Linux服务实验
Linux服务实验
APPSRV:
主机名:appsrv.example.com
ip地址:192.168.100.10
网关:192.168.100.254
网卡为NAT模式
STORAGESRV:
主机名:storagesrv.example.com
ip地址:192.168.100.20
网关:192.168.100.254
网卡为NAT模式
ROUTERSRV:
主机名:storagesrv.example.com
NAT模式网卡ip地址:192.168.100.254
仅主机模式网卡ip为:192.168.0.254
CLIENT:
主机名:client.example.com
网卡为仅主机模式,自动获取ip地址,获取的ip地址的网段为192.168.0.0/24
需求:
APPSRV:
一、DNS
1、部署主DNS服务器
2、为example.com域提供域名解析
# 关闭防火墙与selinux# 下载DNS服务yum -y install bind bind-chroot# 编辑DNS主配置文件vim /etc/named.confoptions {listen-on port 53 { any; };listen-on-v6 port 53 { any; };directory "/var/named";dump-file "/var/named/data/cache_dump.db";statistics-file "/var/named/data/named_stats.txt";memstatistics-file "/var/named/data/named_mem_stats.txt";recursing-file "/var/named/data/named.recursing";secroots-file "/var/named/data/named.secroots";allow-query { any; };# 编辑正向与反向解析全局配置文件vim /etc/named.rfc1912.zoneszone "example.com" IN {type master;file "ldh.com";allow-update { none; };};zone "100.168.192.in-addr.arpa" IN {type master;file "com.ldh";allow-update { none; };# 配置正向解析文件和反向解析文件cp -p /var/named/named.localhost /var/named/ldh.comcp -p /var/named/named.empty /var/named/com.ldhvim /var/named/ldh.comvim /var/named/com.ldh
二、DHCP
1、为client客户端网络分配地址,地址池范围:192.168.0.110-192.168.0.190/24;
2、域名解析服务器:按照实际需求配置DNS服务器地址选项;
3、网关:按照实际需求配置网关地址选项;
APPSRV:DHCP服务器
# 关闭防火墙与selinux# 下载dhcp服务yum -y install dhcp# 配置dhcp服务的配置文件cp -p /usr/share/doc/dhcp-4.2.5/dhcp.conf.example /etc/dhcp/dhcpd.confvim /etc/dhcp/dhcpd.confsubnet 192.168.100.0 netmask 255.255.255.0 {}subnet 192.168.0.0 netmask 255.255.255.0 {range 192.168.0.110 192.168.0.190;option domain-name-servers appsrv.example.com;option domain-name "example.com";option routers 192.168.0.254;default-lease-time 600;max-lease-time 7200;}# 重启dhcp服务并设置下次启动systemctl restart dhcpdsystemctl enable dhcpd
三、WEB服务
1、DocumentRoot为/luoqi
2、要求通过Example Domain能够成功访问该站点,内容为welcome to luoqi.
STORAGESRV:
一、NFS服务
1、共享/webdata目录
2、用于存储appsrv主机的web数据
3、仅允许appsrv主机访问该共享
STORAGESRV:
# 关闭防火墙与selinuxyum -y install nfs-utilsmkdir /webdatachmod o+w /webdata/vim /etc/exports/webdata 192.168.100.10/24(rw)systemctl restart rpcbindsystemctl enable rpcbindsystemctl restart nfs-serversystemctl enable nfs-server
appsrv:
# 关闭防火墙与selinuxmkdir /luoqi # 创建挂载点vim /etc/fstab192.168.100.20:/webdata /luoqi nfs defaults 0 0mount -a # 挂载# 安装apashe服务yum -y install httpd# 编辑httpd主配置文件vim /etc/httpd/conf/httpd.confDocumentRoot "/luoqi"<Directory "/luoqi">AllowOverride None# Allow open access:Require all granted</Directory># 编辑虚拟主机配置文件cp -p /usr/share/doc/httpd-2.4.6/httpd-vhosts.conf /etc/httpd/conf.d/vim /etc/httpd/conf.d/httpd-vhosts.conf <VirtualHost 192.168.100.10:80>DocumentRoot "/luoqi"ServerName www.example.com</VirtualHost># 编辑网页vim /luoqi/index.htmlwelcome to luoqi# 重启apache并设置下次启动systemctl restart httpdsystemctl enable httpd
ROUTERSRV:
一、Route
1、开启路由转发,为当前实验环境提供路由功能。
vim /etc/sysctlnet.ipv4.ip_forward = 1sysctl -p
二、dhcp中继
1、安装DHCP中继;
2、允许客户端通过中继服务获取网络地址;
-
开启IP转发,见1
-
NAT模式网卡ip地址:192.168.100.254
-
仅主机模式网卡ip为:192.168.0.254
-
安装dhcp软件包
yum -y install dhcpd
-
开启dhcp中继
dhcrelay 192.168.100.10
验证:
1、在storagesrv使用nslookup命令解析www.example.com,并截图
2、在client中的网卡的配置文件截图
3、在client中执行ip a show ens33命令,并截图
4、在appsrv中执行df -Th命令,并截图
5、在storagesrv中执行cat /etc/exports并截图
6、在storagesrv中使用命令curl Example Domain,并截图
