vim /usr/local/nginx/conf/nginx.conf
[rootG ~]#sed -n 65,71p /usr/local/nginx/conf/nginx.conflocation ~ \.php$ {root html;fastcgi_pass 127.0.0.1:9000;fastcgi_index index.php;fastcgi_param SCRIPT_FILENAME /usr/local/nginx/html$fastcgi_script_name;include fastcgi_params;}
[rootG ~]#systemctl restart nginx
[rootG ~]#systemctl status nginx.service
● nginx.service - nginxLoaded: loaded (/usr/lib/systemd/system/nginx.service; enabled; vendor preset: disabled)Active: active (running) since 六 2024-03-09 13:53:04 CST; 5s agoProcess: 1844 ExecStop/bin/kill -3 $MAINPID (codeexited, status0/SUCCESS)Process: 1849 ExecStart/usr/local/nginx/sbin/nginx (codeexited, status0/SUCCESS)Main PID: 1851 (nginx)CGroup: /system.slice/nginx.service├─1851 nginx: master process /usr/local/nginx/sbin/nginx└─1852 nginx: worker process3月 09 13:53:04 G.D systemd[1]: Starting nginx...
3月 09 13:53:04 G.D systemd[1]: Started nginx.
[rootG ~]#vim /usr/local/nginx/html/index.php
[rootG ~]#cat /usr/local/nginx/html/index.php
?php
$linkmysqli_connect(192.168.241.24,bbsuser,admin123);
if($link) echo h1Success!!/h1;
else echo Fail!!;
?
[rootG ~]#systemctl restart nginx 6.安装论坛
[rootG ~]#cd /opt
[rootG opt]#unzip Discuz_X3.4_SC_UTF8.zip
[rootG opt]#ls
dir_SC_UTF8 mysql-boost-5.7.20.tar.gz php-7.1.10
Discuz_X3.4_SC_UTF8.zip nginx-1.18.0 php-7.1.10.tar.bz2
mysql-5.7.20 nginx-1.18.0.tar.gz 说明.htm
[rootG opt]#cd dir_SC_UTF8/
[rootG dir_SC_UTF8]#cp -r upload/ /usr/local/nginx/html/bbs
[rootG dir_SC_UTF8]#cd /usr/local/nginx/html/bbs/
[rootG bbs]#ls
admin.php connect.php group.php member.php search.php uc_server
api crossdomain.xml home.php misc.php source
api.php data index.php plugin.php static
archiver favicon.ico install portal.php template
config forum.php m robots.txt uc_client
[rootG bbs]#chown -R nginx.nginx ./config/
[rootG bbs]#chown -R nginx.nginx ./data/
[rootG bbs]#chown -R nginx.nginx ./uc_client/
[rootG bbs]#chown -R nginx.nginx ./uc_server/
[rootG bbs]#chmod -R 777 ./config/
[rootG bbs]#chmod -R 777 ./data/
[rootG bbs]#chmod -R 777 ./uc_client/
[rootG bbs]#chmod -R 777 ./uc_server/
[rootG bbs]#vim /usr/local/nginx/conf/nginx.conf
[rootG bbs]#sed -n 43,46p /usr/local/nginx/conf/nginx.conflocation / {root html;index index.html index.htm index.php;}7.Web1——搭建Tomcat
7.1安装Oracle JDK
[rootnode2 ~]#cd /opt
[rootnode2 opt]#rm -rf *
[rootnode2 opt]#ls
[rootnode2 opt]#rz -E
rz waiting to receive.
