ProHoster > Blog > Utongi > Kubata webhusaiti pane yako router yekumba

Kubata webhusaiti pane yako router yekumba

Ndagara ndichida "kubata maoko angu" pamasevhisi eInternet nekumisa sevha yewebhu kubva pakutanga uye kuiburitsa kuInternet. Muchinyorwa chino ndinoda kugovera ruzivo rwangu mukushandura router yemba kubva kune inoshanda zvakanyanya mudziyo kuita inenge yakazara-yakazara server.

Izvo zvese zvakatanga nenyaya yekuti iyo TP-Link TL-WR1043ND router, iyo yakanga yashanda yakatendeka, yakanga isingachasangana nezvinodiwa netiweki yemba; Ini ndaida 5 GHz bhendi uye nekukurumidza kuwana mafaera pane yekuchengetedza mudziyo yakabatana kune router. . Mushure mekutarisa kuburikidza neakasarudzika maforamu (4pda, ixbt), masaiti ane wongororo uye kutarisa assortment yezvitoro zvemuno, ndakafunga kutenga Keenetic Ultra.

Wongororo yakanaka kubva kuvaridzi vakashanda vachifarira iyi chaiyo mudziyo:

  • hapana matambudziko nekupisa (pano taifanira kusiya zvigadzirwa zveAsus);
  • kuvimbika kwekushanda (pano ndakayambuka TP-Link);
  • nyore kumisikidza (Ndaitya kuti handikwanise kuibata uye ndakayambuka Microtik).

Ndaifanira kutarisana nezvipingamupinyi:

  • kwete WiFi6, ndaida kutora midziyo ine reservation remangwana;
  • 4 LAN ports, ndaida zvimwe, asi iyi haisisiri chikamu chekumba.

Nekuda kweizvozvo, takawana iyi "server":

Kubata webhusaiti pane yako router yekumba

  • kuruboshwe ndiyo optical terminal yeRostelecom;
  • kurudyi ndiyo router yedu yekuedza;
  • 2 GB m.128 SSD yakarara kumativi, yakaiswa mubhokisi re USB3 kubva kuAliexpress, yakabatanidzwa kune router ine tambo, ikozvino yakanyatsoiswa pamadziro;
  • kumberi kune tambo yekuwedzera ine zvigadziko zvakasununguka zvakadzimwa, waya kubva kwairi inoenda kune isingadhuri UPS;
  • kumashure kune boka retambo dzakamonyoroka - padanho rekugadzirisa imba yacho, ini ndakabva ndaronga zvigadziko zveRJ45 munzvimbo dzaifanira kunge dziripo, kuti ndirege kutsamira paWiFi yakaraswa.

Saka, isu tine midziyo, tinoda kuigadzirisa:

Kubata webhusaiti pane yako router yekumba

  • Kuseta kwekutanga kweiyo router kunotora anenge maminetsi maviri, isu tinoratidza maratidziro ekubatanidza kune anopa (yangu optical terminal inochinjirwa kuita bhiriji modhi, iyo PPPoE yekubatanidza inosimudza router), zita reWiFi network uye password - ndizvozvo. , router inotanga uye inoshanda.

Kubata webhusaiti pane yako router yekumba

Isu tinoseta kutumira kwekunze madoko kumachiteshi eiyo router pachayo muchikamu che "Network mitemo - Forwarding":

Kubata webhusaiti pane yako router yekumba

Kubata webhusaiti pane yako router yekumba

Iye zvino tinogona kuenda kune "yepamberi" chikamu, chandaida kubva kune router:

  1. kushanda kweNAS diki kune network yemba;
  2. kuita web server mabasa kune akati wandei akavanzika mapeji;
  3. personal cloud functionality yekuwana yako data kubva kupi zvako pasirese.

Yekutanga inoshandiswa uchishandisa akavakirwa-mukati maturusi, asingade kushanda nesimba:

  • Isu tinotora dhiraivha yakanangana nebasa iri (flash drive, memori kadhi muverengi wekadhi, hard drive kana SSD mubhokisi rekunze uye toifomatidza kuExt4 uchishandisa. MiniTool Partition Wizard Yemahara Edition (Handina komputa ine Linux paruoko, zvinogoneka nemidziyo yakavakirwa-mukati). Sezvandinozvinzwisisa, panguva yekushanda sisitimu inonyora matanda chete kune flash drive, saka kana ukaamisa mushure mekugadzira sisitimu, unogona zvakare kushandisa memori makadhi kana ukaronga kunyora zvakawanda uye kazhinji kune drive - SSD kana HDD iri nani.

Kubata webhusaiti pane yako router yekumba

Mushure meizvi, tinobatanidza dhiraivha kune router uye tinoicherechedza pane system monitor screen

Kubata webhusaiti pane yako router yekumba

Dzvanya pa "USB madhiraivha nemaprinta" kune "Applications" chikamu uye gadzirisa iyo mugove muchikamu che "Windows Network":

Kubata webhusaiti pane yako router yekumba

Uye isu tine network sosi inogona kushandiswa kubva kuWindows makomputa, ichibatanidza sedhisiki kana zvichidikanwa: shandisa mambure y: \ 192.168.1.1SSD / kuramba: hongu

Iko kumhanya kweNAS yakavandudzwa yakadai yakakwana kuti ishandiswe pamba; pamusoro pewaya inoshandisa gigabit yese, pamusoro peWiFi kumhanya kunosvika 400-500 megabits.

