一、安裝JDK
我們提供的服務(wù)有:成都網(wǎng)站設(shè)計(jì)、成都網(wǎng)站建設(shè)、外貿(mào)網(wǎng)站建設(shè)、微信公眾號(hào)開(kāi)發(fā)、網(wǎng)站優(yōu)化、網(wǎng)站認(rèn)證、上海ssl等。為近1000家企事業(yè)單位解決了網(wǎng)站和推廣的問(wèn)題。提供周到的售前咨詢(xún)和貼心的售后服務(wù),是有科學(xué)管理、有技術(shù)的上海網(wǎng)站制作公司
1、下載
wget http://download.oracle.com/otn-pub/java/jdk/8u65-b17/jdk-8u65-linux-x64.tar.gz
2、解壓和安裝
[root@www src]# tar zxf jdk-8u65-linux-x64.tar.gz
[root@www src]# mv jdk1.8.0_65 /usr/local/
3、設(shè)置環(huán)境變量
[root@www src]# vim /etc/profile.d/java.sh
JAVA_HOME=/usr/local/jdk1.8.0_65
JAVA_BIN=/usr/local/jdk1.8.0_65/bin
JRE_HOME=/usr/local/jdk1.8.0_65/jre
PATH=$PATH:/usr/local/jdk1.8.0_65/bin:/usr/local/jdk1.8.0_65/jre/bin
CLASSPATH=/usr/local/jdk1.8.0_65/jre/lib:/usr/local/jdk1.8.0_65/lib:/usr/local/jdk1.8.0_65/jre/lib/charsets
.jar
4、初始化
[root@www src]# . /etc/profile.d/java.sh //和source一樣
[root@www src]# source /etc/profile.d/java.sh
[root@www src]# which java
/usr/local/jdk1.8.0_65/bin/java
[root@www jdk1.8.0_65]# export PATH JAVA_HOME JAVA_BIN JRE_HOME CALSSPATH
5、查看版本
[root@www src]# java -version
java version "1.8.0_65"
Java(TM) SE Runtime Environment (build 1.8.0_65-b17)
Java HotSpot(TM) 64-Bit Server VM (build 25.65-b01, mixed mode)
二、安裝Tomcat
1、下載
[root@www src]# wget http://mirror.bit.edu.cn/apache/tomcat/tomcat-8/v8.0.30/bin/apache-tomcat-8.0.30.tar.gz
2、解壓和安裝
[root@www src]# tar zxf apache-tomcat-8.0.30.tar.gz
[root@www src]# mv apache-tomcat-8.0.30 /usr/local/tomcat
[root@www src]# ls /usr/local/tomcat/
bin conf lib LICENSE logs NOTICE RELEASE-NOTES RUNNING.txt temp webapps work
3、拷貝啟動(dòng)腳本
[root@www src]# cd /usr/local/tomcat/
[root@www tomcat]# cp -v bin/catalina.sh /etc/init.d/tomcat
`bin/catalina.sh' -> `/etc/init.d/tomcat'
4、設(shè)置開(kāi)機(jī)啟動(dòng)
[root@www tomcat]# chmod 755 /etc/init.d/tomcat
[root@www tomcat]# chkconfig --add tomcat
service tomcat does not support chkconfig //服務(wù)不支持
解決:
[root@www tomcat]# vim /etc/init.d/tomcat //在開(kāi)頭加入以下內(nèi)容
#!/bin/sh
# chkconfig: 2345 63 37
# description: tomcat server init script
# Source Function Library
. /etc/init.d/functions
JAVA_HOME=/usr/local/jdk1.8.0_65
CATALINA_HOME=/usr/local/tomcat
[root@www tomcat]# chkconfig --add tomcat
[root@www tomcat]# chkconfig tomcat on
5、啟動(dòng)Tomcat
[root@www jdk1.8.0_65]# /etc/init.d/tomcat start
Using CATALINA_BASE: /usr/local/tomcat
Using CATALINA_HOME: /usr/local/tomcat
Using CATALINA_TMPDIR: /usr/local/tomcat/temp
Using JRE_HOME: /usr/local/jdk1.8.0_65/jre
Using CLASSPATH: /usr/local/tomcat/bin/bootstrap.jar:/usr/local/tomcat/bin/tomcat-juli.jar
Tomcat started.
