Changes

Jump to: navigation, search

OPS335 Web Server Lab

566 bytes added, 20:13, 12 February 2012
Basic Apache (Web Server) Setup
{{Admon/important|Prerequisites|
Your hard drive should have Fedora 16, 64 bit Live edition already installed.<br />
You have Fedora 16, 64bit version on VM01, VM02, and VM03Both your host and vm's all VMs should have SELinux enabled.<br />Both host and vm's all VMs should have all software updated.<br />
Ensure the clocks on both machines are set to the correct date and time.}}
===Testing your network===
*Start Firefox on your host and authenticate yourself on Sene2net with your LEARN account.
*Ensure you can surf the web on your host machineand all your VMs.
=== Install and test Apache on your VM02 and VM03 ===
*Login to vm02 and install the following packages:
yum install httpd httpd-tools
systemctl start httpd.service
systemctl enable httpd.service
* Using Firefox on vm02 go to localhost. You should get the "Fedora Test Page" which indicates your web server is running on the local virtual machine.
*Flush your existing iptables rules on vm02.
**Add a rule to allow all packets "to" and "from" the loop back interface "lo".
**Add a rule to allow NEW connections to your ssh server and httpd.
**Add a rule to allow all RELATED and ESTABLISHED connections.
**Change the default policy on the INPUT chain to DROP.
*Using Firefox on the <b>host </b> go to address for vm02 "192.168.X.3" (your ip addressing may differ). You should get the "Fedora Test Page" which indicates you can access your web server is runningon VM02 via network connection. Do not continue until this step works.(You may have to adjust your firewall settings on VM02.)*You should also be able to open the webpage using the hostnameof vm02.
*Now create your own test page named index.html and put it into directory /var/www/html/. Reload the web page on the host - you should see your own test page now.
*Repeat the above steps for vm03.
*Now, as root on f16 (the gateway/host), try to forward incoming http connections to our you host to the web server on vm02. Use an iptables command something like this
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j DNAT --to 192.168.X.3
*You will also need to create a rule in the FORWARD chain in the default table to accept connections to port 80.
*To test this setup you'll need to ask a classmate on another PC to try to use Firefox to view your web page. S/he'll have to enter your host's external interface IP number (142.204.141.yyy) in Firefox's address window. *As Login to your vm02 (and then vm03) as root , edit the Apache configuration file and change the port your webserver is listening for incoming connections onfrom 80 to 8080.
vi /etc/httpd/conf/httpd.conf
*Change your firewall rules on vm02 (and also vm03) to allow connections to this port(8080), and remove the previous rule to allow connections to port 80. *Go back to f16 and redo your iptables command to forward connections to port 80 (on your host) to the new port 8080 on vm02, removing previous rule for port 80.*Verify that other students on other their PCs can still view your web page.
=== Load balancing using iptables ===
*Iptables can be used for load balancing connections. On your host machine add a rule(s) to the PREROUTING chain that will alternate connections bound for port 80 on your host machine to vm02 and vm03.
1,760
edits

Navigation menu