2.0Tonmcat高級(jí)配置和jDK的安裝配置

一、安裝JDK

我們提供的服務(wù)有：成都網(wǎng)站設(shè)計(jì)、成都網(wǎng)站建設(shè)、外貿(mào)網(wǎng)站建設(shè)、微信公眾號(hào)開(kāi)發(fā)、網(wǎng)站優(yōu)化、網(wǎng)站認(rèn)證、上海ssl等。為近1000家企事業(yè)單位解決了網(wǎng)站和推廣的問(wèn)題。提供周到的售前咨詢(xún)和貼心的售后服務(wù)，是有科學(xué)管理、有技術(shù)的上海網(wǎng)站制作公司

1、下載

wget http://download.oracle.com/otn-pub/java/jdk/8u65-b17/jdk-8u65-linux-x64.tar.gz

2、解壓和安裝

[root@www src]# tar zxf jdk-8u65-linux-x64.tar.gz
[root@www src]# mv jdk1.8.0_65 /usr/local/

3、設(shè)置環(huán)境變量

[root@www src]# vim /etc/profile.d/java.sh

JAVA_HOME=/usr/local/jdk1.8.0_65
JAVA_BIN=/usr/local/jdk1.8.0_65/bin
JRE_HOME=/usr/local/jdk1.8.0_65/jre
PATH=$PATH:/usr/local/jdk1.8.0_65/bin:/usr/local/jdk1.8.0_65/jre/bin
CLASSPATH=/usr/local/jdk1.8.0_65/jre/lib:/usr/local/jdk1.8.0_65/lib:/usr/local/jdk1.8.0_65/jre/lib/charsets
.jar

4、初始化

[root@www src]# . /etc/profile.d/java.sh //和source一樣
[root@www src]# source /etc/profile.d/java.sh

[root@www src]# which java
/usr/local/jdk1.8.0_65/bin/java

[root@www jdk1.8.0_65]# export PATH JAVA_HOME JAVA_BIN JRE_HOME CALSSPATH

5、查看版本

[root@www src]# java -version
java version "1.8.0_65"
Java(TM) SE Runtime Environment (build 1.8.0_65-b17)
Java HotSpot(TM) 64-Bit Server VM (build 25.65-b01, mixed mode)

二、安裝Tomcat

1、下載

[root@www src]# wget http://mirror.bit.edu.cn/apache/tomcat/tomcat-8/v8.0.30/bin/apache-tomcat-8.0.30.tar.gz

2、解壓和安裝

[root@www src]# tar zxf apache-tomcat-8.0.30.tar.gz

[root@www src]# mv apache-tomcat-8.0.30 /usr/local/tomcat
[root@www src]# ls /usr/local/tomcat/
bin conf lib LICENSE logs NOTICE RELEASE-NOTES RUNNING.txt temp webapps work

3、拷貝啟動(dòng)腳本

[root@www src]# cd /usr/local/tomcat/
[root@www tomcat]# cp -v bin/catalina.sh /etc/init.d/tomcat
`bin/catalina.sh' -> `/etc/init.d/tomcat'

4、設(shè)置開(kāi)機(jī)啟動(dòng)

[root@www tomcat]# chmod 755 /etc/init.d/tomcat
[root@www tomcat]# chkconfig --add tomcat
service tomcat does not support chkconfig //服務(wù)不支持

解決：

[root@www tomcat]# vim /etc/init.d/tomcat //在開(kāi)頭加入以下內(nèi)容

#!/bin/sh
# chkconfig: 2345 63 37
# description: tomcat server init script
# Source Function Library
. /etc/init.d/functions
JAVA_HOME=/usr/local/jdk1.8.0_65
CATALINA_HOME=/usr/local/tomcat

[root@www tomcat]# chkconfig --add tomcat
[root@www tomcat]# chkconfig tomcat on

5、啟動(dòng)Tomcat

[root@www jdk1.8.0_65]# /etc/init.d/tomcat start
Using CATALINA_BASE:   /usr/local/tomcat
Using CATALINA_HOME:   /usr/local/tomcat
Using CATALINA_TMPDIR: /usr/local/tomcat/temp
Using JRE_HOME:        /usr/local/jdk1.8.0_65/jre
Using CLASSPATH:       /usr/local/tomcat/bin/bootstrap.jar:/usr/local/tomcat/bin/tomcat-juli.jar
Tomcat started.