查看tomcat進(jìn)程
[root@www ~]# ps aux |grep tomcat
root 3835 2.1 7.8 2722304 78704 pts/1 Sl 02:26 0:05 /usr/local/jdk1.8.0_65/jre/bin/java -Djava.util.logging.config.file=/usr/local/tomcat/conf/logging.properties -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager -Djava.endorsed.dirs=/usr/local/tomcat/endorsed -classpath /usr/local/tomcat/bin/bootstrap.jar:/usr/local/tomcat/bin/tomcat-juli.jar -Dcatalina.base=/usr/local/tomcat -Dcatalina.home=/usr/local/tomcat -Djava.io.tmpdir=/usr/local/tomcat/temp org.apache.catalina.startup.Bootstrap start
root 3867 0.0 0.0 103248 884 pts/1 S+ 02:30 0:00 grep tomcat
[root@www ~]# /etc/init.d/tomcat stop
[root@www ~]# /etc/init.d/tomcat start
6、訪問(wèn)測(cè)試
在瀏覽器輸入http://192.168.1.21:8080
三、Tomcat的配置和優(yōu)化
1、修改監(jiān)聽(tīng)端口
(1)停止之前安裝nginx的進(jìn)程,避免80端口被占用
[root@www ~]# /etc/init.d/nginx stop
Stopping Nginx: [ OK ]
[root@www ~]# chkconfig nginx off
(2)修改tomcat監(jiān)聽(tīng)端口為80
[root@www ~]# cd /usr/local/tomcat/conf/
[root@www conf]# ls
Catalina catalina.properties logging.properties tomcat-users.xml web.xml
catalina.policy context.xml server.xml tomcat-users.xsd
[root@www conf]# vim server.xml
找到69行
69 <Connector port="8080" protocol="HTTP/1.1"
修改為
69 <Connector port="80" protocol="HTTP/1.1"
(3)重啟tomcat
[root@www conf]# /etc/init.d/tomcat stop
[root@www conf]# /etc/init.d/tomcat start
(4)查看監(jiān)聽(tīng)端口
[root@www conf]# netstat -nlp | grep java
tcp 0 0 :::80 :::* LISTEN 4673/java
tcp 0 0 ::ffff:127.0.0.1:8005 :::* LISTEN 4673/java
tcp 0 0 :::8009 :::* LISTEN 4673/java
訪問(wèn)測(cè)試http://192.168.1.21/
2、虛擬主機(jī)配置
tomcat的默認(rèn)網(wǎng)站根目錄是/usr/local/tomcat/webapps/ROOT/
(1)增加虛擬目錄配置
[root@www conf]# vim server.xml
<Host name="localhost" appBase="webapps"
unpackWARs="true" autoDeploy="true">
<!-- SingleSignOn valve, share authentication between web applications
Documentation at: /docs/config/valve.html -->
<!--
<Valve className="org.apache.catalina.authenticator.SingleSignOn" />
-->
<!-- Access log processes all example.
Documentation at: /docs/config/valve.html
Note: The pattern used is equivalent to using pattern="common" -->
<Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
prefix="localhost_access_log" suffix=".txt"
pattern="%h %l %u %t "%r" %s %b" />
<Context path="/xuni" docBase="/data/tomcatweb" debug="0" reloadable="true" crossContext="true"/> //虛擬主機(jī)配置
</Host>
path="/xuni" --虛擬目錄
docBase="/data/tomcatweb" --實(shí)際目錄
(2)創(chuàng)建虛擬目錄
[root@www ~]# mkdir -p /data/tomcatweb
創(chuàng)建測(cè)試頁(yè)面
[root@www ~]# vim /data/tomcatweb/111.jsp
<html><body><center>
Now time is: <%=new java.util.Date()%>
</center></body></html>
[root@www ~]# /etc/init.d/tomcat stop
[root@www ~]# /etc/init.d/tomcat start
[root@www ~]# ps aux |grep tomcat
root 5872 34.7 7.6 2722304 76924 pts/1 Sl 04:46 0:04 /usr/local/jdk1.8.0_65/jre/bin/java -Djava.util.logging.config.file=/usr/local/tomcat/conf/logging.properties -Djava.util.logging.manager=org.apache.juli.ClassLoaderLogManager -Djava.endorsed.dirs=/usr/local/tomcat/endorsed -classpath /usr/local/tomcat/bin/bootstrap.jar:/usr/local/tomcat/bin/tomcat-juli.jar -Dcatalina.base=/usr/local/tomcat -Dcatalina.home=/usr/local/tomcat -Djava.io.tmpdir=/usr/local/tomcat/temp org.apache.catalina.startup.Bootstrap start
root 5896 0.0 0.0 103248 884 pts/1 S+ 04:46 0:00 grep tomcat
[root@www ~]# netstat -nlp |grep java
tcp 0 0 :::80 :::* LISTEN 5872/java
tcp 0 0 ::ffff:127.0.0.1:8005 :::* LISTEN 5872/java
tcp 0 0 :::8009 :::* LISTEN 5872/java
