Tomcat安裝與配置(筆記)
#!/bin/bash
#####################################setup##########################################################
yum install -i gcc zlib1g zlib1g-dev openssl libssl-dev libpcre3 libpcre3-dev libevent-dev;#http://www.oracle.com/technetwork/java/javase/downloads/jdk8-downloads-2133151.html;cd /usr/local/srctar -zxvf jdk-8u102-linux-x64.tar.gzmv /usr/local/src/jdk1.8.0_102 /usr/local/jdk#配置JDK環境變數sed -i `$a ulimit -n 65535` /etc/profilesed -i `$a export JAVA_HOME=/usr/local/jdk` /etc/profilesed -i `$a export JRE_HOME=$JAVA_HOME/jre` /etc/profilesed -i `$a export CLASSPATH=.:$JAVA_HOME/lib:$JRE_HOME/lib:$CLASSPATH` /etc/profilesed -i `$a export PATH=$JAVA_HOME/bin:$JRE_HOME/bin:$PATH` /etc/profilesource /etc/profilecd /usr/local/srcwget https://mirrors.cnnic.cn/apache/tomcat/tomcat-8/v8.5.23/bin/apache-tomcat-8.5.23.tar.gz;tar -zxvf apache-tomcat-8.5.23.tar.gzcd apache-tomcat-8.5.23/lib#下載加入lib檔案以支援共享sessionwget http://central.maven.org/maven2/de/javakaffee/msm/memcached-session-manager/2.1.1/memcached-session-manager-2.1.1.jarwget http://central.maven.org/maven2/de/javakaffee/msm/memcached-session-manager-tc8/2.1.1/memcached-session-manager-tc8-2.1.1.jarwget http://central.maven.org/maven2/net/spy/spymemcached/2.11.1/spymemcached-2.11.1.jarwget http://central.maven.org/maven2/de/javakaffee/msm/msm-javolution-serializer/2.1.1/msm-javolution-serializer-2.1.1.jarwget http://central.maven.org/maven2/javolution/javolution/5.4.5/javolution-5.4.5.jarcd .. && cd ..#禁止TLDs掃描新加入的jar包sed -i `134c xom-*.jar,javolution-5.4.5.jar,memcached-session-manager-2.1.1.jar,memcached-session-manager-tc8-2.1.1.jar,msm-javolution-serializer-2.1.1.jar,spymemcached-2.11.1.jar` apache-tomcat-8.5.23/conf/catalina.properties#tomcat的優化配置,在102行處插入內容sed -i `102c export JAVA_OPTS=”-server -Xms1000M -Xmx1000M -Xss512k -XX:+AggressiveOpts -XX:+UseBiasedLocking -XX:+DisableExplicitGC -XX:MaxTenuringThreshold=15 -XX:+UseConcMarkSweepGC -XX:+UseParNewGC -XX:+CMSParallelRemarkEnabled -XX:+UseCMSCompactAtFullCollection -XX:LargePageSizeInBytes=128m -XX:+UseFastAccessorMethods -XX:+UseCMSInitiatingOccupancyOnly -Djava.awt.headless=true”` apache-tomcat-8.5.23/bin/catalina.shcp -r apache-tomcat-8.5.23 /usr/local/tomcat#cat <~/aaa.txt##EOF#sed -i `20 r ~/aaa.txt` /usr/local/tomcat/conf/context.xmlcd /usr/local/srcwget http://mirror.bit.edu.cn/apache/apr/apr-1.6.3.tar.gz tar -zxvf apr-1.6.3.tar.gz cd apr-1.6.3 && ./configure –prefix=/usr/local/aprmake && make installcd .. && rm -rf apr-1.6.3 && rm -rf apr-1.6.3.tar.gz wget http://mirror.bit.edu.cn/apache/apr/apr-util-1.6.1.tar.gz tar -zxvf apr-util-1.6.1.tar.gz cd apr-util-1.6.1 && ./configure –prefix=/usr/local/apr-util –with-apr=/usr/local/aprmake && make installcd .. && rm -rf apr-util-1.6.1 && rm -rf apr-util-1.6.1.tar.gz wget https://mirrors.tuna.tsinghua.edu.cn/apache/tomcat/tomcat-connectors/native/1.2.16/source/tomcat-native-1.2.16-src.tar.gz