查看tomcat進(jìn)程
[root@www ~]# ps aux |grep tomcat
root 3835 2.1 7.8 2722304 78704 pts/1 Sl 02:26 0:05 /usr/local/jdk1.8.0_65/jre/bin/java -Djava.util.logging.config.file=/usr/local/tomcat/conf/logging.properties -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager -Djava.endorsed.dirs=/usr/local/tomcat/endorsed -classpath /usr/local/tomcat/bin/bootstrap.jar:/usr/local/tomcat/bin/tomcat-juli.jar -Dcatalina.base=/usr/local/tomcat -Dcatalina.home=/usr/local/tomcat -Djava.io.tmpdir=/usr/local/tomcat/temp org.apache.catalina.startup.Bootstrap start
root 3867 0.0 0.0 103248 884 pts/1 S+ 02:30 0:00 grep tomcat

[root@www ~]# /etc/init.d/tomcat stop

[root@www ~]# /etc/init.d/tomcat start

6、訪問(wèn)測(cè)試

在瀏覽器輸入http://192.168.1.21:8080

2.0Tonmcat高級(jí)配置和jDK的安裝配置

三、Tomcat的配置和優(yōu)化

1、修改監(jiān)聽(tīng)端口

（1）停止之前安裝nginx的進(jìn)程，避免80端口被占用

[root@www ~]# /etc/init.d/nginx stop
Stopping Nginx: [ OK ]
[root@www ~]# chkconfig nginx off

（2）修改tomcat監(jiān)聽(tīng)端口為80

[root@www ~]# cd /usr/local/tomcat/conf/
[root@www conf]# ls
Catalina catalina.properties logging.properties tomcat-users.xml web.xml
catalina.policy context.xml server.xml tomcat-users.xsd

[root@www conf]# vim server.xml

找到69行

69 <Connector port="8080" protocol="HTTP/1.1"

修改為

69 <Connector port="80" protocol="HTTP/1.1"

（3）重啟tomcat

[root@www conf]# /etc/init.d/tomcat stop

[root@www conf]# /etc/init.d/tomcat start

（4）查看監(jiān)聽(tīng)端口

[root@www conf]# netstat -nlp | grep java
tcp        0      0 :::80                       :::*                        LISTEN      4673/java
tcp        0      0 ::ffff:127.0.0.1:8005       :::*                        LISTEN      4673/java
tcp        0      0 :::8009                     :::*                        LISTEN      4673/java

訪問(wèn)測(cè)試http://192.168.1.21/

2、虛擬主機(jī)配置

tomcat的默認(rèn)網(wǎng)站根目錄是/usr/local/tomcat/webapps/ROOT/

（1）增加虛擬目錄配置

[root@www conf]# vim server.xml

path="/xuni" --虛擬目錄

docBase="/data/tomcatweb" --實(shí)際目錄

（2）創(chuàng)建虛擬目錄

[root@www ~]# mkdir -p /data/tomcatweb

創(chuàng)建測(cè)試頁(yè)面

[root@www ~]# vim /data/tomcatweb/111.jsp

</center></body></html>

[root@www ~]# /etc/init.d/tomcat stop
[root@www ~]# /etc/init.d/tomcat start

[root@www ~]# ps aux |grep tomcat
root       5872 34.7 7.6 2722304 76924 pts/1   Sl   04:46   0:04 /usr/local/jdk1.8.0_65/jre/bin/java -Djava.util.logging.config.file=/usr/local/tomcat/conf/logging.properties -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager -Djava.endorsed.dirs=/usr/local/tomcat/endorsed -classpath /usr/local/tomcat/bin/bootstrap.jar:/usr/local/tomcat/bin/tomcat-juli.jar -Dcatalina.base=/usr/local/tomcat -Dcatalina.home=/usr/local/tomcat -Djava.io.tmpdir=/usr/local/tomcat/temp org.apache.catalina.startup.Bootstrap start
root       5896 0.0 0.0 103248   884 pts/1    S+   04:46   0:00 grep tomcat
[root@www ~]# netstat -nlp |grep java
tcp        0      0 :::80                       :::*                        LISTEN      5872/java
tcp        0      0 ::ffff:127.0.0.1:8005       :::*                        LISTEN      5872/java
tcp        0      0 :::8009                     :::*                        LISTEN      5872/java

訪問(wèn)測(cè)試：

[root@www ~]# curl http://192.168.1.21/xuni/111.jsp
<html><body><center>
Now time is: Mon Dec 21 04:48:19 CST 2015
</center></body></html>

[root@www ~]# curl -x192.168.1.21:80 localhost/xuni/111.jsp
<html><body><center>
Now time is: Mon Dec 21 04:48:56 CST 2015
</center></body></html>