訪問(wèn)測(cè)試:
[root@www ~]# curl http://192.168.1.21/xuni/111.jsp
<html><body><center>
Now time is: Mon Dec 21 04:48:19 CST 2015
</center></body></html>
[root@www ~]# curl -x192.168.1.21:80 localhost/xuni/111.jsp
<html><body><center>
Now time is: Mon Dec 21 04:48:56 CST 2015
</center></body></html>
四、限制主機(jī)訪問(wèn)Tomcat
1、修改server.xml
[root@www conf]# vim server.xml
<Host name="localhost" appBase="webapps"
unpackWARs="true" autoDeploy="true">
<Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
prefix="localhost_access_log" suffix=".txt"
pattern="%h %l %u %t "%r" %s %b" />
<Context path="/xuni" docBase="/data/tomcatweb" debug="0" reloadable="true" crossContext="true"/>
//允許192.168.1.0網(wǎng)段訪問(wèn),拒絕192.168.1.218訪問(wèn)
<Valve className="org.apache.catalina.valves.RemoteAddrValve"
allow="192.168.1.*" deny="192.168.1.218"/>
</Host>
2、訪問(wèn)測(cè)試
[root@www ~]# curl http://192.168.1.21 -I
HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Date: Sun, 20 Dec 2015 21:37:32 GMT
在192.168.1.218下訪問(wèn)
[root@sh ~]# curl http://192.168.1.21 -I
HTTP/1.1 403 Forbidden
Server: Apache-Coyote/1.1
Transfer-Encoding: chunked
Date: Sun, 20 Dec 2015 21:38:01 GMT
五、配置用戶(hù)WEB網(wǎng)站
1、創(chuàng)建用戶(hù)及頁(yè)面
[root@www ~]# useradd admin1
[root@www ~]# useradd admin2
[root@www ~]# su - admin1
[admin1@www ~]$ pwd
/home/admin1
[admin1@www ~]$ mkdir public_html
[admin1@www ~]$ echo "admin1" >public_html/index.html
[admin1@www ~]$ ll
total 4
drwxrwxr-x 2 admin1 admin1 4096 Dec 21 05:54 public_html
[admin1@www ~]$ chmod 711 /home/admin1
[admin1@www ~]$ ll /home/admin1/public_html/index.html
-rw-rw-r-- 1 admin1 admin1 7 Dec 21 05:54 /home/admin1/public_html/index.html
2、配置server.xml
[root@www conf]# vim server.xml
在host中增加以下內(nèi)容
<Listener className="org.apache.catalina.startup.UserConfig"
directoryName="public_html" homeBase="/home"
userClass="org.apache.catalina.startup.PasswdUserDatabase"/>
3、訪問(wèn)用戶(hù)admin1的網(wǎng)頁(yè),在瀏覽器輸入http://192.168.1.21/~admin1
六、配置Tomcat服務(wù)器支持CGI
CGI是通用網(wǎng)關(guān)接口功能
1、安裝perl軟件
[root@www ~]# yum -y install perl
2、編輯/usr/local/tomcat/conf/web.xml文件
[root@www ~]# vim /usr/local/tomcat/conf/web.xml
369 <servlet>
370 <servlet-name>cgi</servlet-name>
371 <servlet-class>org.apache.catalina.servlets.CGIServlet</servlet-class>
372 <init-param>
373 <param-name>debug</param-name>
374 <param-value>0</param-value>
375 </init-param>
376 <init-param>
377 <param-name>cgiPathPrefix</param-name>
378 <param-value>WEB-INF/cgi</param-value>
379 </init-param>
380 <load-on-startup>5</load-on-startup>
381 </servlet>
417 <servlet-mapping>
418 <servlet-name>cgi</servlet-name>
419 <url-pattern>/cgi-bin/*</url-pattern>
420 </servlet-mapping>
3、編輯/usr/local/tomcat/conf/context.xml文件,增加privileged配置
<?xml version='1.0' encoding='utf-8'?>
<Context privileged="true">
<WatchedResource>WEB-INF/web.xml</WatchedResource>
<WatchedResource>${catalina.base}/conf/web.xml</WatchedResource>
</Context>
4、創(chuàng)建CGI測(cè)試頁(yè)面
[root@www ~]# mkdir /usr/local/tomcat/webapps/ROOT/WEB-INF/cgi/test.cgi
#!/usr/bin/perl
print "Content-type:text/plain\n\n";
print "Hello cgi\n";
#
[root@www ~]# chmod 711 usr/local/tomcat/webapps/ROOT/WEB-INF/cgi/test.cgi
5、測(cè)試cgi
[root@www ~]# /etc/init.d/tomcat stop
[root@www ~]# /etc/init.d/tomcat start
七、配置管理Tomcat服務(wù)器
1、配置/usr/local/tomcat/conf/tomcat-users.xml文件,可以配置tomcat管理用戶(hù),定義角色及角色中包含的用戶(hù)和密碼,修改后內(nèi)容如下
[root@www ~]# vim /usr/local/tomcat/conf/tomcat-users.xml
