Nginx+Mysql+PHP构建LNMP平台
编译安装nginx:
[root@localhost ~]# yum groupinstall "X Software Development" "Development Tools" "Development Libraries"
[root@localhost ~]# yum install pcre-devel
[root@localhost nginx]# groupadd -r nginx
[root@localhost nginx]# useradd -g nginx -r nginx
[root@localhost nginx-1.2.3]#./configure --prefix=/usr --sbin-path=/usr/sbin/nginx --conf-path=/etc/nginx/nginx.conf --error-log-path=/var/log/nginx/error.log --http-log-path=/var/log/nginx/access.log --pid-path=/var/run/nginx/nginx.pid --lock-path=/var/lock/nginx.lock --user=nginx --group=nginx --with-http_ssl_module --with-http_flv_module --with-http_stub_status_module --with-http_gzip_static_module --http-client-body-temp-path=/var/tmp/nginx/client/ --http-proxy-temp-path=/var/tmp/nginx/proxy/ --http-fastcgi-temp-path=/var/tmp/nginx/fcgi/ --http-uwsgi-temp-path=/var/tmp/nginx/uwsgi --http-scgi-temp-path=/var/tmp/nginx/scgi --with-pcre
[root@localhost nginx-1.2.3]# make
[root@localhost nginx-1.2.3]# make install
[root@localhost ~]# mkdir -pv /var/tmp/nginx/client
为服务提供启动脚本:
vim /etc/rc.d/init.d/nginx
写入以下内容;
#!/bin/sh
#
# nginx - this script starts and stops the nginx daemon
#
# chkconfig: - 85 15
# description: Nginx is an HTTP(S) server, HTTP(S) reverse \
# proxy and IMAP/POP3 proxy server
# processname: nginx
# config: /etc/nginx/nginx.conf
# config: /etc/sysconfig/nginx
# pidfile: /var/run/nginx.pid
# Source function library.
. /etc/rc.d/init.d/functions
# Source networking configuration.
. /etc/sysconfig/network
# Check that networking is up.
[ "$NETWORKING" = "no" ] && exit 0
nginx="/usr/sbin/nginx"
prog=$(basename $nginx)
NGINX_CONF_FILE="/etc/nginx/nginx.conf"
[ -f /etc/sysconfig/nginx ] && . /etc/sysconfig/nginx
lockfile=/var/lock/subsys/nginx
make_dirs() {
# make required directories
user=`nginx -V 2>&1 | grep "configure arguments:" | sed 's/[^*]*--user=\([^ ]*\).*/\1/g' -`
options=`$nginx -V 2>&1 | grep 'configure arguments:'`
for opt in $options; do
if [ `echo $opt | grep '.*-temp-path'` ]; then
value=`echo $opt | cut -d "=" -f 2`
if [ ! -d "$value" ]; then
# echo "creating" $value
mkdir -p $value && chown -R $user $value
fi
fi
done
}
start() {
[ -x $nginx ] || exit 5
[ -f $NGINX_CONF_FILE ] || exit 6
make_dirs
echo -n $"Starting $prog: "
daemon $nginx -c $NGINX_CONF_FILE
retval=$?
echo
[ $retval -eq 0 ] && touch $lockfile
return $retval
}
stop() {
echo -n $"Stopping $prog: "
killproc $prog -QUIT
retval=$?
echo
[ $retval -eq 0 ] && rm -f $lockfile
return $retval
}
restart() {
configtest || return $?
stop
sleep 1
start
}
reload() {
configtest || return $?
echo -n $"Reloading $prog: "
killproc $nginx -HUP
RETVAL=$?
