实验部署环境
- 注意:本次实验,三台主机都关闭防护墙,selinux为disable状态
- 关闭防火墙和selinux
systemctl stop firewalld
systemctl disable firewalld
getenforce
Disabled
nginx 安装
- 创建系统用户、组nginx
[root@localhost ~]#groupadd -r nginx [root@localhost ~]# useradd -r -M -s /sbin/nologin -g nginx nginx
- 安装依赖环境
[root@localhost ~]# yum -y install pcre-devel openssl openssl-devel gcc gcc-c++ 安装过程略.... [root@localhost ~]# yum -y groups mark install 'Development Tools' #如果你安装虚拟机时,安装过开发工具,此步骤无需操作 Loaded plugins: product-id, search-disabled-repos, subscription-manager This system is not registered with an entitlement server. You can use subscription-manager to register. There is no installed groups file. Maybe run: yum groups mark convert (see man yum) Marked install: Development Tools
- 创建日志存放目录
[root@localhost ~]# mkdir -p /var/log/nginx [root@localhost ~]# chown -R nginx.nginx /var/log/nginx
- 下载nginx
[root@localhost ~]# cd /usr/src/ [root@localhost src]# wget http://nginx.org/download/nginx-1.12.0.tar.gz …………
- 编译安装
[root@localhost src]# ls debug kernels nginx-1.12.0.tar.gz [root@localhost src]# tar xf nginx-1.12.0.tar.gz [root@localhost src]# cd nginx-1.12.0 [root@localhost nginx-1.12.0]# ./configure \ --prefix=/usr/local/nginx \ --user=nginx \ --group=nginx \ --with-debug \ --with-http_ssl_module \ --with-http_realip_module \ --with-http_gunzip_module \ --with-http_gzip_static_module \ --with-http_stub_status_module \ --http-log-path=/var/log/nginx/access.log \ --error-log-path=/var/log/nginx/error.log [root@localhost nginx-1.12.0]# make -j $(grep 'processor' /proc/cpuinfo | wc -l) && make install 安装过程略....
nginx安装后配置
- 配置环境变量
[root@localhost ~]# echo 'export PATH=/usr/local/nginx/sbin:$PATH' > /etc/profile.d/nginx.sh [root@localhost ~]# . /etc/profile.d/nginx.sh
- 服务控制方式,使用nginx命令
-t //检查配置文件语法 -v //输出nginx的版本 -c //指定配置文件的路径 -s //发送服务控制信号,可选值有{stop|quit|reopen|reload}
- 启动nginx
[root@localhost ~]# nginx [root@localhost ~]# ss -antl State Recv-Q Send-Q Local Address:Port Peer Address:Port LISTEN 0 128 *:80 *:* LISTEN 0 128 *:22 *:* LISTEN 0 100 127.0.0.1:25 *:* LISTEN 0 128 :::22 :::* LISTEN 0 100 ::1:25 :::*
mysql 安装
- 安装依赖包
[root@localhost ~]# yum -y install ncurses-devel openssl-devel openssl cmake mariadb-devel
- 安装编译工具
[root@localhost ~]# yum -y install gcc gcc-c++
- 创建用户和组
[root@localhost ~]# groupadd -r -g 306 mysql [root@localhost ~]# useradd -M -s /sbin/nologin -g 306 -u 306 mysql [root@localhost ~]#
- 下载安装包
[root@localhost ~]#cd /usr/src/ [root@localhost src]# wget https://downloads.mysql.com/archives/get/file/mysql-5.7.22-linux-glibc2.12-x86_64.tar.gz
- 解压软件至/usr/local/
[root@localhost src]# ls debug kernels mysql-5.7.22-linux-glibc2.12-x86_64.tar.gz [root@localhost src]# tar xf mysql-5.7.22-linux-glibc2.12-x86_64.tar.gz -C /usr/local/
- 创建软连接
[root@localhost ~]# cd /usr/local/ [root@localhost local]# ln -sv mysql-5.7.22-linux-glibc2.12-x86_64/ mysql ‘mysql’ -> ‘mysql-5.7.22-linux-glibc2.12-x86_64/’
- 修改目录/usr/local/mysql的属主属组
[root@localhost ~]# chown -R mysql.mysql /usr/local/mysql
- 添加环境变量