<?xml version='1.0' encoding='utf-8'?>
<tomcat-users xmlns="http://tomcat.apache.org/xml"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://tomcat.apache.org/xml tomcat-users.xsd"
version="1.0">
<role rolename="manager-gui"/>
<user username="kiven" password="kiven" roles="manager-gui"/>
//用戶(hù)為kiven,密碼為kiven,屬于角色manager-gui
</tomcat-users>
2、訪問(wèn)測(cè)試,打開(kāi)tomcat首頁(yè),點(diǎn)擊頁(yè)面右上角【Manager App】
訪問(wèn)【Server Status】
3、配置Host Manager,可以管理tomcat虛擬主機(jī)
(1)編輯/usr/local/tomcat/webapps/manager/WEB-INF/web.xml文件
在</web-app>行添加以下內(nèi)容
<security-role>
<description>
The role that is required to access to the Host Manager pages
</description>
<role-name>admin-gui</role-name>
</security-role>
</web-app>
(2)編輯/usr/local/tomcat/conf/tomcat-users.xml文件
<?xml version='1.0' encoding='utf-8'?>
<tomcat-users xmlns="http://tomcat.apache.org/xml"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://tomcat.apache.org/xml tomcat-users.xsd"
version="1.0">
<role rolename="manager-gui"/>
<user username="kiven" password="kiven" roles="manager-gui"/>
<role rolename="admin-gui"/>
<user username="alice" password="alice" roles="admin-gui"/>
</tomcat-users>
(3)訪問(wèn)Host manager
八、配置https網(wǎng)站
1、生成服務(wù)器端證書(shū)文件,證書(shū)有效期為36500天
[root@www ~]# keytool -genkey -alias tomcat -keyalg RSA -keystore /etc/tomcat.keystore -validity 36500
Enter keystore password: //6位密鑰庫(kù)口令
Re-enter new password:
What is your first and last name? //名字,可以是服務(wù)器網(wǎng)站名稱(chēng)
[Unknown]: hm
What is the name of your organizational unit? //組織單位名稱(chēng)
[Unknown]: it
What is the name of your organization? //組織名稱(chēng)
[Unknown]: redhat
What is the name of your City or Locality? //城市
[Unknown]: shanghai
What is the name of your State or Province? //省市
[Unknown]: shanghai
What is the two-letter country code for this unit? //國(guó)家或地區(qū)代碼
[Unknown]: CN
Is CN=hm, OU=it, O=redhat, L=shanghai, ST=shanghai, C=CN correct?
[no]: y
Enter key password for <tomcat>
(RETURN if same as keystore password):
2、配置/usr/local/tomcat/conf/server.xml文件
<?xml version='1.0' encoding='utf-8'?>
......
<Service name="Catalina">
<Connector port="80" protocol="HTTP/1.1"
connectionTimeout="20000"
redirectPort="8443" />
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
maxThreads="150" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS" keystoreFile="/etc/tomcat.keystore"
keystorePass="741616710"/>
<Connector port="8009" enableLookups="false" protocol="AJP/1.3" redirectPort="8443" />
</Service>
3、配置/usr/local/tomcat/conf/web.xml文件,在</web-app>行上面增加以下內(nèi)容
<security-constraint>
<web-resource-collection>
<web-resource-name>SSL</web-resource-name>
<url-pattern>/*</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
<security-constraint>
</web-app>
4、重啟tomcat服務(wù)
[root@www ~]# /etc/init.d/tomcat stop
[root@www ~]# /etc/init.d/tomcat start
[root@www ~]# netstat -anlp |grep 8443
tcp 0 0 :::8443 :::* LISTEN 8372/java
5、訪問(wèn)https網(wǎng)站
6、修改https監(jiān)聽(tīng)端口為默認(rèn)的端口443
文章題目:2.0Tonmcat高級(jí)配置和jDK的安裝配置
瀏覽路徑:http://muchs.cn/article42/ijosec.html
成都網(wǎng)站建設(shè)公司_創(chuàng)新互聯(lián),為您提供網(wǎng)站排名、自適應(yīng)網(wǎng)站、網(wǎng)站導(dǎo)航、微信小程序、關(guān)鍵詞優(yōu)化、網(wǎng)站收錄
聲明:本網(wǎng)站發(fā)布的內(nèi)容(圖片、視頻和文字)以用戶(hù)投稿、用戶(hù)轉(zhuǎn)載內(nèi)容為主,如果涉及侵權(quán)請(qǐng)盡快告知,我們將會(huì)在第一時(shí)間刪除。文章觀點(diǎn)不代表本網(wǎng)站立場(chǎng),如需處理請(qǐng)聯(lián)系客服。電話(huà):028-86922220;郵箱:631063699@qq.com。內(nèi)容未經(jīng)允許不得轉(zhuǎn)載,或轉(zhuǎn)載時(shí)需注明來(lái)源: 創(chuàng)新互聯(lián)