Kubata webhusaiti pane yako router yekumba

Kumisikidza kuchengetedza nderimwe rematanho anodiwa ekugadzirisa sevha, tobva tada:
- buy a domain uye static IP kero (iwe unogona kuita pasina izvi nekushandisa Dynamic DNS, asi ini ndatova neiyo IP yakamira, saka zvakazove nyore kushandisa. mahara Yandex masevhisi - nekugovera iyo domain ipapo, tinogashira DNS hosting uye mail pane yedu domain);

Kubata webhusaiti pane yako router yekumba

- gadzirisa DNS maseva uye wedzera A marekodhi anongedza kuIP yako:

Kubata webhusaiti pane yako router yekumba

Zvinotora maawa akati wandei kuti domain uye DNS delegation marongero aite, saka tiri panguva imwe chete kumisikidza router.

Kutanga, isu tinofanirwa kuisa Entware repository, kubva kwatinogona kuisa mapakeji anodiwa pane router. Ndakatora mukana nemurayiridzo uyu, haina kungoisa iyo yekuisa pasuru kuburikidza neFTP, asi yakagadzira dhairekitori zvakananga pane yaimbove yakabatana network drive uye kukopa faira ipapo nenzira yakajairika.

Kana wawana mukana kuburikidza neSSH, shandura password nepasswd command uye isa ese anodiwa mapakeji neiyo opkg yekuisa [mazita emapaketi] kuraira:

Kubata webhusaiti pane yako router yekumba

Panguva yekuseta, iwo anotevera mapakeji akaiswa pane router (iyo yakabuda yeiyo opkg list-yakaiswa command):

Rondedzero yemapakeji
bash - 5.0-3
busybox - 1.31.1-1
ca-bundle - 20190110-2
ca-certificates - 20190110-2
coreutils - 8.31-1
coreutils-mktemp - 8.31-1
cron - 4.1-3
curl - 7.69.0-1
diffutils - 3.7-2
dropbear - 2019.78-3
entware-kuburitswa - 1.0-2
kuwana - 4.7.0-1
glib2 - 2.58.3-5
grep - 3.4-1
ldconfig - 2.27-9
libattr - 2.4.48-2
libblkid - 2.35.1-1
libc - 2.27-9
libcurl - 7.69.0-1
libffi - 3.2.1-4
libgcc - 8.3.0-9
libiconv-yakazara - 1.11.1-4
libintl-yakazara - 0.19.8.1-2
liblue - 5.1.5-7
libmbedtls - 2.16.5-1
libmount - 2.35.1-1
libncurses - 6.2-1
libncursesw - 6.2-1
libndm - 1.1.10-1a
libopenssl - 1.1.1d-2
libopenssl-conf - 1.1.1d-2
libpcap - 1.9.1-2
libpcre - 8.43-2
libpcre2 - 10.34-1
libpthread - 2.27-9
libreadline - 8.0-1a
librt - 2.27-9
libslang2 - 2.3.2-4
libssh2 - 1.9.0-2
libssp - 8.3.0-9
libstdcpp - 8.3.0-9
libuid - 2.35.1-1
libxml2 - 2.9.10-1
nzvimbo - 2.27-9
mc - 4.8.23-2
ndmq - 1.0.2-5a
nginx - 1.17.8-1
openssl-kushandisa - 1.1.1d-2
opkg β€” 2019-06-14-dcbc142e-2
opt-ndmsv2 - 1.0-12
php7 - 7.4.3-1
php7-mod-openssl - 7.4.3-1
murombo bhokisi - 1.31.1-2
terminfo - 6.2-1
zlib - 1.2.11-3
zoneinfo-asia - 2019c-1
zoneinfo-europe - 2019c-1

Pamwe pakanga paine chimwe chinhu chakashata pano, asi pakanga paine nzvimbo yakawanda pakutyaira, saka handina kunetsekana nekuitarisa.

Mushure mekuisa mapakeji, tinogadzirisa nginx, ndakaiedza nemadomasi maviri - yechipiri inogadziriswa ne https, uye ikozvino pane stub. Zviteshi zvemukati 81 uye 433 zvinoshandiswa pachinzvimbo che80 uye 443, sezvo iyo router admin panel inorembera pane zvakajairika ports.