[root@localhost ~]# ls /usr/local/mysql bin COPYING docs include lib man README share support-files [root@localhost ~]# echo 'export PATH=/usr/local/mysql/bin:$PATH' > /etc/profile.d/mysql.sh [root@localhost ~]# . /etc/profile.d/mysql.sh [root@localhost ~]#echo $PATH /usr/local/mysql/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/root/bin
- 建立数据存放目录
[root@localhost ~]# mkdir /opt/data [root@localhost ~]# chown -R mysql.mysql /opt/data/ [root@localhost ~]#
- 初始化数据库
[root@localhost ~]# /usr/local/mysql/bin/mysqld --initialize --user=mysql --datadir=/opt/data 2019-08-20T04:36:47.124341Z 0 [Warning] TIMESTAMP with implicit DEFAULT value is deprecated. Please use --explicit_defaults_for_timestamp server option (see documentation for more details). 2019-08-20T04:36:47.512965Z 0 [Warning] InnoDB: New log files created, LSN=45790 2019-08-20T04:36:47.568170Z 0 [Warning] InnoDB: Creating foreign key constraint system tables. 2019-08-20T04:36:47.710963Z 0 [Warning] No existing UUID has been found, so we assume that this is the first time that this server has been started. Generating a new UUID: 1ee4d515-c304-11e9-bd54-000c292184e7. 2019-08-20T04:36:47.711625Z 0 [Warning] Gtid table is not ready to be used. Table 'mysql.gtid_executed' cannot be opened. 2019-08-20T04:36:47.712295Z 1 [Note] A temporary password is generated for root@localhost: *!J3wNVfewsf #复制这串密码,数据库初始化只能一次,用于第一次登录 [root@localhost ~]# #这个临时密码是随机的
- 生成配置文件
[root@localhost ~]# cat > /etc/my.cnf <<EOF > [mysqld] > basedir = /usr/local/mysql > datadir = /opt/data > socket = /tmp/mysql.sock > port = 3306 > pid-file = /opt/data/mysql.pid > user = mysql > skip-name-resolve > EOF [root@localhost ~]# cat /etc/my.cnf [mysqld] basedir = /usr/local/mysql datadir = /opt/data socket = /tmp/mysql.sock port = 3306 pid-file = /opt/data/mysql.pid user = mysql skip-name-resolve
- -配置服务启动脚本
[root@localhost ~]# cp -a /usr/local/mysql/support-files/mysql.server /etc/init.d/mysqld [root@localhost ~]# sed -ri 's#^(basedir=).*#\1/usr/local/mysql#g' /etc/init.d/mysqld [root@localhost ~]# sed -ri 's#^(datadir=).*#\1/opt/data#g' /etc/init.d/mysqld
- 启动脚本
[root@localhost ~]# /etc/init.d/mysqld start Starting MySQL.Logging to '/opt/data/localhost.localdomain.err'. SUCCESS! [root@localhost ~]#
- 使用临时密码登录
- 修改数据库密码
[root@localhost ~]# /usr/local/mysql/bin/mysql -uroot -p Enter password: Welcome to the MySQL monitor. Commands end with ; or \g. Your MySQL connection id is 2 Server version: 5.7.22 Copyright (c) 2000, 2018, Oracle and/or its affiliates. All rights reserved. Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners. Type 'help;' or '\h' for help. Type '\c' to clear the current input statement. mysql> set password = password('wyh123456'); Query OK, 0 rows affected, 1 warning (0.00 sec) mysql>
PHP网络源安装
- 配置网络源,epel源,php源
[root@localhost ~]# cd /etc/yum.repos.d/ [root@localhost yum.repos.d]# wget http://mirrors.163.com/.help/CentOS7-Base-163.repo [root@localhost ~]#sed -i 's/\$releasever/7/g' /etc/yum.repos.d/CentOS7-Base-163.repo [root@localhost ~]# sed -i 's/^enabled=.*/enabled=1/g' /etc/yum.repos.d/CentOS7-Base-163.repo [root@localhost ~]# yum -y install epel-release [root@localhost ~]#wget https://mirror.webtatic.com/yum/el7/webtatic-release.rpm [root@localhost ~]#rpm -Uvh webtatic-release.rpm
- 安装依赖包
