Académique Documents
Professionnel Documents
Culture Documents
INSTALL PACKAGE:-
FIREWALL CONFIGURATION:-
http://192.168.110.30/index.html
HTTP CONFIGURATION:-
INSTALL PACKAGE:-
SELinux CONFIGURATION:-
<VirtualHost *:80>
ServerAdmin root@site1.oit..com
DocumentRoot "/WebSites/Site1/www"
ServerName site1.oit.com
ServerAlias www.site1.oit.com
ErrorLog "/var/log/httpd/site1.oit.com-error_log"
CustomLog "/var/log/httpd/site1.oit.com-access_log" combined
<Directory "/WebSites/Site1/www">
AllowOverride None
Require all granted
</Directory>
</VirtualHost>
<VirtualHost *:80>
ServerAdmin root@site2.oit.com
DocumentRoot "/WebSites/Site2/www/"
ServerName site2.oit.com
ServerAlias www.site2.oit.com
ErrorLog "/var/log/httpd/site2.oit.com-error_log"
CustomLog "/var/log/httpd/site2.oit.com-access_log" combined
<Directory "/WebSites/Site2/www">
AllowOverride None
Require all granted
</Directory>
</VirtualHost>
Access Site:-
FIREWALL CONFIGURATION:-
You are now generating a new keypair which will be used to encrypt all SSL traffic
to the server named site3.oit.com.
Press NEXT>
Press NEXT>
Generate CSR
Would you like to send a Certificate Request (CSR) to a Certificate Authority (CA)?
NO Encripting the Kry:-
NEXT>
-----------------------------------------------------------------------------------
-
<VirtualHost *:443>
ServerAdmin root@sitei3.oit.com
RewriteEngine on
RewriteRule ^(/.*)$ https://%{HTTP_HOST}$1 [redirect=301]
SSLEngine on
SSLProtocol all -SSLv2 -SSLV3
SSLCipherSuite HIGH:MEDIUM:!aNull:!MD5
SSLHonorCipherOrder on
SSLCertificateFile /etc/pki/tls/certs/site3.oit.com.crt
SSLCertificateKeyFile /etc/pki/tls/private/site3.oit.com.key
DocumentRoot "/WebSites/Site3/www/"
ServerName site3.oit.com
ServerAlias www.site3.oit.com
ErrorLog "/var/log/httpd/site3.oit.com-error_log"
CustomLog "/var/log/httpd/site3.oit.com-access_log" combined
<Directory "/WebSites/Site3/www">
AllowOverride None
Require all granted
</Directory>
</VirtualHost>
REF:-
https://www.lisenet.com/2016/advanced-apache-configuration-with-selinux-on-rhel-7/
https://www.rootusers.com/how-to-configure-tls-security-in-apache/