[rootnode2 opt]#ls
jdk-8u291-linux-x64.tar.gz
[rootnode2 opt]#tar xf jdk-8u291-linux-x64.tar.gz -C /usr/local/
[rootnode2 opt]#cd /usr/local/
[rootnode2 local]#ls
bin games jdk1.8.0_291 lib64 sbin src
etc include lib libexec share
[rootnode2 local]#ln -s jdk1.8.0_291/ jdk
[rootnode2 local]#ls
bin games jdk lib libexec share
etc include jdk1.8.0_291 lib64 sbin src
[rootnode2 local]#vim /etc/profile.d/jdk.sh
[rootnode2 local]#cat /etc/profile.d/jdk.sh
export JAVA_HOME/usr/local/jdk
export PATH$JAVA_HOME/bin:$PATH
export JRE_HOME$JAVA_HOME/jre
export CLASSPATH$JAVA_HOME/lib/:$JRE_HOME/lib/
[rootnode2 local]#. /etc/profile.d/jdk.sh
[rootnode2 local]#java -version
java version 1.8.0_291
Java(TM) SE Runtime Environment (build 1.8.0_291-b10)
Java HotSpot(TM) 64-Bit Server VM (build 25.291-b10, mixed mode)7.2安装Tomcat
[rootnode2 local]#cd /opt
[rootnode2 opt]#ls
jdk-8u291-linux-x64.tar.gz
[rootnode2 opt]#rz -E
rz waiting to receive.
[rootnode2 opt]#ls
apache-tomcat-9.0.16.tar.gz jdk-8u291-linux-x64.tar.gz
[rootnode2 opt]#tar xf apache-tomcat-9.0.16.tar.gz -C /usr/local/
[rootnode2 opt]#cd /usr/local/
[rootnode2 local]#ls
apache-tomcat-9.0.16 etc include jdk1.8.0_291 lib64 sbin src
bin games jdk lib libexec share
[rootnode2 local]#mv apache-tomcat-9.0.16/ tomcat
[rootnode2 local]#ls
bin games jdk lib libexec share tomcat
etc include jdk1.8.0_291 lib64 sbin src
[rootnode2 local]#cd tomcat/
[rootnode2 tomcat]#ls
bin CONTRIBUTING.md logs RELEASE-NOTES webapps
BUILDING.txt lib NOTICE RUNNING.txt work
conf LICENSE README.md temp
[rootnode2 tomcat]#useradd -M -s /sbin/nologin tomcat
[rootnode2 tomcat]#cat /usr/lib/systemd/system/tomcat.service EOF[Unit]DescriptionTomcatAftersyslog.target network.target[Service]TypeforkingExecStart/usr/local/tomcat/bin/startup.shExecStop/usr/local/tomcat/bin/shutdown.shRestartSec3PrivateTmptrueUsertomcatGrouptomcat[Install]WantedBymulti-user.targetEOF
[rootnode2 tomcat]#cat /usr/lib/systemd/system/tomcat.service
[Unit]
DescriptionTomcat
Aftersyslog.target network.target[Service]
Typeforking
ExecStart/usr/local/tomcat/bin/startup.sh
ExecStop/usr/local/tomcat/bin/shutdown.sh
RestartSec3
PrivateTmptrue
Usertomcat
Grouptomcat[Install]
WantedBymulti-user.target
[rootnode2 tomcat]#chown -R tomcat:tomcat ../tomcat
[rootnode2 tomcat]#systemctl daemon-reload
[rootnode2 tomcat]#systemctl start tomcat
[rootnode2 tomcat]#systemctl status tomcat
● tomcat.service - TomcatLoaded: loaded (/usr/lib/systemd/system/tomcat.service; disabled; vendor preset: disabled)Active: active (running) since Sat 2024-03-09 00:16:33 EST; 4s agoProcess: 4938 ExecStart/usr/local/tomcat/bin/startup.sh (codeexited, status0/SUCCESS)Main PID: 4954 (catalina.sh)CGroup: /system.slice/tomcat.service├─4954 /bin/sh /usr/local/tomcat/bin/catalina.sh start└─4955 /usr/bin/java -Djava.util.logging.config.file/usr/local...Mar 09 00:16:33 node2.localdomain systemd[1]: Starting Tomcat...
Mar 09 00:16:33 node2.localdomain systemd[1]: Started Tomcat.8.Web2——搭建Tomcat
8.1安装Oracle JDK
[rootnode3 ~]#cd /opt
[rootnode3 opt]#rm -rf *
[rootnode3 opt]#ls
[rootnode3 opt]#rz -E
rz waiting to receive.
