Scribd
Upload
75 views5 pages

Apache Web Hosting

The document provides step-by-step instructions for configuring Apache web server on a CentOS system to host basic and virtual websites using HTTP and HTTPS. It also covers related tasks such as firewall configuration, SELinux settings, and redirecting all traffic to HTTPS.

Uploaded by

md7481920
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
75 views5 pages

Apache Web Hosting

The document provides step-by-step instructions for configuring Apache web server on a CentOS system to host basic and virtual websites using HTTP and HTTPS. It also covers related tasks such as firewall configuration, SELinux settings, and redirecting all traffic to HTTPS.

Uploaded by

md7481920
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd

Create apache web server (192.168.1.

3)

Configure Apache Basic Web Hosting


===================================================================================
=================
Step1: install apache package
#dnf install httpd -y

ste2: start and enable httpd service


#systemctl start httpd
#systemctl enable httpd

step3: add http into firewall


#firewall-cmd --permanent --add-service=http
#firewall-cmd --reload

step4: create test webpage


#cd /var/www/html/
#vim [Link]
<html>
<head><title>Pune</title></head>
<body bgcolor=skyblue>
<h1>Welcome to pune website hosted by using apache web server</h1>
</body>
</html>
:wq

Step5: Open web browser (firefox) type following address


[Link]

===================================================================================
=============
Configure Apache Virtual web hosting:

step6: create directory for second website and create test webpage

#mkdir /mumbai
#vim /mumbai/[Link]
#vim [Link]
<html>
<head><title>Mumbai</title></head>
<body bgcolor=yellow>
<h1>Welcome to Mumbai website hosted by using apache web server</h1>
</body>
</html>
:wq

ste7: create configuration file for mumbai & pune


#vim /etc/httpd/conf.d/[Link]
<VirtualHost *:80>
ServerName [Link]
ServerAdmin root@[Link]
DocumentRoot /mumbai/
</VirtualHost>
<Directory /mumbai/>
<RequireAll>
Require all granted
</RequireAll>
</Directory>
:wq

Now create pune config file

#vim /etc/httpd/conf.d/[Link]
<VirtualHost *:80>
ServerName [Link]
ServerAdmin root@[Link]
DocumentRoot /var/www/html/
</VirtualHost>
<Directory /pune/>
<RequireAll>
Require all granted
</RequireAll>
</Directory>
:wq

Step8: restart httpd service


#systemctl restart httpd

update host file


#vim /etc/hosts
[Link] [Link]
[Link] [Link]
:wq

step9: For verify:


Open Firefox and visite following address

[Link]
new tab
[Link]

(note: apache home page cause of selinux permission restrict mumbai directory
access)

step10: set selinux permission on permissive mode


#getenforce
#setenforce 0

Now open firefox and refresh mumbai page

If httpd service failure to restart then use following to check syntax of *.conf

#httpd -t

step11: change selinux permanent label


#setenforce 1

#semanage fcontext -a -t httpd_sys_content_t "/mumbai(/.*)?"


#restorcon -Rv /mumbai

open firefox and verify mumbai website again


===================================================================================
================
Configure Apache Web hosting with https (Secure hyper text transfer protocol):

Step12: Install Require package for https


#yum install httpd mod_ssl openssl -y

Step13: add https service into firewall


#firewall-cmd --permanent --add-service=https
#firewall-cmd --reload

Step14: create self-signed Certificate and Key for https site


#openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /home/[Link] -out
/home/[Link]

Step15: Modify ssl config file


#vim /etc/httpd/conf.d/[Link]

SSLCertificateFile /etc/pki/tls/certs/[Link]
SSLCertificateKeyFile /etc/pki/tls/private/[Link]

:wq

Step16: Copy generated crt and key on required location

#cp -rvf /home/[Link] /etc/pki/tls/certs/


#cp -rvf /home/[Link] /etc/pki/tls/private/

Step17: Update configuration file of pune and mumbai

#vim /etc/httpd/conf.d/[Link]

<VirtualHost *:443>
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/[Link]
SSLCertificateKeyFile /etc/pki/tls/private/[Link]
ServerName [Link]
ServerAdmin root@[Link]
DocumentRoot /var/www/html/
</VirtualHost>
<Directory /pune/>
<RequireAll>
Require all granted
</RequireAll>
</Directory>
:wq

#vim /etc/httpd/conf.d/[Link]

<VirtualHost *:443>
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/[Link]
SSLCertificateKeyFile /etc/pki/tls/private/[Link]
ServerName [Link]
ServerAdmin root@[Link]
DocumentRoot /mumbai/
</VirtualHost>
<Directory /mumbai/>
<RequireAll>
Require all granted
</RequireAll>
</Directory>
:wq
systemctl restart httpd

step18: open firefox and verify https

[Link]
[Link]

[Note: access security risk,it show cause of self-sign certificate]


===================================================================================
==================
Redirect all client traffic on https protocol

Edit configuration files

#vim /etc/httpd/conf.d/[Link]

<VirtualHost *:443>
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/[Link]
SSLCertificateKeyFile /etc/pki/tls/private/[Link]
ServerName [Link]
ServerAdmin root@[Link]
DocumentRoot /var/www/html/
</VirtualHost>
<Directory /pune/>
<RequireAll>
Require all granted
</RequireAll>
</Directory>

<VirtualHost *:80>
ServerName [Link]
Redirect / [Link]
</VirtualHost>

:wq

#vim /etc/httpd/conf.d/[Link]

<VirtualHost *:443>
SSLEngine on
SSLCertificateFile /etc/pki/tls/certs/[Link]
SSLCertificateKeyFile /etc/pki/tls/private/[Link]
ServerName [Link]
ServerAdmin root@[Link]
DocumentRoot /mumbai/
</VirtualHost>
<Directory /mumbai/>
<RequireAll>
Require all granted
</RequireAll>
</Directory>

<VirtualHost *:80>
ServerName [Link]
Redirect / [Link]
</VirtualHost>
:wq

systemctl restart httpd

step18: open firefox and verify https

[Link]
[Link]

Note: if we type [Link] or only site name then by defalult server


redirect us on https

You might also like