echo
}
force_reload() {
restart
}
configtest() {
$nginx -t -c $NGINX_CONF_FILE
}
rh_status() {
status $prog
}
rh_status_q() {
rh_status >/dev/null 2>&1
}
case "$1" in
start)
rh_status_q && exit 0
$1
;;
stop)
rh_status_q || exit 0
$1
;;
restart|configtest)
$1
;;
reload)
rh_status_q || exit 7
$1
;;
force-reload)
force_reload
;;
status)
rh_status
;;
condrestart|try-restart)
rh_status_q || exit 0
;;
*)
echo $"Usage: $0 {start|stop|status|restart|condrestart|try-restart|reload|force-reload|configtest}"
exit 2
esac
[root@localhost ~]# yum groupinstall "X Software Development" "Development Tools" "Development Libraries"
[root@localhost ~]# yum install pcre-devel
[root@localhost nginx]# groupadd -r nginx
[root@localhost nginx]# useradd -g nginx -r nginx
[root@localhost nginx-1.2.3]#./configure --prefix=/usr --sbin-path=/usr/sbin/nginx --conf-path=/etc/nginx/nginx.conf --error-log-path=/var/log/nginx/error.log --http-log-path=/var/log/nginx/access.log --pid-path=/var/run/nginx/nginx.pid --lock-path=/var/lock/nginx.lock --user=nginx --group=nginx --with-http_ssl_module --with-http_flv_module --with-http_stub_status_module --with-http_gzip_static_module --http-client-body-temp-path=/var/tmp/nginx/client/ --http-proxy-temp-path=/var/tmp/nginx/proxy/ --http-fastcgi-temp-path=/var/tmp/nginx/fcgi/ --http-uwsgi-temp-path=/var/tmp/nginx/uwsgi --http-scgi-temp-path=/var/tmp/nginx/scgi --with-pcre
[root@localhost nginx-1.2.3]# make
[root@localhost nginx-1.2.3]# make install
[root@localhost ~]# mkdir -pv /var/tmp/nginx/client
为服务提供启动脚本:
vim /etc/rc.d/init.d/nginx
写入以下内容;
#!/bin/sh
#
# nginx - this script starts and stops the nginx daemon
#
# chkconfig: - 85 15
# description: Nginx is an HTTP(S) server, HTTP(S) reverse \
# proxy and IMAP/POP3 proxy server
# processname: nginx
# config: /etc/nginx/nginx.conf
# config: /etc/sysconfig/nginx
# pidfile: /var/run/nginx.pid
# Source function library.
. /etc/rc.d/init.d/functions
# Source networking configuration.
. /etc/sysconfig/network
# Check that networking is up.
[ "$NETWORKING" = "no" ] && exit 0
nginx="/usr/sbin/nginx"
prog=$(basename $nginx)
NGINX_CONF_FILE="/etc/nginx/nginx.conf"
[ -f /etc/sysconfig/nginx ] && . /etc/sysconfig/nginx
lockfile=/var/lock/subsys/nginx
make_dirs() {
# make required directories
user=`nginx -V 2>&1 | grep "configure arguments:" | sed 's/[^*]*--user=\([^ ]*\).*/\1/g' -`
options=`$nginx -V 2>&1 | grep 'configure arguments:'`
for opt in $options; do
if [ `echo $opt | grep '.*-temp-path'` ]; then
value=`echo $opt | cut -d "=" -f 2`
if [ ! -d "$value" ]; then
# echo "creating" $value
mkdir -p $value && chown -R $user $value
fi
fi
done
}
start() {
[ -x $nginx ] || exit 5
[ -f $NGINX_CONF_FILE ] || exit 6
make_dirs
echo -n $"Starting $prog: "
daemon $nginx -c $NGINX_CONF_FILE
retval=$?
echo
[ $retval -eq 0 ] && touch $lockfile
return $retval
}
stop() {
echo -n $"Stopping $prog: "
killproc $prog -QUIT
retval=$?
echo
[ $retval -eq 0 ] && rm -f $lockfile
return $retval
}
restart() {
configtest || return $?
stop
sleep 1
start
}
reload() {
configtest || return $?
echo -n $"Reloading $prog: "
killproc $nginx -HUP
RETVAL=$?