四、限制主機(jī)訪問(wèn)Tomcat

1、修改server.xml

[root@www conf]# vim server.xml

        <Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
               prefix="localhost_access_log" suffix=".txt"
               pattern="%h %l %u %t "%r" %s %b" />
        <Context path="/xuni" docBase="/data/tomcatweb" debug="0" reloadable="true" crossContext="true"/>
            //允許192.168.1.0網(wǎng)段訪問(wèn)，拒絕192.168.1.218訪問(wèn)
        <Valve className="org.apache.catalina.valves.RemoteAddrValve"
                allow="192.168.1.*" deny="192.168.1.218"/>

      </Host>

2、訪問(wèn)測(cè)試

[root@www ~]# curl http://192.168.1.21 -I
HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Date: Sun, 20 Dec 2015 21:37:32 GMT
在192.168.1.218下訪問(wèn)

[root@sh ~]# curl http://192.168.1.21 -I
HTTP/1.1 403 Forbidden
Server: Apache-Coyote/1.1
Transfer-Encoding: chunked
Date: Sun, 20 Dec 2015 21:38:01 GMT

2.0Tonmcat高級(jí)配置和jDK的安裝配置

五、配置用戶(hù)WEB網(wǎng)站

1、創(chuàng)建用戶(hù)及頁(yè)面

[root@www ~]# useradd admin1
[root@www ~]# useradd admin2

[root@www ~]# su - admin1
[admin1@www ~]$ pwd
/home/admin1
[admin1@www ~]$ mkdir public_html
[admin1@www ~]$ echo "admin1" >public_html/index.html
[admin1@www ~]$ ll
total 4
drwxrwxr-x 2 admin1 admin1 4096 Dec 21 05:54 public_html
[admin1@www ~]$ chmod 711 /home/admin1
[admin1@www ~]$ ll /home/admin1/public_html/index.html
-rw-rw-r-- 1 admin1 admin1 7 Dec 21 05:54 /home/admin1/public_html/index.html

2、配置server.xml

[root@www conf]# vim server.xml

在host中增加以下內(nèi)容

3、訪問(wèn)用戶(hù)admin1的網(wǎng)頁(yè)，在瀏覽器輸入http://192.168.1.21/~admin1

2.0Tonmcat高級(jí)配置和jDK的安裝配置

六、配置Tomcat服務(wù)器支持CGI

CGI是通用網(wǎng)關(guān)接口功能

1、安裝perl軟件

[root@www ~]# yum -y install perl

2、編輯/usr/local/tomcat/conf/web.xml文件

[root@www ~]# vim /usr/local/tomcat/conf/web.xml

369     <servlet>
370         <servlet-name>cgi</servlet-name>
371         <servlet-class>org.apache.catalina.servlets.CGIServlet</servlet-class>
372         <init-param>
373           <param-name>debug</param-name>
374           <param-value>0</param-value>
375         </init-param>
376         <init-param>
377           <param-name>cgiPathPrefix</param-name>
378           <param-value>WEB-INF/cgi</param-value>
379         </init-param>
380          <load-on-startup>5</load-on-startup>
381     </servlet>

417     <servlet-mapping>
418         <servlet-name>cgi</servlet-name>
419         <url-pattern>/cgi-bin/*</url-pattern>
420     </servlet-mapping>

3、編輯/usr/local/tomcat/conf/context.xml文件，增加privileged配置

<?xml version='1.0' encoding='utf-8'?>
<Context privileged="true">
<WatchedResource>WEB-INF/web.xml</WatchedResource>
<WatchedResource>${catalina.base}/conf/web.xml</WatchedResource>
</Context>

4、創(chuàng)建CGI測(cè)試頁(yè)面

[root@www ~]# mkdir /usr/local/tomcat/webapps/ROOT/WEB-INF/cgi/test.cgi

#!/usr/bin/perl
print "Content-type:text/plain\n\n";
print "Hello cgi\n";
#
[root@www ~]# chmod 711 usr/local/tomcat/webapps/ROOT/WEB-INF/cgi/test.cgi

5、測(cè)試cgi

[root@www ~]# /etc/init.d/tomcat stop
[root@www ~]# /etc/init.d/tomcat start

2.0Tonmcat高級(jí)配置和jDK的安裝配置

七、配置管理Tomcat服務(wù)器

1、配置/usr/local/tomcat/conf/tomcat-users.xml文件，可以配置tomcat管理用戶(hù)，定義角色及角色中包含的用戶(hù)和密碼，修改后內(nèi)容如下