[rootnode3 opt]#rz -E
rz waiting to receive.
[rootnode3 opt]#ls
apache-tomcat-9.0.16.tar.gz jdk-8u291-linux-x64.tar.gz
[rootnode3 opt]#tar xf jdk-8u291-linux-x64.tar.gz -C /usr/local/
[rootnode3 opt]#cd /usr/local/
[rootnode3 local]#ls
bin games jdk1.8.0_291 lib64 sbin src
etc include lib libexec share
[rootnode3 local]#ln -s jdk1.8.0_291/ jdk
[rootnode3 local]#ls
bin games jdk lib libexec share
etc include jdk1.8.0_291 lib64 sbin src
[rootnode3 local]#vim /etc/profile.d/jdk.sh
[rootnode3 local]#cat /etc/profile.d/jdk.sh
export JAVA_HOME/usr/local/jdk
export PATH$JAVA_HOME/bin:$PATH
export JRE_HOME$JAVA_HOME/jre
export CLASSPATH$JAVA_HOME/lib/:$JRE_HOME/lib/
[rootnode3 local]#. /etc/profile.d/jdk.sh
[rootnode3 local]#java -version
java version 1.8.0_291
Java(TM) SE Runtime Environment (build 1.8.0_291-b10)
Java HotSpot(TM) 64-Bit Server VM (build 25.291-b10, mixed mode)8.2安装Tomcat
[rootnode3 local]#cd /opt
[rootnode3 opt]#ls
apache-tomcat-9.0.16.tar.gz jdk-8u291-linux-x64.tar.gz
[rootnode3 opt]#tar xf apache-tomcat-9.0.16.tar.gz -C /usr/local/
[rootnode3 opt]#ls
apache-tomcat-9.0.16.tar.gz jdk-8u291-linux-x64.tar.gz
[rootnode3 opt]#cd /usr/local/
[rootnode3 local]#ls
apache-tomcat-9.0.16 etc include jdk1.8.0_291 lib64 sbin src
bin games jdk lib libexec share
[rootnode3 local]#mv apache-tomcat-9.0.16/ tomcat
[rootnode3 local]#ls
bin games jdk lib libexec share tomcat
etc include jdk1.8.0_291 lib64 sbin src
[rootnode3 local]#cd tomcat/
[rootnode3 tomcat]#ls
bin CONTRIBUTING.md logs RELEASE-NOTES webapps
BUILDING.txt lib NOTICE RUNNING.txt work
conf LICENSE README.md temp
[rootnode3 tomcat]#useradd -M -s /sbin/nologin tomcat
[rootnode3 tomcat]#cat /usr/lib/systemd/system/tomcat.service EOF[Unit]DescriptionTomcatAftersyslog.target network.target[Service]TypeforkingExecStart/usr/local/tomcat/bin/startup.shExecStop/usr/local/tomcat/bin/shutdown.shRestartSec3PrivateTmptrueUsertomcatGrouptomcat[Install]WantedBymulti-user.targetEOF
[rootnode3 tomcat]#cat /usr/lib/systemd/system/tomcat.service
[Unit]
DescriptionTomcat
Aftersyslog.target network.target[Service]
Typeforking
ExecStart/usr/local/tomcat/bin/startup.sh
ExecStop/usr/local/tomcat/bin/shutdown.sh
RestartSec3
PrivateTmptrue
Usertomcat
Grouptomcat[Install]
WantedBymulti-user.target
[rootnode3 tomcat]#chown -R tomcat:tomcat ../tomcat
[rootnode3 tomcat]#systemctl daemon-reload
[rootnode3 tomcat]#systemctl start tomcat
[rootnode3 tomcat]#systemctl status tomcat
● tomcat.service - TomcatLoaded: loaded (/usr/lib/systemd/system/tomcat.service; disabled; vendor preset: disabled)Active: active (running) since 六 2024-03-09 13:23:13 CST; 3s agoProcess: 37632 ExecStart/usr/local/tomcat/bin/startup.sh (codeexited, status0/SUCCESS)Main PID: 37647 (catalina.sh)CGroup: /system.slice/tomcat.service├─37647 /bin/sh /usr/local/tomcat/bin/catalina.sh start└─37648 /usr/bin/java -Djava.util.logging.config.file/usr/loca...3月 09 13:23:13 node3.node3 systemd[1]: Starting Tomcat...