echo
}
force_reload() {
restart
}
configtest() {
$nginx -t -c $NGINX_CONF_FILE
}
rh_status() {
status $prog
}
rh_status_q() {
rh_status >/dev/null 2>&1
}
case "$1" in
start)
rh_status_q && exit 0
$1
;;
stop)
rh_status_q || exit 0
$1
;;
restart|configtest)
$1
;;
reload)
rh_status_q || exit 7
$1
;;
force-reload)
force_reload
;;
status)
rh_status
;;
condrestart|try-restart)
rh_status_q || exit 0
;;
*)
echo $"Usage: $0 {start|stop|status|restart|condrestart|try-restart|reload|force-reload|configtest}"
exit 2
esac
然后为此脚本赋予执行权限:
[root@localhost ~]# chmod +x /etc/rc.d/init.d/nginx
添加至服务管理列表,并让其开机自动启动:
[root@localhost ~]# chkconfig --add nginx
[root@localhost ~]# chkconfig nginx on
然后就能够启动服务并测试了:
[root@localhost ~]# service nginx restart
[root@localhost ~]# chmod +x /etc/rc.d/init.d/nginx
添加至服务管理列表,并让其开机自动启动:
[root@localhost ~]# chkconfig --add nginx
[root@localhost ~]# chkconfig nginx on
然后就能够启动服务并测试了:
[root@localhost ~]# service nginx restart
安装mysql(解压缩软件包安装,非编译安装):
[root@station24 ~]# tar xf mysql-5.5.24-linux2.6-i686.tar.gz -C /usr/local/
[root@station24 ~]# cd /usr/local
[root@station24 local]# ln -s mysql-5.5.24-linux2.6-i686 mysql
[root@station24 local]# groupadd -r mysql
[root@station24 local]# useradd -r -g mysql mysql
[root@station24 local]# cd mysql
[root@station24 ~]# tar xf mysql-5.5.24-linux2.6-i686.tar.gz -C /usr/local/
[root@station24 ~]# cd /usr/local
[root@station24 local]# ln -s mysql-5.5.24-linux2.6-i686 mysql
[root@station24 local]# groupadd -r mysql
[root@station24 local]# useradd -r -g mysql mysql
[root@station24 local]# cd mysql
建立逻辑卷,挂载mysql数据文件
[root@station24 ~]# pvcreate /dev/sda5
[root@station24 ~]# vgcreate myvg /dev/sda5
[root@station24 ~]# lvcreate -L 5G -n mydata /dev/myvg
[root@station24 ~]# mke2fs -j /dev/myvg/mydata
[root@station24 ~]# mkdir /data
[root@station24 data]# mkdir mydata
[root@station24 data]# chown -R mysql:mysql /data
[root@station24 mysql]# chown -R :mysql .
[root@station24 mysql]# scripts/mysql_install_db --datadir=/data/mydata --user=mysql
[root@station24 ~]# pvcreate /dev/sda5
[root@station24 ~]# vgcreate myvg /dev/sda5
[root@station24 ~]# lvcreate -L 5G -n mydata /dev/myvg
[root@station24 ~]# mke2fs -j /dev/myvg/mydata
[root@station24 ~]# mkdir /data
[root@station24 data]# mkdir mydata
[root@station24 data]# chown -R mysql:mysql /data
[root@station24 mysql]# chown -R :mysql .
[root@station24 mysql]# scripts/mysql_install_db --datadir=/data/mydata --user=mysql
为mysql提供配置文件
[root@station24 support-files]# cp my-large.cnf /etc/my.cnf
vim /etc/my.cnf
修改thread_concurrency = 4
添加datadir=/data/mydata
[root@station24 support-files]# cp my-large.cnf /etc/my.cnf
vim /etc/my.cnf
修改thread_concurrency = 4
添加datadir=/data/mydata
为mysql提供服务启动脚本,并加入服务列表,设置为开机启动
[root@station24 support-files]# cp mysql.server /etc/rc.d/init.d/mysqld
[root@station24 support-files]# chkconfig --add mysqld