tar -zxvf tomcat-native-1.2.16-src.tar.gz cd tomcat-native-1.2.16-src/native && ./configure –with-apr=/usr/local/aprmake && make installcd .. && cd .. && rm -rf tomcat-native-1.2.16-src && rm -rf tomcat-native-1.2.16-src.tar.gz sed -i `$a export LD_LIBRARY_PATH=$LD_LIBRARY_PATH:/usr/local/apr/lib` /etc/profilesource /etc/profile#####################################end setup#####################################################################新增管理員 # vi /usr/local/tomcat/conf/tomcat-users.xml
# vi /usr/local/tomcat/conf/Catalina/localhost/下 新增manager.xml #################################sed `1,10y/abcde/ABCDE/` file 來自: http://man.linuxde.net/sedCATALINA_BASE,CATALINA_HOMEstartup securityhttp://localhost:8080/adminserver.xml context.xml tomcat-users.xml web.xml catalina.policy catalinat.propertiesserver service connector engine host context realmengine valve host contextvalve:日誌 單點登入 請求過濾Manager: context.xmlJNDI/????JDBC連線###########################################JavaMail傳送郵件context.xmlmail.smtp.hostlocalhostweb.xmlmail/Sessionjavax.mail.SessionContainer#download,setup javamail activationweb.xmlSendMailServletSendMailServletSendMailServlet/mail/SendMailServlet###################新增管理員許可權http://localhost:8080/manager/###三種部署方式manager,ant,http##三種聯結器:http,nio,arp##支援CGI:web.xml刪除註釋,context.xml:##支援SSI:同上ssi
org.apache.catalina.ssi.SSIServlet
buffered1debug0expires666isVirtualWebappRelative04ssi*.shtmlssi
org.apache.catalina.ssi.SSIFilter
contentTypetext/x-server-parsed-html(;.*)?debug0expires666isVirtualWebappRelative0inputEncodingutf-8outputEncodingutf-8#################################################tomcat效能調優linux修改TOMCAT_HOME/bin/catalina.sh,在前面加入JAVA_OPTS=”-XX:PermSize=64M -XX:MaxPermSize=128m -Xms512m -Xmx1024m -Duser.timezone=Asia/Shanghai”tomcat 執行緒優化maxThreads=”600″ ///最大執行緒數minSpareThreads=”100″///初始化時建立的執行緒數maxSpareThreads=”500″///一旦建立的執行緒超過這個值,Tomcat就會關閉不再需要的socket執行緒。acceptCount=”700″//指定當所有可以使用的處理請求的執行緒數都被使用時,可以放到處理佇列中的請求數,超過這個數的請求將不予處理這裡是http connector的優化,如果使用apache和tomcat做叢集的負載均衡,並且使用ajp協議做apache和tomcat的協議轉發,那麼還需要優化ajp connector。##配置執行緒池由於tomcat有多個connector,所以tomcat執行緒的配置,又支援多個connector共享一個執行緒池。首先。開啟/conf/server.xml,增加最大執行緒500(一般伺服器足以),最小空閒執行緒數20,執行緒最大空閒時間60秒。然後,修改節點,增加executor屬性,executor設定為執行緒池的名字:可以多個connector公用1個執行緒池,所以ajp connector也同樣可以設定使用tomcatThreadPool執行緒池。禁用DNS查詢 enableLookups=”false”##安裝並啟動APR:更好的支援併發(1)安裝APR tomcat-native apr-1.3.8.tar.gz 安裝在/usr/local/apr #tar zxvf apr-1.3.8.tar.gz #cd apr-1.3.8 #./configure;make;make install apr-util-1.3.9.tar.gz 安裝在/usr/local/apr/lib #tar zxvf apr-util-1.3.9.tar.gz #cd apr-util-1.3.9 #./configure –with-apr=/usr/local/apr —-with-java-home=JDK;make;make install #cd apache-tomcat-6.0.20/bin #tar zxvf tomcat-native.tar.gz #cd tomcat-native/jni/native #./configure –with-apr=/usr/local/apr;make;make install (2)設定 Tomcat 整合 APR 修改 tomcat 的啟動 shell (startup.sh),在該檔案中加入啟動引數: CATALINA_OPTS=”$CATALINA_OPTS -Djava.library.path=/usr/local/apr/lib” 。 #############################################ajp#worker.propeties worker1.list=worker1worker.worker1.type=ajp13worker.worker1.host=192.168.1.12#apache:confLoadModule jk_module modules/mod_jk.soJkWorkersFile conf/workers.propertiesJkLogFile logs/httpd/mod_jk.logJkLogLevel debugJkRequestLogFormat “%w %U %T”JkMount /exapmle/* worker1SetEnvIf Request_URL “nojk/*” no-jk###############################mod_proxyLoadModule proxy_module modules/mod_proxy.soLoadModule proxy_ajp_module modules/mod_proxy_ajp.soLoadModule proxy_balancer_module modules/mod_proxy_balancer.soProxyRequests offProxyPreserveHost OnOrder deny,allow
Allow from allProxyPass /example/jsp ajp://192.168.1.12:8009/example/jspProxyPassReverse /example/jsp ajp://192.168.1.12:8009/example/jspOrder deny,allow
Allow from all#################################worker.list=xx,yy,zzworker.xx.type=ajp13worker.xx.host=localhostworker.xx.port=8009IIS與Tomcat連線:ISAPI####resource配置JDBC server.xml#grant all privileges on *.* to `xx` identified by `xxx`#flush privileges###########################tomcat安全刪除/webapps/examples更改shutdown埠用tomcat賬號啟動 /bin/su tomcat $CATALINA_HOME/bin/startup.shjre: chmod -R o=rx /jre/* tomcat: chown -R tomcat:tomcat /tomcat/#tomcat啟用security manager: catalina.sh start -security##catalina.policy 啟用類裝載器grant codeBase “file:${catalina.home}/webapps/youapp/-“{permission java.lang.RuntimePermission “createClassLoader”}##啟用JDBC驅動開啟資料庫grant codeBase “file:${catalina.home}/webapps/-” {permission java.net.SocketPermission “db.server.com:54213”, “connect”;}##允許訪問25埠grant codeBase “file:${catalina.home}/webapps/-“{permission java.net.SocketPermission “mail.server.com:25″,”connect”;}##讀寫所有檔案grant {java.io.FilePermission “<>”,”read,write,execute,delete”;}###serlvet:BASIC,摘要,FORM,HTTPS客戶端證照##禁用目錄列表listingsfalse###禁用SSI,CGI,關閉privileged=`true`#########################################apache 加入 sslListen 192.168.10.10:80NameVirtualHost 192.168.10.10ServerName xx.com
DocumentRoot /xx/xx
ServerAdmin xx@qq.com
ErrorLog /xx/xx.log
CustomLog /xx/xx.log common##tomcat虛擬主機###########################apache tomcat互聯###################################httpd.confListen 80LoadModule jk_module modules/mod_jk.soJKWorkdersFile /etc/httpd/conf/workers.propertiesJKShmFile /var/log/httpd/mod_jk.shmJKLogFile /var/log/httpd/mod_jk.logJKLogLevel infoJKLogStampFormat “[%a %b %d %H:%M:%S %Y]”NameVirtualHost 192.168.1.2ServerName aa.com
DocumentRoot /home/websites/aa
ErrorLog /home/websites/aa/error
CustomLog /home/websites/aa/access common
JKMount /*.jsp aa-workerworkers.propertiesworker.list=aa-worker,bb-workerworker.aa-worker.type=ajp13worker.aa-worker.host=aa.comworker.aa-worker.port=8009##########################end apache tomcat互聯#######################################啟用managertomcat-users.xmlhttp://xx:8080/host-manager/html
#######
JVM_OPTIONS=`-Xms512m -Xmm1024m` 初始堆大小,最大堆大小