3月 09 13:23:13 node3.node3 startup.sh[37632]: Using CATALINA_BASE: /us...
3月 09 13:23:13 node3.node3 startup.sh[37632]: Using CATALINA_HOME: /us...
3月 09 13:23:13 node3.node3 startup.sh[37632]: Using CATALINA_TMPDIR: /us...
3月 09 13:23:13 node3.node3 startup.sh[37632]: Using JRE_HOME: /usr
3月 09 13:23:13 node3.node3 startup.sh[37632]: Using CLASSPATH: /us...
3月 09 13:23:13 node3.node3 systemd[1]: Started Tomcat.
Hint: Some lines were ellipsized, use -l to show in full.三、为nginx服务配置虚拟主机新增两个域名 www.kgc.com 和 www.benet.com使用http://www.kgc.com/index.php可访问上一题的Discuz论坛页面。使用http://www.benet.com则访问/var/www/html目录中的index.html文件的内容内容自定义。
1.Nginx服务器配置
[rootG bbs]#vim /usr/local/nginx/conf/nginx.conf
[rootG bbs]#sed -n 35,38p /usr/local/nginx/conf/nginx.confserver {listen 80;server_name www.kgc.com;root /usr/local/nginx/html;
[rootG bbs]#vim /usr/local/nginx/conf/nginx.conf
[rootG bbs]#sed -n 80,84p /usr/local/nginx/conf/nginx.conf
server {listen 80;server_name www.benet.com;root /usr/local/nginx/html;
}
[rootG bbs]#cat /usr/local/nginx/html/index.html
!DOCTYPE html
html
head
titleWelcome to nginx!/title
stylebody {width: 35em;margin: 0 auto;font-family: Tahoma, Verdana, Arial, sans-serif;}
/style
/head
body
h1Welcome to nginx!/h1
pIf you see this page, the nginx web server is successfully installed and
working. Further configuration is required./ppFor online documentation and support please refer to
a hrefhttp://nginx.org/nginx.org/a.br/
Commercial support is available at
a hrefhttp://nginx.com/nginx.com/a./ppemThank you for using nginx./em/p
/body
/html2.客户端配置
[rootlocalhost ~]#vim /etc/hosts
[rootlocalhost ~]#cat /etc/hosts
127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
192.168.241.24 www.kgc.com www.benet.com C:\Windows\System32\drivers\etc/hosts 3.测试
[rootlocalhost ~]#curl www.benet.com
!DOCTYPE html
html
head
titleWelcome to nginx!/title
stylebody {width: 35em;margin: 0 auto;font-family: Tahoma, Verdana, Arial, sans-serif;}
/style
/head
body
h1Welcome to nginx!/h1
pIf you see this page, the nginx web server is successfully installed and
working. Further configuration is required./ppFor online documentation and support please refer to
a hrefhttp://nginx.org/nginx.org/a.br/
Commercial support is available at
a hrefhttp://nginx.com/nginx.com/a./ppemThank you for using nginx./em/p
/body
/html四、对基于www.benet.com域名的虚拟机主机的nginx服务调优隐藏nginx版本号缓存静态图片网页时间为1天设置防盗链功能。
1.Nginx配置
[rootG bbs]#vim /usr/local/nginx/conf/nginx.conf [rootG bbs]#systemctl restart nginx
2.测试 五、网关服务器搭建NFS服务提供的文件系统使用LVM类型共享目录名称为/mnt/nfs要求根据日期对Discuz论坛服务的访问日志进行日志分割要求每天生成一份日志文件保存到NFS服务共享的目录内。