[root@www ~]# vim /usr/local/tomcat/conf/tomcat-users.xml

<?xml version='1.0' encoding='utf-8'?>
<tomcat-users xmlns="http://tomcat.apache.org/xml"
              xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
              xsi:schemaLocation="http://tomcat.apache.org/xml tomcat-users.xsd"
              version="1.0">

//用戶(hù)為kiven，密碼為kiven，屬于角色manager-gui
</tomcat-users>

2、訪問(wèn)測(cè)試，打開(kāi)tomcat首頁(yè)，點(diǎn)擊頁(yè)面右上角【Manager App】

2.0Tonmcat高級(jí)配置和jDK的安裝配置

訪問(wèn)【Server Status】

2.0Tonmcat高級(jí)配置和jDK的安裝配置

3、配置Host Manager，可以管理tomcat虛擬主機(jī)

（1）編輯/usr/local/tomcat/webapps/manager/WEB-INF/web.xml文件

在</web-app>行添加以下內(nèi)容

<security-role>
    <description>
        The role that is required to access to the Host Manager pages
    </description>
    <role-name>admin-gui</role-name>
</security-role>
</web-app>

（2）編輯/usr/local/tomcat/conf/tomcat-users.xml文件

（3）訪問(wèn)Host manager

2.0Tonmcat高級(jí)配置和jDK的安裝配置

八、配置https網(wǎng)站

1、生成服務(wù)器端證書(shū)文件，證書(shū)有效期為36500天

[root@www ~]# keytool -genkey -alias tomcat -keyalg RSA -keystore /etc/tomcat.keystore -validity 36500
Enter keystore password: //6位密鑰庫(kù)口令
Re-enter new password:
What is your first and last name? //名字，可以是服務(wù)器網(wǎng)站名稱(chēng)
[Unknown]: hm
What is the name of your organizational unit? //組織單位名稱(chēng)
[Unknown]: it
What is the name of your organization? //組織名稱(chēng)
[Unknown]: redhat
What is the name of your City or Locality? //城市
[Unknown]: shanghai
What is the name of your State or Province? //省市
[Unknown]: shanghai
What is the two-letter country code for this unit? //國(guó)家或地區(qū)代碼
[Unknown]: CN
Is CN=hm, OU=it, O=redhat, L=shanghai, ST=shanghai, C=CN correct?
[no]: y

Enter key password for <tomcat>
(RETURN if same as keystore password):

2、配置/usr/local/tomcat/conf/server.xml文件

<?xml version='1.0' encoding='utf-8'?>

......

</Service>

3、配置/usr/local/tomcat/conf/web.xml文件，在</web-app>行上面增加以下內(nèi)容

    <security-constraint>
        <web-resource-collection>
        <web-resource-name>SSL</web-resource-name>
        <url-pattern>/*</url-pattern>
        </web-resource-collection>
        <user-data-constraint>
        <transport-guarantee>CONFIDENTIAL</transport-guarantee>
        </user-data-constraint>
    <security-constraint>
</web-app>

4、重啟tomcat服務(wù)

[root@www ~]# /etc/init.d/tomcat stop
[root@www ~]# /etc/init.d/tomcat start
[root@www ~]# netstat -anlp |grep 8443
tcp 0 0 :::8443 :::* LISTEN 8372/java

5、訪問(wèn)https網(wǎng)站 2.0Tonmcat高級(jí)配置和jDK的安裝配置

6、修改https監(jiān)聽(tīng)端口為默認(rèn)的端口443

2.0Tonmcat高級(jí)配置和jDK的安裝配置

文章題目：2.0Tonmcat高級(jí)配置和jDK的安裝配置
瀏覽路徑：http://muchs.cn/article42/ijosec.html

成都網(wǎng)站建設(shè)公司_創(chuàng)新互聯(lián)，為您提供網(wǎng)站排名、自適應(yīng)網(wǎng)站、網(wǎng)站導(dǎo)航、微信小程序、關(guān)鍵詞優(yōu)化、網(wǎng)站收錄

聲明：本網(wǎng)站發(fā)布的內(nèi)容（圖片、視頻和文字）以用戶(hù)投稿、用戶(hù)轉(zhuǎn)載內(nèi)容為主，如果涉及侵權(quán)請(qǐng)盡快告知，我們將會(huì)在第一時(shí)間刪除。文章觀點(diǎn)不代表本網(wǎng)站立場(chǎng)，如需處理請(qǐng)聯(lián)系客服。電話(huà)：028-86922220；郵箱：631063699@qq.com。內(nèi)容未經(jīng)允許不得轉(zhuǎn)載，或轉(zhuǎn)載時(shí)需注明來(lái)源：創(chuàng)新互聯(lián)

猜你還喜歡下面的內(nèi)容