修改环境变量
vim /etc/profile.d/mysql.sh
增长 export PATH=$PATH:/usr/local/mysql/bin
[root@station24 mysql]# vim /etc/man.config
增长MANPATH /usr/local/mysql/man
[root@station24 mysql]# vim /etc/ld.so.conf.d/mysql.conf
增长/usr/local/mysql/lib
[root@station24 mysql]# ldconfig -v
[root@station24 mysql]# ln -sv /usr/local/mysql/include /usr/include/mysql
到此mysql安装完成,能够启动了
[root@station24 support-files]# cp mysql.server /etc/rc.d/init.d/mysqld
[root@station24 support-files]# chkconfig --add mysqld
修改环境变量
vim /etc/profile.d/mysql.sh
增长 export PATH=$PATH:/usr/local/mysql/bin
[root@station24 mysql]# vim /etc/man.config
增长MANPATH /usr/local/mysql/man
[root@station24 mysql]# vim /etc/ld.so.conf.d/mysql.conf
增长/usr/local/mysql/lib
[root@station24 mysql]# ldconfig -v
[root@station24 mysql]# ln -sv /usr/local/mysql/include /usr/include/mysql
到此mysql安装完成,能够启动了
编译安装php:
若是想让编译的php支持mcrypt、mhash扩展和libevent,此处还须要下载以下几个rpm包并安装之:
libmcrypt-2.5.8-4.el5.centos.i386.rpm
libmcrypt-devel-2.5.8-4.el5.centos.i386.rpm
mhash-0.9.9-1.el5.centos.i386.rpm
mhash-devel-0.9.9-1.el5.centos.i386.rpm
mcrypt-2.6.8-1.el5.i386.rpm
最好使用升级的方式安装上面的rpm包,命令格式以下:
[root@localhost ~]# rpm -Uvh libmcrypt-2.5.7-5.el5.i386.rpm libmcrypt-devel-2.5.7-5.el5.i386.rpm mhash-devel-0.9.2-6.el5.i386.rpm mhash-0.9.2-6.el5.i386.rpm mcrypt-2.6.8-1.el5.i386.rpm
若是想让编译的php支持mcrypt、mhash扩展和libevent,此处还须要下载以下几个rpm包并安装之:
libmcrypt-2.5.8-4.el5.centos.i386.rpm
libmcrypt-devel-2.5.8-4.el5.centos.i386.rpm
mhash-0.9.9-1.el5.centos.i386.rpm
mhash-devel-0.9.9-1.el5.centos.i386.rpm
mcrypt-2.6.8-1.el5.i386.rpm
最好使用升级的方式安装上面的rpm包,命令格式以下:
[root@localhost ~]# rpm -Uvh libmcrypt-2.5.7-5.el5.i386.rpm libmcrypt-devel-2.5.7-5.el5.i386.rpm mhash-devel-0.9.2-6.el5.i386.rpm mhash-0.9.2-6.el5.i386.rpm mcrypt-2.6.8-1.el5.i386.rpm
安装php:
[root@localhost ~]# tar xf php-5.4.8.tar.bz2
[root@localhost ~]# cd php-5.4.8
[root@localhost php-5.4.8]# ./configure --prefix=/usr/local/php --with-mysql=/usr/local/mysql --with-openssl --enable-fpm --enable-sockets --enable-sysvshm --with-mysqli=/usr/local/mysql/bin/mysql_config --enable-mbstring --with-freetype-dir --with-jpeg-dir --with-png-dir --with-zlib-dir --with-libxml-dir=/usr --enable-xml --with-mhash --with-mcrypt --with-config-file-path=/etc --with-config-file-scan-dir=/etc/php.d --with-bz2 --with-curl
[root@localhost php-5.4.8]# make
[root@localhost php-5.4.8]# make test
[root@localhost php-5.4.8]# make install
为php提供配置文件
[root@localhost php-5.4.8]# cp php.ini-production /etc/php.ini
为php-fpm提供Sysv init脚本,并将其添加至服务列表
[root@localhost php-5.4.8]# cp sapi/fpm/init.d.php-fpm /etc/rc.d/init.d/php-fpm
[root@localhost php-5.4.8]# chmod +x /etc/rc.d/init.d/php-fpm
[root@localhost php-5.4.8]# chkconfig --add php-fpm
[root@localhost php-5.4.8]# chkconfig php-fpm on
为php-fpm提供配置文件
[root@localhost php-5.4.8]# cp /usr/local/php/etc/php-fpm.conf.default /usr/local/php/etc/php-fpm.conf