etc/nginx/nginx.conf

user  nobody;
worker_processes  1;
#error_log  /opt/var/log/nginx/error.log;
#error_log  /opt/var/log/nginx/error.log  notice;
#error_log  /opt/var/log/nginx/error.log  info;
#pid        /opt/var/run/nginx.pid;

events {
    worker_connections  64;
}

http {
    include       mime.types;
    default_type  application/octet-stream;
    #log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
    #                  '$status $body_bytes_sent "$http_referer" '
    #                  '"$http_user_agent" "$http_x_forwarded_for"';
    #access_log  /opt/var/log/nginx/access.log main;
    sendfile        on;
    #tcp_nopush     on;
    #keepalive_timeout  0;
    keepalive_timeout  65;
    #gzip  on;

server {
    listen 81;
    server_name milkov.su www.milkov.su;
    return 301 https://milkov.su$request_uri;
}

server {
        listen 433 ssl;
        server_name milkov.su;
        #SSL support
        include ssl.conf;
        location / {
            root   /opt/share/nginx/html;
            index  index.html index.htm;
        error_page   500 502 503 504  /50x.html;
        location = /50x.html {
            root   html;
            }
        }
}
</spoiler>
<spoiler title="etc/nginx/ssl.conf">
ssl_certificate /opt/etc/nginx/certs/milkov.su/fullchain.pem;
ssl_certificate_key /opt/etc/nginx/certs/milkov.su/privkey.pem;
ssl_ciphers 'ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA';
ssl_prefer_server_ciphers on;
ssl_dhparam /opt/etc/nginx/dhparams.pem;
ssl_session_cache shared:SSL:10m;
ssl_session_timeout 5m;
ssl_stapling on;

Kuti saiti ishande kuburikidza ne https, ini ndakashandisa iyo inozivikanwa kwazvo dehydrated script, ndichiiisa ndichishandisa murayiro uyu. Kuita uku hakuna kukonzeresa, ndakangogumburwa nenyaya yekuti mune zvinyorwa zve script yekushanda pane yangu router. iwe unofanirwa kutaura mutsara uri mufaira /opt/etc/ssl/openssl.cnf:

[openssl_conf]
#engines=engines

Uye ndinocherechedza kuti kugadzira dhparams.pem nemurairo "openssl dhparam -out dhparams.pem 2048" pa router yangu inotora maawa anopfuura 2, kana kwete nokuda kwechiratidzo chekufambira mberi, ndingadai ndakarasikirwa nemoyo murefu uye ndatangazve.

Mushure mekugamuchira zvitupa, tangazve nginx nemurairo "/opt/etc/init.d/S80nginx restart". Muchidimbu, iyo setup yakakwana, asi hapana webhusaiti parizvino - kana tikaisa index.html faira mu /share/nginx/html dhairekitori, tichaona stub.

index.html

<!DOCTYPE html>
<html>
<head>
<title>ВСстовая страничка!</title>
<style>
    body {
        width: 35em;
        margin: 0 auto;
        font-family: Tahoma, Verdana, Arial, sans-serif;
    }
</style>
</head>
<body>
<h1>ВСстовая страничка!</h1>
<p>Π­Ρ‚ΠΎ простая статичСская тСстовая страничка, Π°Π±ΡΠΎΠ»ΡŽΡ‚Π½ΠΎ Π½ΠΈΡ‡Π΅Π³ΠΎ интСрСсного.</p>
</body>
</html>

Kuisa ruzivo zvakanaka, zviri nyore kune asiri nyanzvi seni kuti ashandise akagadzirira-akagadzirwa matemplate; mushure mekutsvaga kwenguva refu kuburikidza neakasiyana makata, ndakawana. templatemo.com -Kune sarudzo yakanaka yematemplate emahara ayo asingade kupihwa (izvo zvisingawanzo paInternet; mazhinji ematemplate ari murezinesi anoda kuti iwe uchengetedze chinongedzo kune iyo sosi yavatorwa).

Isu tinosarudza template yakakodzera - kune emhando dzakasiyana dzemakesi, dhawunirodha archive uye kuiburitsa mu /share/nginx/html dhairekitori, unogona kuita izvi kubva pakombuta yako, wozogadzirisa template (pano iwe uchada ruzivo rushoma. yeHTML kuitira kuti usapwanye chimiro) uye kutsiva magirafu sezvakaratidzwa mumufananidzo uri pazasi.

Kubata webhusaiti pane yako router yekumba

Pfupiso: iyo router yakanyatsokodzera kubata webhusaiti yakareruka pairi, musimboti - kana usingatarisire mutoro wakakura, unogona. install uye php, uye kuyedza mamwe mapurojekiti akaomarara (ini ndinotarisa nextcloud/owncloud, zvinoita senge paine kuisirwa kwakabudirira pane zvakadaro hardware). Iko kukwanisa kuisa mapakeji kunowedzera kubatsira kwayo - semuenzaniso, pazvaive zvakakodzera kuchengetedza RDP port yePC pane network yemuno, ndakaisa yakagogodza pane router - uye chiteshi chekuendesa kuPC chakavhurwa chete mushure mekugogodza kwechiteshi.

Sei router uye kwete yenguva dzose PC? Router ndechimwe chezvikamu zvishoma zvemakomputa zvehardware zvinoshanda nguva dzese mudzimba dzakawanda; router yemba inowanzonyarara uye nzvimbo yakapfava ine isingasviki zana kushanya pazuva haizozvinetse zvachose.

Source: www.habr.com

Voeg