export JVM_OPTIONS
grant codeBase “file:/home/xx/xx/-“{
permission java.io.FilePermission “/some/cc/xx/*”,”read”;
}
################################################################################
/manager/jmxproxy
################################################jmx監控tomcat
bin/catalina.sh
#加入
[ $1 != “stop” ] && JAVA_OPTS=”-Dcom.sun.management.jmxremote
-Dcom.sun.management.jmxremote.port=9008
-Dcom.sun.management.jmxremote.ssl=false
-Dcom.sun.management.jmxremote.authenticate=false $JAVA_OPTS”
export JAVA_OPTS
#java/bin/jconsole啟動,輸入
service:jmx:rmi:///jndi/rmi://localhost:9008/jmxrmi
##################################################################################
負載均衡:
DNS負載均衡
硬體負載均衡(F5 big-ip:4-7層,15萬以上;梭子魚負載均衡:比較便宜)
軟體負載均衡(LVS,Nginx,HAProxy)
#mod_jk,mod_proxy通訊
##http head:get,accept,referer,accept-language,accept-encoding,host,connection
##request,response
#nginx
proxy_pass http://geeboo;
proxy_redirect off;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Host $host;
client_max_body_size 1024m;
client_body_buffer_size 1024000k;
proxy_connect_timeout 40s;
proxy_send_timeout 40s;
proxy_read_timeout 40s;
proxy_buffer_size 102400k;
proxy_buffers 6 102400k;
proxy_busy_buffers_size 102400k;
proxy_temp_file_write_size 102400k;
##############
##掃描引數 -p22; -p1-65535; -p U:53,111,137,T:21-25,80,139,8080,S:9
##掃描埠 nmap -p80,443,55,110 192.168.10.10
##掃描埠 nmap -sP 192.168.10.10
##掃描網段 nmap -sP 10.10.10.0/24
##掃描作業系統 nmap -O 10.10.10.0/24
##掃描所有 nmap -A 10.10.10.0/24
##掃描版本檢測 nmap -sV 10.10.10.0
相關文章
- Tomcat安裝與配置Tomcat
- Docker筆記(三):Docker安裝與配置Docker筆記
- Redis安裝與配置(學習筆記一)Redis筆記
- CentOS 7 yum安裝與配置 TomcatCentOSTomcat
- Tomcat配置安裝Tomcat
- PHP環境LAMP/LNMP安裝與配置筆記PHPLAMPLNMP筆記
- Git筆記(3) 安裝配置Git筆記
- Linux系統Tomcat安裝與配置。LinuxTomcat
- Intel MKL 在VS中的配置與安裝筆記Intel筆記
- Tomcat5.5 Admin的安裝與配置Tomcat
- Tomcat安裝與環境變數的配置Tomcat變數
- Tomcat在Linux上的安裝與配置TomcatLinux
- 安裝配置bugzilla筆記(轉)筆記
- Openstack學習筆記(三):keystone的安裝與配置筆記
- windows下Tomcat安裝配置WindowsTomcat
- CentOS下tomcat安裝配置CentOSTomcat
- Windows+Tomcat安裝配置WindowsTomcat
- Flutter學習筆記 - 安裝,映象,配置Flutter筆記
- CentOS 6.3下Puppet安裝配置筆記CentOS筆記
- 【筆記】Sublime Text3 安裝與常用配置(不定時更新)筆記
- MSP432安裝與環境配置(ccs) 學習筆記筆記
- 本地windows搭建spark環境,安裝與詳細配置(jdk安裝與配置,scala安裝與配置,hadoop安裝與配置,spark安裝與配置)WindowsSparkJDKHadoop
- mac平臺安裝配置TomCatMacTomcat
- 從tomcat到glashfish(glassfish的安裝啟動筆記)Tomcat筆記
- linux jdk ,tomcat 安裝與環境變數配置LinuxJDKTomcat變數
- PVE(Proxmox Virtual Environment) 安裝配置iStoreOS筆記筆記
- Tomcat安裝與優化Tomcat優化
- 下載tomcat與安裝Tomcat
- 特此記錄下----“長征式的安裝配置tomcat5.5”Tomcat
- Linux CentOS 7 下 Apache Tomcat 7 安裝與配置(心得)LinuxCentOSApacheTomcat
- Centos安裝tomcat9及配置CentOSTomcat
- Linux(jdk+tomcat配置安裝)LinuxJDKTomcat
- Mac下配置免安裝的tomcatMacTomcat
- Linux下Tomcat的安裝配置LinuxTomcat
- Oracle學習筆記(一)---oracle安裝和配置Oracle筆記
- centos7 (阿里雲、linux) 單機spark的安裝與配置詳解(jdk安裝與配置,scala安裝與配置,hadoop安裝與配置,spark安裝與配置)CentOS阿里LinuxSparkJDKHadoop
- Tomcat的下載與安裝Tomcat
- jdk+tomcat+mysql一鍵安裝配置JDKTomcatMySql