1.网关服务器配置——搭建NFS服务 [rootlocalhost ~]#alias
alias cpcp -i
alias egrepegrep --colorauto
alias fgrepfgrep --colorauto
alias grepgrep --colorauto
alias l.ls -d .* --colorauto
alias llls -l --colorauto
alias lsls --colorauto
alias mvmv -i
alias rmrm -i
alias scanecho - - - /sys/class/scsi_host/host0/scan;echo - - - /sys/class/scsi_host/host1/scan;echo - - - /sys/class/scsi_host/host2/scan
alias whichalias | /usr/bin/which --tty-only --read-alias --show-dot --show-tilde
[rootlocalhost ~]#
[rootlocalhost ~]#scan
[rootlocalhost ~]#lsblk
NAME MAJ:MIN RM SIZE RO TYPE MOUNTPOINT
sda 8:0 0 60G 0 disk
├─sda1 8:1 0 5G 0 part /boot
└─sda2 8:2 0 54G 0 part ├─centos-root 253:0 0 50G 0 lvm /└─centos-swap 253:1 0 4G 0 lvm [SWAP]
sdb 8:16 0 20G 0 disk
sdc 8:32 0 20G 0 disk
sr0 11:0 1 4.2G 0 rom
[rootlocalhost ~]#pvcreate /dev/sdb /dev/sdc
#建物理卷Physical volume /dev/sdb successfully created.Physical volume /dev/sdc successfully created.
[rootlocalhost ~]#vgcreate vg /dev/sdb /dev/sdc
#建卷组Volume group vg successfully created
[rootlocalhost ~]#lvcreate -n lvm -L 30G /dev/vg
#建逻辑卷 指定名称lvm 指定大小30G 存放在/dev/vg下Logical volume lvm created.
[rootlocalhost ~]#mkfs.xfs /dev/vg/lvm
#文件系统xfs格式
meta-data/dev/vg/lvm isize512 agcount4, agsize1966080 blks sectsz512 attr2, projid32bit1 crc1 finobt0, sparse0
data bsize4096 blocks7864320, imaxpct25 sunit0 swidth0 blks
naming version 2 bsize4096 ascii-ci0 ftype1
log internal log bsize4096 blocks3840, version2 sectsz512 sunit0 blks, lazy-count1
realtime none extsz4096 blocks0, rtextents0
[rootlocalhost ~]#mount /dev/vg/lvm /mnt
#挂载
[rootlocalhost ~]#mkdir /mnt/nfs
[rootlocalhost ~]#vim /etc/exports
[rootlocalhost ~]#cat /etc/exports
/mnt/nfs *
[rootlocalhost ~]#systemctl start nfs
[rootlocalhost ~]#exportfs -v
/mnt/nfs world(ro,sync,wdelay,hide,no_subtree_check,secsys,secure,root_squash,no_all_squash)
2.Nginx服务器——共享目录
[rootG bbs]#showmount -e 192.168.241.11
Export list for 192.168.241.11:
/mnt/nfs *
[rootG bbs]#mount 192.168.241.11:/mnt/nfs /mnt/
[rootG bbs]#df
文件系统 1K-块 已用 可用 已用% 挂载点
/dev/mapper/centos-root 52403200 12697156 39706044 25% /
devtmpfs 917604 0 917604 0% /dev
tmpfs 933524 0 933524 0% /dev/shm
tmpfs 933524 9144 924380 1% /run
tmpfs 933524 0 933524 0% /sys/fs/cgroup
/dev/sda1 6281216 182368 6098848 3% /boot
tmpfs 186708 0 186708 0% /run/user/0
tmpfs 186708 12 186696 1% /run/user/42
192.168.241.11:/mnt/nfs 31441920 32768 31409152 1% /mnt3.日志分割
[rootG ~]#vim split-log.sh
[rootG ~]#cat split-log.sh
#!/bin/bash
daydate %Y-%m-%d
log/usr/local/nginx/logs
pidcat /usr/local/nginx/logs/nginx.pidmv /$(log)/access.log /opt/${day}
kill -USR1 ${pid}
sed -i /.*bbs.*/!p /opt/${day}