编辑php-fpm的配置文件:
vim /usr/local/php/etc/php-fpm.conf
配置fpm的相关选项为你所须要的值,并启用pid文件(以下最后一行):
pm.max_children = 100
[root@localhost ~]# tar xf php-5.4.8.tar.bz2
[root@localhost ~]# cd php-5.4.8
[root@localhost php-5.4.8]# ./configure --prefix=/usr/local/php --with-mysql=/usr/local/mysql --with-openssl --enable-fpm --enable-sockets --enable-sysvshm --with-mysqli=/usr/local/mysql/bin/mysql_config --enable-mbstring --with-freetype-dir --with-jpeg-dir --with-png-dir --with-zlib-dir --with-libxml-dir=/usr --enable-xml --with-mhash --with-mcrypt --with-config-file-path=/etc --with-config-file-scan-dir=/etc/php.d --with-bz2 --with-curl
[root@localhost php-5.4.8]# make
[root@localhost php-5.4.8]# make test
[root@localhost php-5.4.8]# make install
为php提供配置文件
[root@localhost php-5.4.8]# cp php.ini-production /etc/php.ini
为php-fpm提供Sysv init脚本,并将其添加至服务列表
[root@localhost php-5.4.8]# cp sapi/fpm/init.d.php-fpm /etc/rc.d/init.d/php-fpm
[root@localhost php-5.4.8]# chmod +x /etc/rc.d/init.d/php-fpm
[root@localhost php-5.4.8]# chkconfig --add php-fpm
[root@localhost php-5.4.8]# chkconfig php-fpm on
为php-fpm提供配置文件
[root@localhost php-5.4.8]# cp /usr/local/php/etc/php-fpm.conf.default /usr/local/php/etc/php-fpm.conf
编辑php-fpm的配置文件:
vim /usr/local/php/etc/php-fpm.conf
配置fpm的相关选项为你所须要的值,并启用pid文件(以下最后一行):
pm.max_children = 100
pm.start_servers = 8
pm.min_spare_servers = 5
pm.max_spare_servers = 12
pid = /usr/local/php/var/run/php-fpm.pid
接下来就能够启动php-fpm了:
service php-fpm start
使用以下命令来验证(若是此命令输出有中几个php-fpm进程就说明启动成功了):
ps aux | grep php-fpm
service php-fpm start
使用以下命令来验证(若是此命令输出有中几个php-fpm进程就说明启动成功了):
ps aux | grep php-fpm
整合nginx和php
编辑/etc/nginx/nginx.conf,启用以下选项:
location ~ \.php$ {
root html;
fastcgi_pass 127.0.0.1:9000;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME /scripts$fastcgi_script_name;
include fastcgi_params;
}
编辑/etc/nginx/fastcgi_params,将其内容更改成以下内容:
fastcgi_param GATEWAY_INTERFACE CGI/1.1;
fastcgi_param SERVER_SOFTWARE nginx;
fastcgi_param QUERY_STRING $query_string;
fastcgi_param REQUEST_METHOD $request_method;
fastcgi_param CONTENT_TYPE $content_type;
fastcgi_param CONTENT_LENGTH $content_length;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
fastcgi_param REQUEST_URI $request_uri;
fastcgi_param DOCUMENT_URI $document_uri;
fastcgi_param DOCUMENT_ROOT $document_root;
fastcgi_param SERVER_PROTOCOL $server_protocol;
fastcgi_param REMOTE_ADDR $remote_addr;
fastcgi_param REMOTE_PORT $remote_port;
fastcgi_param SERVER_ADDR $server_addr;
fastcgi_param SERVER_PORT $server_port;
fastcgi_param SERVER_NAME $server_name;
fastcgi_param GATEWAY_INTERFACE CGI/1.1;
fastcgi_param SERVER_SOFTWARE nginx;
fastcgi_param QUERY_STRING $query_string;
fastcgi_param REQUEST_METHOD $request_method;
fastcgi_param CONTENT_TYPE $content_type;
