Π Waxaan ka wada hadalnay ku socodsiinta server-ka VNC mashiinka dalwaddiidda nooc kasta ah. Doorashadani waxay leedahay faa'iidooyin badan, midda ugu weyni waa shuruudaha sare ee habka gudbinta xogta xogta. Maanta waxaan isku dayi doonaa in aan ku xidhno miiska garaafyada ee Linux anagoo adeegsanayna RDP (Protocol Desktop Fog). Nidaamka VNC wuxuu ku salaysan yahay gudbinta habab pixels iyadoo la isticmaalayo nidaamka RFB (Remote Framebuffer), RDP waxay kuu ogolaaneysaa inaad soo dirto sawiro hore oo adag iyo amarro heer sare ah. Caadi ahaan waxaa loo isticmaalaa in lagu martigeliyo Adeegyada Desktop Fog ee Windows, laakiin adeegayaasha Linux sidoo kale waa la heli karaa.
Shaxda tusmada:
Ku rakibida deegaanka garaafyada
Waxaan qaadan doonaa mashiinka farsamada leh ee Ubuntu Server 18.04 LTS oo leh laba kombuyuutar, afar gigabytes oo RAM ah iyo labaatan gigabyte hard drive (HDD). Qaabeynta daciifka ah kuma habboona desktop-ka garaafyada, in kasta oo tani ay ku xiran tahay hawlaha la xallinayo. Ha iloobin inaad isticmaasho code Habrahabr10 si aad u hesho qiimo dhimis 10% ah dalabkaaga.
Ku rakibida jawiga desktop ee dhammaan ku tiirsanaanta waxaa lagu sameeyaa amarka soo socda:
sudo apt-get install xfce4 xfce4-goodies xorg dbus-x11 x11-xserver-utilsSidii kii hore, waxaan dooranay XFCE sababtoo ah shuruudaha kheyraadka xisaabinta oo aad u hooseeya.
Russification ee server-ka iyo rakibidda software
Inta badan mashiinada farsamada gacanta waxaa la geeyaa oo kaliya iyadoo Ingiriisi meelayn ah. On desktop-ka waxaad u baahan kartaa Ruush, taas oo fudud in la dejiyo. Marka hore, aan rakibno tarjumaadaha barnaamijyada nidaamka:
sudo apt-get install language-pack-ruAan dejinno deegaan ahaan:
sudo update-locale LANG=ru_RU.UTF-8Saamaynta isku midka ah ayaa lagu gaari karaa iyadoo gacanta lagu saxayo /etc/default/locale.
Meelaynta GNOME iyo KDE, bakhaarku waxa uu leeyahay xidhmooyinka luqadda-pack-gnome-ru iyo luqadda-pack-kde-ru - waxaad u baahan doontaa haddii aad isticmaasho barnaamijyo ka socda deegaannada desktop-ka. Gudaha XFCE, tarjumaadaha ayaa lagu rakibay codsiyo. Marka xigta waxaad ku rakibi kartaa qaamuusyada:
# Π‘Π»ΠΎΠ²Π°ΡΠΈ Π΄Π»Ρ ΠΏΡΠΎΠ²Π΅ΡΠΊΠΈ ΠΎΡΡΠΎΠ³ΡΠ°ΡΠΈΠΈ
sudo apt-get install hunspell hunspell-ru
# Π’Π΅Π·Π°ΡΡΡΡ Π΄Π»Ρ LibreOffice
sudo apt-get install mythes-ru
# ΠΠ½Π³Π»ΠΎ-ΡΡΡΡΠΊΠΈΠΉ ΡΠ»ΠΎΠ²Π°ΡΡ Π² ΡΠΎΡΠΌΠ°ΡΠ΅ DICT
sudo apt-get install mueller7-dictIntaa waxaa dheer, rakibidda tarjumaadda waxaa laga yaabaa in loo baahdo barnaamijyada codsiyada qaarkood:
# ΠΡΠ°ΡΠ·Π΅Ρ Firefox
sudo apt-get install firefox firefox-locale-ru
# ΠΠΎΡΡΠΎΠ²ΡΠΉ ΠΊΠ»ΠΈΠ΅Π½Ρ Thunderbird
sudo apt-get install thunderbird thunderbird-locale-ru
# ΠΡΠΈΡΠ½ΡΠΉ ΠΏΠ°ΠΊΠ΅Ρ LibreOffice
sudo apt-get install libreoffice libreoffice-l10n-ru libreoffice-help-ruTani waxay dhamaystiraysaa diyaarinta jawiga desktop-ka, waxa hadhay oo dhan waa in la habeeyo server-ka RDP.