[rootG ~]#crontab -e
no crontab for root - using an empty one
crontab: installing new crontab
[rootG ~]#crontab -l
59 23 * * * bash ~/split-log.sh
六、要求配置location匹配请求地址http://www.kgc.com/test/XXXX使用户访问该路径下的文件时返回/var/share/nginx/html/目录下的文件内容。
要求使用rewrite将使用域名www.benet.com 请求以 .php 结尾的访问都跳转到域名www.kgc.com上而且后面的参数保持不变比如访问http://www.benet.com/bbs/index.php跳转到http://www.kgc.com/bbs/index.php。
1.Nginx服务器配置
[rootG ~]#vim /usr/local/nginx/conf/nginx.conf [rootG ~]#mkdir /var/share/nginx/html -p
[rootG ~]#nginx -t
nginx: the configuration file /usr/local/nginx/conf/nginx.conf syntax is ok
nginx: configuration file /usr/local/nginx/conf/nginx.conf test is successful
[rootG ~]#nginx -s reload2.测试 七、在Nginx服务器上对基于www.benet.com域名的虚拟机主机设置动静分离由nginx提供静态页面服务将对 .jsp文件的动态页面请求转发到Tomcat 服务器处理并实现负载均衡
1.Nginx服务配置
[rootG html]#vim /usr/local/nginx/conf/nginx.conf [rootG html]#nginx -t
nginx: the configuration file /usr/local/nginx/conf/nginx.conf syntax is ok
nginx: configuration file /usr/local/nginx/conf/nginx.conf test is successful
[rootG html]#nginx -s reload
[rootG php]#cd /usr/local/nginx/html/
[rootG html]#ls
50x.html bbs index.html
[rootG html]#mv index.html ..
[rootG html]#ls
50x.html bbs
[rootG html]#echo Welcome back index.html
[rootG html]#cat index.html
Welcome back2.Tomcat1服务器配置
[rootnode2 ROOT]#ls
asf-logo-wide.svg bg-upper.png tomcat.css tomcat.svg
bg-button.png favicon.ico tomcat.gif WEB-INF
bg-middle.png index.jsp tomcat.png
bg-nav.png RELEASE-NOTES.txt tomcat-power.gif
[rootnode2 ROOT]#mv index.jsp ..
[rootnode2 ROOT]#ls
asf-logo-wide.svg bg-upper.png tomcat.gif WEB-INF
bg-button.png favicon.ico tomcat.png
bg-middle.png RELEASE-NOTES.txt tomcat-power.gif
bg-nav.png tomcat.css tomcat.svg
[rootnode2 ROOT]#echo Tomcat1 index.jsp
[rootnode2 ROOT]#cat index.jsp
Tomcat1
[rootnode2 ROOT]#systemctl start tomcat3.Tomcat2服务器配置
[rootnode3 tomcat]#ls
bin CONTRIBUTING.md logs RELEASE-NOTES webapps
BUILDING.txt lib NOTICE RUNNING.txt work
conf LICENSE README.md temp
[rootnode3 tomcat]#cd webapps/ROOT/
[rootnode3 ROOT]#ls
asf-logo-wide.svg bg-upper.png tomcat.css tomcat.svg
bg-button.png favicon.ico tomcat.gif WEB-INF
bg-middle.png index.jsp tomcat.png
bg-nav.png RELEASE-NOTES.txt tomcat-power.gif
[rootnode3 ROOT]#mv index.jsp ..
[rootnode3 ROOT]#ls
asf-logo-wide.svg bg-upper.png tomcat.gif WEB-INF
bg-button.png favicon.ico tomcat.png
bg-middle.png RELEASE-NOTES.txt tomcat-power.gif
bg-nav.png tomcat.css tomcat.svg
[rootnode3 ROOT]#echo Tomcat2 index.jsp
[rootnode3 ROOT]#cat index.jsp
Tomcat2
[rootnode3 ROOT]#systemctl start tomct
Failed to start tomct.service: Unit not found.
