실습> DMZ WEB#1 서버의 가상 호스트 설정
1. 사용자 생성
[root@web1 ~]# mkdir /etc/skel/public_html
[root@web1 ~]# useradd -g users server1
[root@web1 ~]# useradd -g users server2
[root@web1 ~]# useradd -g users server3
[root@web1 ~]# useradd -g users server4
[root@web1 ~]# echo P@ssw0rd | passwd --stdin server1
[root@web1 ~]# echo P@ssw0rd | passwd --stdin server2
[root@web1 ~]# echo P@ssw0rd | passwd --stdin server3
[root@web1 ~]# echo P@ssw0rd | passwd --stdin server4
2. 디렉터리의 권한 변경
[root@web1 ~]# ls -ld /home/server[1-4]
drwx------. 3 server1 users 81 2월 26 21:04 /home/server1
drwx------. 3 server2 users 81 2월 26 21:04 /home/server2
drwx------. 3 server3 users 81 2월 26 21:04 /home/server3
drwx------. 3 server4 users 81 2월 26 21:04 /home/server4
[root@web1 ~]# chmod -c o+x /home/server[1-4]
[root@web1 ~]# ls -ld /home/server[1-4]
drwx-----x. 3 server1 users 81 2월 26 21:04 /home/server1
drwx-----x. 3 server2 users 81 2월 26 21:04 /home/server2
drwx-----x. 3 server3 users 81 2월 26 21:04 /home/server3
drwx-----x. 3 server4 users 81 2월 26 21:04 /home/server4
3. 웹페이지 생성
[root@web1 ~]# echo Welcome to www.server1.kr > ~server1/public_html/index.html
[root@web1 ~]# echo Welcome to www.server2.kr > ~server2/public_html/index.html
[root@web1 ~]# echo Welcome to www.server3.kr > ~server3/public_html/index.html
[root@web1 ~]# echo Welcome to www.server4.kr > ~server4/public_html/index.html
SELinux가 On으로 설정되었기 때문에 보안문맥을 httpd_sys_content_t로 변경한다.
[root@web1 ~]# getenforce
Enforcing
[root@web1 ~]# chcon -t httpd_sys_content_t /home/server[1-4]/public_html -R
4. 가상호스트 설정
httpd.conf 맨 아래쪽에 가상호스트를 설정한다.
[root@web1 ~]# vi /etc/httpd/conf/httpd.conf
:
:(생략)
##########################
# server1.kr ~ server4.kr
##########################
<VirtualHost *:80>
ServerAdmin webmaster@server1.kr
DocumentRoot /home/server1/public_html
ServerName server1.kr
ServerAlias www.server1.kr
#ErrorLog logs/error_log
#CustomLog logs/access_log common
</VirtualHost>
<VirtualHost *:80>
ServerAdmin webmaster@server2.kr
DocumentRoot /home/server2/public_html
ServerName server2.kr
ServerAlias www.server2.kr
#ErrorLog logs/error_log
#CustomLog logs/access_log common
</VirtualHost>
<VirtualHost *:80>
ServerAdmin webmaster@server3.kr
DocumentRoot /home/server3/public_html
ServerName server3.kr
ServerAlias www.server3.kr
#ErrorLog logs/error_log
#CustomLog logs/access_log common
</VirtualHost>
<VirtualHost *:80>
ServerAdmin webmaster@server4.kr
DocumentRoot /home/server4/public_html
ServerName server4.kr
ServerAlias www.server4.kr
#ErrorLog logs/error_log
#CustomLog logs/access_log common
</VirtualHost>
[root@web1 ~]# httpd -S
VirtualHost configuration:
*:80 is a NameVirtualHost
default server server1.kr (/etc/httpd/conf/httpd.conf:339)
port 80 namevhost server1.kr (/etc/httpd/conf/httpd.conf:339)
alias www.server1.kr
port 80 namevhost server2.kr (/etc/httpd/conf/httpd.conf:348)
alias www.server2.kr
port 80 namevhost server3.kr (/etc/httpd/conf/httpd.conf:357)
alias www.server3.kr
port 80 namevhost server4.kr (/etc/httpd/conf/httpd.conf:366)
alias www.server4.kr
:
:(생략)
[root@web1 ~]# httpd -t
Syntax OK
[root@web1 ~]# systemctl reload httpd
5. 도메인 확인
Win7, WinXP, WEB#1에서 도메인을 확인한다.
[root@web1 ~]# yum -y install lynx
[root@web1 ~]# lynx --dump server1.kr
Welcome to www.server1.kr
[root@web1 ~]# lynx --dump server2.kr
Welcome to www.server2.kr
[root@web1 ~]# lynx --dump server3.kr
Welcome to www.server3.kr
[root@web1 ~]# lynx --dump server4.kr
Welcome to www.server4.kr
[root@web1 ~]# lynx --dump www.server1.kr
Welcome to www.server1.kr
[root@web1 ~]# lynx --dump www.server2.kr
Welcome to www.server2.kr
[root@web1 ~]# lynx --dump www.server3.kr
Welcome to www.server3.kr
[root@web1 ~]# lynx --dump www.server4.kr
Welcome to www.server4.kr
Win7에서도 크롬을 열어서 도메인을 확인한다.
http://server1.kr ~ http://server4.kr
'Linux > 보안장비 운용' 카테고리의 다른 글
| slowhtptest DoS Attack (0) | 2022.03.02 |
|---|---|
| IPS 설정 (0) | 2022.03.02 |
| DNS 서버 설정 (0) | 2022.03.02 |
| Masquerading 설정 (0) | 2022.03.02 |
| DHCP 서버 설정 (0) | 2022.03.02 |