fastcgi_param CONTENT_LENGTH $content_length;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param SCRIPT_NAME $fastcgi_script_name;
fastcgi_param REQUEST_URI $request_uri;
fastcgi_param DOCUMENT_URI $document_uri;
fastcgi_param DOCUMENT_ROOT $document_root;
fastcgi_param SERVER_PROTOCOL $server_protocol;
fastcgi_param REMOTE_ADDR $remote_addr;
fastcgi_param REMOTE_PORT $remote_port;
fastcgi_param SERVER_ADDR $server_addr;
fastcgi_param SERVER_PORT $server_port;
fastcgi_param SERVER_NAME $server_name;
并在所支持的主页面格式中添加php格式的主页,相似以下:
location / {
root html;
index index.php index.html index.htm;
}
然后从新载入nginx的配置文件:
service nginx reload
location / {
root html;
index index.php index.html index.htm;
}
然后从新载入nginx的配置文件:
service nginx reload
三、在/usr/html新建index.php的测试页面,测试php是否能正常工做:
<?php
phpinfo();
?>
<?php
phpinfo();
?>
接着就能够经过浏览器访问此测试页面了
安装phpMyAdmin
[root@localhost ~]# tar xf phpMyAdmin-3.5.1-all-languages.tar.bz2
[root@localhost ~]# cd phpMyAdmin-3.5.1-all-languages
[root@localhost ~]# mkdir /web/htdocs -pv
[root@localhost phpMyAdmin-3.5.1-all-languages]# mv * /web/htdocs
[root@localhost phpMyAdmin-3.5.1-all-languages]# cd /web/htdocs
[root@localhost htdocs]# cp config.sample.inc.php config.inc.php
[root@localhost htdocs]# vim /etc/nginx/nginx.conf
[root@localhost ~]# tar xf phpMyAdmin-3.5.1-all-languages.tar.bz2
[root@localhost ~]# cd phpMyAdmin-3.5.1-all-languages
[root@localhost ~]# mkdir /web/htdocs -pv
[root@localhost phpMyAdmin-3.5.1-all-languages]# mv * /web/htdocs
[root@localhost phpMyAdmin-3.5.1-all-languages]# cd /web/htdocs
[root@localhost htdocs]# cp config.sample.inc.php config.inc.php
[root@localhost htdocs]# vim /etc/nginx/nginx.conf
修改location相关内容并启用php的location部分,以下所示:
location / {
root /web/htdocs;
index index.php index.html index.htm;
}
location ~ \.php$ {
root /web/htdocs;
fastcgi_pass 127.0.0.1:9000;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME /scripts$fastcgi_script_name;
include fastcgi_params;
location / {
root /web/htdocs;
index index.php index.html index.htm;
}
location ~ \.php$ {
root /web/htdocs;
fastcgi_pass 127.0.0.1:9000;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME /scripts$fastcgi_script_name;
include fastcgi_params;
从新载入配置文件
[root@localhost htdocs]# service nginx reload
链接数据库,为phpMyAdmin本地用户设定密码:
mysql> SET PASSWORD FOR root@localhost=PASSWORD('redhat');
mysql> SET PASSWORD FOR root@127.0.0.1=PASSWORD('redhat');
mysql> FLUSH PRIVILEGES;
mysql> SET PASSWORD FOR root@localhost=PASSWORD('redhat');
mysql> SET PASSWORD FOR root@127.0.0.1=PASSWORD('redhat');
mysql> FLUSH PRIVILEGES;
至此,能够打开浏览器测试使用phpMyAdmin
安装xcache,为php加速:
[root@localhost ~]# tar xf xcache-2.0.0.tar.bz2
[root@localhost ~]# cd xcache-2.0.0
[root@localhost xcache-2.0.0]# /usr/local/php/bin/phpize
[root@localhost xcache-2.0.0]# ./configure --enable-xcache --with-php-config=/usr/local/php/bin/php-config
[root@localhost xcache-2.0.0]# make && make install