[rootnode3 ROOT]#systemctl start tomcat4.测试 八、在网关服务器上设置SNAT/DNAT使client使用网关服务器的ens36接口的IP地址访问也可实现上一题的效果。
1.代理服务器配置
[rootlocalhost ~]#vim /etc/sysctl.conf
[rootlocalhost ~]#tail -n1 /etc/sysctl.conf
net.ipv4.ip_forward 1
[rootlocalhost ~]#sysctl -p
net.ipv4.ip_forward 1
[rootlocalhost ~]#vim /etc/hosts
[rootlocalhost ~]#cat /etc/hosts
127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
::1 localhost localhost.localdomain localhost6 localhost6.localdomain6
192.168.241.24 www.kgc.com www.benet.com
[rootlocalhost ~]#iptables -F
[rootlocalhost ~]#iptables -t nat -A POSTROUTING -s 192.168.241.11/24 -o ens36 -p tcp --dport 80 -j SNAT --to 12.0.0.1
[rootlocalhost ~]#iptables -t nat -A PREROUTING -d 12.0.0.1/24 -i ens36 -p tcp --dport 80 -j DNAT --to 192.168.241.11
[rootlocalhost ~]#iptables -t nat -vnL
Chain PREROUTING (policy ACCEPT 0 packets, 0 bytes)pkts bytes target prot opt in out source destination 0 0 DNAT tcp -- ens36 * 0.0.0.0/0 12.0.0.0/24 tcp dpt:80 to:192.168.241.11Chain INPUT (policy ACCEPT 0 packets, 0 bytes)pkts bytes target prot opt in out source destination Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)pkts bytes target prot opt in out source destination Chain POSTROUTING (policy ACCEPT 0 packets, 0 bytes)pkts bytes target prot opt in out source destination 4 260 RETURN all -- * * 192.168.122.0/24 224.0.0.0/24 0 0 RETURN all -- * * 192.168.122.0/24 255.255.255.255 0 0 MASQUERADE tcp -- * * 192.168.122.0/24 !192.168.122.0/24 masq ports: 1024-655350 0 MASQUERADE udp -- * * 192.168.122.0/24 !192.168.122.0/24 masq ports: 1024-655350 0 MASQUERADE all -- * * 192.168.122.0/24 !192.168.122.0/24 0 0 SNAT tcp -- * ens36 192.168.241.0/24 0.0.0.0/0 tcp dpt:80 to:12.0.0.12.测试
文章转载自: http://www.morning.xtrnx.cn.gov.cn.xtrnx.cn http://www.morning.smspc.cn.gov.cn.smspc.cn http://www.morning.dktyc.cn.gov.cn.dktyc.cn http://www.morning.dzgmj.cn.gov.cn.dzgmj.cn http://www.morning.gmwqd.cn.gov.cn.gmwqd.cn http://www.morning.kmcby.cn.gov.cn.kmcby.cn http://www.morning.npgwb.cn.gov.cn.npgwb.cn http://www.morning.nqpy.cn.gov.cn.nqpy.cn http://www.morning.seoqun.com.gov.cn.seoqun.com http://www.morning.frsxt.cn.gov.cn.frsxt.cn http://www.morning.crsqs.cn.gov.cn.crsqs.cn http://www.morning.ygth.cn.gov.cn.ygth.cn http://www.morning.mhnxs.cn.gov.cn.mhnxs.cn http://www.morning.hxycm.cn.gov.cn.hxycm.cn http://www.morning.mxhys.cn.gov.cn.mxhys.cn http://www.morning.ssmhn.cn.gov.cn.ssmhn.cn http://www.morning.nlnmy.cn.gov.cn.nlnmy.cn http://www.morning.tgfjm.cn.gov.cn.tgfjm.cn http://www.morning.ptxwg.cn.gov.cn.ptxwg.cn http://www.morning.wmnpm.cn.gov.cn.wmnpm.cn