[root@localhost ~]# yum -y install libxml2 libxml2-devel openssl openssl-devel bzip2 bzip2-devel libcurl libcurl-devel libicu-devel libjpeg libjpeg-devel libpng libpng-devel openldap-devel libpcre-devel freetype freetype-devel gmp gmp-devel libmcrypt libmcrypt-devel readline readline-devel libxslt libxslt-devel mhash mhash-devel php72w-mysqlnd
- 安装编译工具
[root@localhost php-7.2.8]# yum -y install gcc gcc-c++
- 下载php
[root@localhost ~]#cd /usr/src/ [root@localhost ~]#wget http://cn.php.net/distributions/php-7.2.8.tar.xz
安装php
[root@localhost src]# tar xf php-7.2.8.tar.xz [root@localhost src]# cd php-7.2.8 [root@localhost php-7.2.8]# ./configure --prefix=/usr/local/php7 \ --with-config-file-path=/etc \ --enable-fpm \ --enable-inline-optimization \ --disable-debug \ --disable-rpath \ --enable-shared \ --enable-soap \ --with-openssl \ --enable-bcmath \ --with-iconv \ --with-bz2 \ --enable-calendar \ --with-curl \ --enable-exif \ --enable-ftp \ --with-gd \ --with-jpeg-dir \ --with-png-dir \ --with-zlib-dir \ --with-freetype-dir \ --with-gettext \ --enable-json \ --enable-mbstring \ --enable-pdo \ --with-mysqli=mysqlnd \ --with-pdo-mysql=mysqlnd \ --with-readline \ --enable-shmop \ --enable-simplexml \ --enable-sockets \ --enable-zip \ --enable-mysqlnd-compression-support \ --with-pear \ --enable-pcntl \ --enable-posix [root@localhost php-7.2.8]# make && make install ……
安装后配置
[root@localhost ~]# echo 'export PATH=/usr/local/php7/bin:$PATH' > /etc/profile.d/php7.sh [[root@localhost ~]#source /etc/profile.d/php7.sh [root@localhost php-7.2.8]# which php /usr/local/php7/bin/php [root@localhost php-7.2.8]# php -v PHP 7.2.8 (cli) (built: Aug 16 2018 13:27:30) ( NTS ) Copyright (c) 1997-2018 The PHP Group Zend Engine v3.2.0, Copyright (c) 1998-2018 Zend Technologies
- 配置php-fpm(必须在此目录下操作)
[root@localhost php-7.2.8]# cp php.ini-production /etc/php.ini [root@localhost php-7.2.8]# cp sapi/fpm/init.d.php-fpm /etc/init.d/php-fpm [root@localhost php-7.2.8]# chmod +x /etc/rc.d/init.d/php-fpm [root@2localhost php-7.2.8]# cp /usr/local/php7/etc/php-fpm.conf.default /usr/local/php7/etc/php-fpm.conf [root@localhost php-7.2.8]# cp /usr/local/php7/etc/php-fpm.d/www.conf.default /usr/local/php7/etc/php-fpm.d/www.conf
- 编辑php-fpm的配置文件(/usr/local/php7/etc/php-fpm.conf)最后添加以下几行内容:
[root@ php-7.2.8]# vim /usr/local/php7/etc/php-fpm.conf pm.max_children = 50 # 最多同时提供50个进程提供50个并发服务 pm.start_servers = 5 # 启动时启动5个进程 pm.min_spare_servers = 2 # 最小空闲进程数 pm.max_spare_servers = 8 # 最大空闲进程数
[root@localhost ~]# tail /usr/local/php7/etc/php-fpm.conf ; file. ; Relative path can also be used. They will be prefixed by: ; - the global prefix if it's been set (-p argument) ; - /usr/local/php7 otherwise include=/usr/local/php7/etc/php-fpm.d/*.conf pm.max_children = 50 pm.start_servers = 5 pm.min_spare_servers = 2 pm.max_spare_servers = 8
- 启动php-fpm
[root@localhost ~]# service php-fpm start Starting php-fpm done
- 查看9000端口是否启动
[root@localhost ~]# ss -antl State Recv-Q Send-Q Local Address:Port Peer Address:Port LISTEN 0 128 *:111 *:* LISTEN 0 5 192.168.122.1:53 *:* LISTEN 0 128 *:22 *:* LISTEN 0 128 127.0.0.1:631 *:* LISTEN 0 128 127.0.0.1:9000 *:* LISTEN 0 128 :::111 :::* LISTEN 0 128 :::22 :::* LISTEN 0 128 ::1:631 :::