王徴玮

wangzhengwei.com

firewalld zone 说明

1
2
3
4
5
6
7
8
9
10
* 定义的9个区域
## trusted(信任区域)∶ 允许所有的传入流量。
## public(公共区域)∶ 允许与ssh或dhcpv6-client预定义服务匹配的传入流量,其余均拒绝。是新添加网络接口的默认区域
## external (外部区域)∶ 允许与 ssh 预定义服务匹配的传入流量,其余均拒绝。默认将通过此区域转发的IPy4传出流量将进行地址伪装, 可用于为路由器启用了伪装功能的外部网络。
## home (家庭区域)∶ 允许与ssh、ipp-client、mdns、samba-client或dhcpv6-client预定义服务匹配的传入流量,其余均拒绝。
## internal (内部区域)∶ 默认值时与home区域相同。
## work (工作区域)∶ 允许与 ssh、ipp-client、dhcpv6-client 预定义服务匹配的传入流量,其余均拒绝。
## dmz (隔离区域也称为非军事区域)∶ 允许与 ssh 预定义服务匹配的传入流量,其余均拒绝。
## block(限制区域)∶拒绝所有传入流量。
## drop(丢弃区域)∶ 丢弃所有传入流量,并且不产生包含 ICMP的错误响应。
阅读全文 »

一.Nginx离线部署

  • 所有依赖包都可以在pkgs.org中下载.

1. 安装相关依赖

离线安装相关依赖
1
2
3
4
5
6
7
8
9
rpm -ivh https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/k/kernel-headers-4.18.0-553.el8_10.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/g/glibc-headers-2.28-251.el8_10.2.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/g/glibc-devel-2.28-251.el8_10.2.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/m/mpfr-3.1.6-1.el8.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/AppStream/x86_64/os/Packages/l/libmpc-1.1.0-9.1.el8.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/AppStream/x86_64/os/Packages/c/cpp-8.5.0-22.el8_10.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/AppStream/x86_64/os/Packages/g/gcc-8.5.0-22.el8_10.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/AppStream/x86_64/os/Packages/l/libstdc++-devel-8.5.0-22.el8_10.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/AppStream/x86_64/os/Packages/g/gcc-c++-8.5.0-22.el8_10.x86_64.rpm
离线安装pcre、openssl、zlib依赖
1
2
3
4
5
6
7
8
9
10
rpm -ivh https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/p/pcre-devel-8.42-6.el8.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/l/libkadm5-1.18.2-27.el8_10.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/z/zlib-devel-1.2.11-26.el8.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/l/libcom_err-devel-1.45.6-5.el8.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/l/libsepol-devel-2.9-3.el8.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/l/libselinux-devel-2.9-8.el8.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/l/libverto-devel-0.3.2-2.el8.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/k/keyutils-libs-devel-1.5.10-9.el8.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/k/krb5-devel-1.18.2-27.el8_10.x86_64.rpm \
https://mirrors.aliyun.com/rockylinux/8/BaseOS/x86_64/os/Packages/o/openssl-devel-1.1.1k-12.el8_9.x86_64.rpm
阅读全文 »
0%