http://www.morning.rngyq.cn.gov.cn.rngyq.cn http://www.morning.spwm.cn.gov.cn.spwm.cn http://www.morning.cgthq.cn.gov.cn.cgthq.cn http://www.morning.ptmsk.cn.gov.cn.ptmsk.cn http://www.morning.cbmqq.cn.gov.cn.cbmqq.cn http://www.morning.ysnbq.cn.gov.cn.ysnbq.cn http://www.morning.xtyyg.cn.gov.cn.xtyyg.cn http://www.morning.jzsgn.cn.gov.cn.jzsgn.cn http://www.morning.nhlyl.cn.gov.cn.nhlyl.cn http://www.morning.brwnd.cn.gov.cn.brwnd.cn http://www.morning.jbysr.cn.gov.cn.jbysr.cn http://www.morning.kxrld.cn.gov.cn.kxrld.cn http://www.morning.hlfnh.cn.gov.cn.hlfnh.cn http://www.morning.qlsbz.cn.gov.cn.qlsbz.cn http://www.morning.btgxf.cn.gov.cn.btgxf.cn http://www.morning.yltyz.cn.gov.cn.yltyz.cn http://www.morning.dyght.cn.gov.cn.dyght.cn http://www.morning.wsjnr.cn.gov.cn.wsjnr.cn http://www.morning.bpmnj.cn.gov.cn.bpmnj.cn http://www.morning.qyrnp.cn.gov.cn.qyrnp.cn http://www.morning.btlsb.cn.gov.cn.btlsb.cn http://www.morning.bpmnj.cn.gov.cn.bpmnj.cn http://www.morning.wplbs.cn.gov.cn.wplbs.cn http://www.morning.hpprx.cn.gov.cn.hpprx.cn http://www.morning.yuanshenglan.com.gov.cn.yuanshenglan.com http://www.morning.mdpcz.cn.gov.cn.mdpcz.cn http://www.morning.sqgsx.cn.gov.cn.sqgsx.cn http://www.morning.ffmx.cn.gov.cn.ffmx.cn http://www.morning.pzrrq.cn.gov.cn.pzrrq.cn http://www.morning.gccdr.cn.gov.cn.gccdr.cn http://www.morning.zcqgf.cn.gov.cn.zcqgf.cn http://www.morning.hkgcx.cn.gov.cn.hkgcx.cn http://www.morning.ztnmc.cn.gov.cn.ztnmc.cn http://www.morning.fpbj.cn.gov.cn.fpbj.cn http://www.morning.zqfjn.cn.gov.cn.zqfjn.cn http://www.morning.gwtbn.cn.gov.cn.gwtbn.cn http://www.morning.jcjgh.cn.gov.cn.jcjgh.cn http://www.morning.bhwll.cn.gov.cn.bhwll.cn http://www.morning.nmlpp.cn.gov.cn.nmlpp.cn http://www.morning.sskhm.cn.gov.cn.sskhm.cn http://www.morning.rntgy.cn.gov.cn.rntgy.cn http://www.morning.stlgg.cn.gov.cn.stlgg.cn http://www.morning.rkjb.cn.gov.cn.rkjb.cn http://www.morning.ylrxd.cn.gov.cn.ylrxd.cn http://www.morning.kzyr.cn.gov.cn.kzyr.cn http://www.morning.vattx.cn.gov.cn.vattx.cn http://www.morning.hyryq.cn.gov.cn.hyryq.cn http://www.morning.xfncq.cn.gov.cn.xfncq.cn http://www.morning.nmfxs.cn.gov.cn.nmfxs.cn http://www.morning.rywn.cn.gov.cn.rywn.cn http://www.morning.nzms.cn.gov.cn.nzms.cn http://www.morning.hbpjb.cn.gov.cn.hbpjb.cn http://www.morning.zhffz.cn.gov.cn.zhffz.cn http://www.morning.wdpt.cn.gov.cn.wdpt.cn http://www.morning.qrwdg.cn.gov.cn.qrwdg.cn http://www.morning.sogou66.cn.gov.cn.sogou66.cn http://www.morning.swwpl.cn.gov.cn.swwpl.cn http://www.morning.tdscl.cn.gov.cn.tdscl.cn http://www.morning.ljhnn.cn.gov.cn.ljhnn.cn http://www.morning.hclqy.cn.gov.cn.hclqy.cn