安装结束时,会出现相似以下行:
Installing shared extensions: /usr/local/php/lib/php/extensions/no-debug-zts-20100525/
编辑php.ini,整合php和xcache:
首先将xcache提供的样例配置导入php.ini
[root@localhost xcache-2.0.0]# mkdir /etc/php.d
[root@localhost xcache-2.0.0]# cp xcache.ini /etc/php.d
接下来编辑/etc/php.d/xcache.ini,找到zend_extension开头的行,修改成以下行:
zend_extension = /usr/local/php/lib/php/extensions/no-debug-zts-20100525/xcache.so
注意:若是php.ini文件中有多条zend_extension指令行,要确保此新增的行排在第一位。
从新启动php-fpm
service php-fpm restart
[root@localhost ~]# cd xcache-2.0.0
[root@localhost xcache-2.0.0]# /usr/local/php/bin/phpize
[root@localhost xcache-2.0.0]# ./configure --enable-xcache --with-php-config=/usr/local/php/bin/php-config
[root@localhost xcache-2.0.0]# make && make install
安装结束时,会出现相似以下行:
Installing shared extensions: /usr/local/php/lib/php/extensions/no-debug-zts-20100525/
编辑php.ini,整合php和xcache:
首先将xcache提供的样例配置导入php.ini
[root@localhost xcache-2.0.0]# mkdir /etc/php.d
[root@localhost xcache-2.0.0]# cp xcache.ini /etc/php.d
接下来编辑/etc/php.d/xcache.ini,找到zend_extension开头的行,修改成以下行:
zend_extension = /usr/local/php/lib/php/extensions/no-debug-zts-20100525/xcache.so
注意:若是php.ini文件中有多条zend_extension指令行,要确保此新增的行排在第一位。
从新启动php-fpm
service php-fpm restart
nginx配置文件中某些指令的用法及经常使用功能的实现方式:
location:定义基于不一样的URI,定制不一样的访问属性(页面,权限··)
syntax: location [=|~|~*|^~|@] /uri/ { ... }
=精确匹配(通常匹配单个文件)
~区分字母大小写的模式匹配
~*不区分大小写的模式匹配
^~禁用模式匹配(作字符逐个匹配)
优先级:=(最高),^~,~ ~*
nginx中定义路径别名:
location /bbs/ {
alias /spool/bbs/;
}
}
定义一个server
server {
listen 80;
server_name mail.gao.com;
root /mail/htdocs;
}
定义访问权限(基于IP地址):
location / {
deny 192.168.0.7;
allow 192.168.0.0/24;
deny all;
}
location / {
deny 192.168.0.7;
allow 192.168.0.0/24;
deny all;
}
基于用户名的访问控制:
使用htpasswd工具建立用户(需提早安装httpd)
[root@localhost ~]# htpasswd -c -m /etc/nginx/.htpasswd hadoop
[root@localhost nginx]# chmod o=--- .htpasswd
[root@localhost nginx]# chown :nginx .htpasswd
在须要添加访问控制的页面中加入以下内容便可:
location / {
auth_basic "Restricted";
auth_basic_user_file /etc/nginx/.htpasswd;
}
[root@localhost ~]# htpasswd -c -m /etc/nginx/.htpasswd hadoop
[root@localhost nginx]# chmod o=--- .htpasswd
[root@localhost nginx]# chown :nginx .htpasswd
在须要添加访问控制的页面中加入以下内容便可:
location / {
auth_basic "Restricted";
auth_basic_user_file /etc/nginx/.htpasswd;
}
配置https:
CA服务器:
编辑 /etc/pki/tls/openssl.cnf
CA服务器:
编辑 /etc/pki/tls/openssl.cnf
修改CA路径以下:
dir=/etc/pki/CA
dir=/etc/pki/CA
建立相关目录及文件:
[root@localhost CA]# mkdir certs newcerts crl
[root@localhost CA]# touch index.txt
[root@localhost CA]# echo 01 > serial
[root@localhost CA]# touch index.txt
[root@localhost CA]# echo 01 > serial
自签证书
[root@localhost CA]# (umask 077;openssl genrsa 1024 > private/cakey.pem)
[root@localhost CA]# openssl req -x509 -new -key private/cakey.pem -out cacert.pem -days 3650
[root@localhost CA]# (umask 077;openssl genrsa 1024 > private/cakey.pem)
[root@localhost CA]# openssl req -x509 -new -key private/cakey.pem -out cacert.pem -days 3650
证书申请方:
为某服务生成密钥:
[root@localhost ~]# cd /etc/nginx/
[root@localhost nginx]# mkdir ssl
[root@localhost nginx]# cd ssl
[root@localhost ssl]# (umask 077;openssl genrsa 1024 > nginx.key)
[root@localhost ssl]# openssl req -new -key nginx.key -out nginx.csr
为某服务生成密钥:
[root@localhost ~]# cd /etc/nginx/
[root@localhost nginx]# mkdir ssl
[root@localhost nginx]# cd ssl
[root@localhost ssl]# (umask 077;openssl genrsa 1024 > nginx.key)
[root@localhost ssl]# openssl req -new -key nginx.key -out nginx.csr
将此请求经过某方式传递给CA服务器
CA签署证书(在CA服务器上操做)
[root@localhost ssl]# openssl ca -in nginx.csr -out nginx.crt -days 3650
[root@localhost ssl]# openssl ca -in nginx.csr -out nginx.crt -days 3650
编辑/etc/nginx/nginx.conf,启用https功能便可
若是要在SSL中使用php,须要复制/etc/nginx/nginx.conf中的php的location到https区域中,并在php的location中添加此选项:
fastcgi_param HTTPS on;以下所示:
server {
listen 443;
server_name localhost;
fastcgi_param HTTPS on;以下所示:
server {
listen 443;
server_name localhost;
ssl on;
ssl_certificate ssl/nginx.crt;
ssl_certificate_key ssl/nginx.key;
ssl_certificate ssl/nginx.crt;
ssl_certificate_key ssl/nginx.key;
ssl_session_timeout 5m;
ssl_protocols SSLv2 SSLv3 TLSv1;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
location / {
root /web/htdocs;
index index.php index.html index.htm;
}
location ~ \.php$ {
root /web/htdocs;
fastcgi_pass 127.0.0.1:9000;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME /scripts$fastcgi_script_name;
include fastcgi_params;
fastcgi_param HTTPS on;
deny 192.168.0.7;
allow 192.168.0.0/24;
deny all;
auth_basic "Restricted";
auth_basic_user_file /etc/nginx/.htpasswd;
}
}
root /web/htdocs;
index index.php index.html index.htm;
}
location ~ \.php$ {
root /web/htdocs;
fastcgi_pass 127.0.0.1:9000;
fastcgi_index index.php;
fastcgi_param SCRIPT_FILENAME /scripts$fastcgi_script_name;
include fastcgi_params;
fastcgi_param HTTPS on;
deny 192.168.0.7;
allow 192.168.0.0/24;
deny all;
auth_basic "Restricted";
auth_basic_user_file /etc/nginx/.htpasswd;
}
}
开启Nginx状态监控的功能:
location /nginx_status {
stub_status on;
access_log off;
}
浏览器中打开 http://IP/nginx_status便可
定义默认虚拟主机
server { listen 80 default; server_name _; root /web/default; }
相关文章
- 1. 构建LNMP平台
- 2. 构建LNMP架构平台
- 3. Lnmp平台搭建
- 4. LNMP平台搭建
- 5. Redhat+Nginx0.8.46+PHP5.2.14+Mysql5.1.46构建LNMP(X64)平台
- 6. Linux LNMP平台架构搭建
- 7. Lnmp平台构建wordpress与phpMyadmin
- 8. 构建LNMP平台及应用部署
- 9. 基于RHEL5的LNMP平台的构建
- 10. LNMP源码平台搭建
- 更多相关文章...
- • ionic 平台 - ionic 教程
- • Web Services 平台元素 - Web Services 教程
- • 适用于PHP初学者的学习线路和建议
- • NewSQL-TiDB相关
相关标签/搜索
每日一句
-
每一个你不满意的现在,都有一个你没有努力的曾经。
最新文章
- 1. Window下Ribbit MQ安装
- 2. Linux下Redis安装及集群搭建
- 3. shiny搭建网站填坑战略
- 4. Mysql8.0.22安装与配置详细教程
- 5. Hadoop安装及配置
- 6. Python爬虫初学笔记
- 7. 部署LVS-Keepalived高可用集群
- 8. keepalived+mysql高可用集群
- 9. jenkins 公钥配置
- 10. HA实用详解
欢迎关注本站公众号,获取更多信息
相关文章