Rakibaadda iyo habaynta server-ka RDP
Goobaha Ubuntu waxay leeyihiin server Xrdp ah oo si xor ah loo qaybiyay, kaas oo aan isticmaali doono:
sudo apt-get install xrdpHaddii wax waliba si fiican u dhaceen, waa in adeeguhu si toos ah u bilaabo:
sudo systemctl status xrdp
Server-ka Xrdp wuxuu ku shaqeeyaa xuquuqda isticmaalaha xrdp wuxuuna si caadi ah u qaataa shahaadada /etc/ssl/private/ssl-cert-snakeoil.key, kaas oo lagu bedeli karo adiga. Si aad u akhrido faylka, waxaad u baahan tahay inaad ku darto isticmaalaha kooxda ssl-cert:
sudo adduser xrdp ssl-certDejinta caadiga ah waxaa laga heli karaa faylka /etc/default/xrdp, iyo dhammaan faylasha qaabeynta serverka waxay ku yaalaan buugga /etc/xrdp. Halbeegyada ugu muhiimsan waxay ku jiraan faylka xrdp.ini, kaas oo aan u baahnayn in la beddelo. Habayntu si wanaagsan ayaa loo diiwaan galiyay, waxaana ka mid ah bogagyada u dhigma:
man xrdp.ini
man xrdpWaxa hadhay oo dhan waa in la tafatiro qoraalka /etc/xrdp/startwm.sh, kaas oo la fuliyo marka fadhiga adeegsadaha la bilaabo. Marka hore, aynu ka samayno nuqul kaab ah qoraalka qaybinta:
sudo mv /etc/xrdp/startwm.sh /etc/xrdp/startwm.b
sudo nano /etc/xrdp/startwm.shSi aad u bilowdo deegaanka desktop XFCE, waxaad u baahan doontaa qoraal sidan oo kale ah:
#!/bin/sh
if [ -r /etc/default/locale ]; then
. /etc/default/locale
export LANG LANGUAGE
fi
exec /usr/bin/startxfce4Fadlan ogow: qoraallada waxaa fiican in la qoro jidka buuxa ee faylasha la fulin karo - tani waa caado wanaagsan. Aan ka dhigno qoraalka mid la fulin karo oo markan dejinta server-ka Xrdp waxaa loo tixgelin karaa mid dhammaystiran:
sudo chmod 755 /etc/xrdp/startwm.shDib u bilow seerfarka:
sudo systemctl restart xrdp
Dejinta firewall
Sida caadiga ah, Xrdp waxay dhageysataa dekedda TCP 3389 dhammaan is-dhexgalka. Iyada oo ku xidhan qaabaynta server-ka dalwadda ah, waxa laga yaabaa inaad u baahato inaad habayso Netfilter firewall. Linux tan waxaa badanaa lagu sameeyaa iyadoo la adeegsanayo utility iptables, laakiin Ubuntu way ka fiican tahay inaad isticmaasho ufw. Haddii ciwaanka IP-ga macmiilka la yaqaan, habaynta waxaa lagu fuliyaa amarka soo socda:
sudo ufw allow from IP_Address to any port 3389Waxaad u ogolaan kartaa isku xirka IP kasta oo sidan oo kale ah:
sudo ufw allow 3389Hab-maamuuska RDP waxa uu taageeraa sirta, laakiin soo bandhigida server-ka Xrdp ee shabakadaha dadweynaha waa fikrad xun. Haddii macmiilku aanu lahayn IP go'an, adeeguhu waa inuu dhagaystaa oo keliya localhost si loo kordhiyo amniga. Way fiicantahay in laga galo marinka SSH, kaas oo si badbaado leh uga leexin doona taraafikada kombiyuutarka macmiilka. Waxaan leenahay hab la mid ah loogu talagalay server-ka VNC.
Ku xidhida serfarka RDP
Si aad ula shaqeyso deegaanka desktop-ka, waxaa fiican inaad abuurto isticmaale gaar ah oo aan mudnaanta lahayn:
sudo adduser rdpuser
Aan ku darno isticmaalaha kooxda sudo si uu u qabto hawlaha maamulka la xiriira. Haddii aysan jirin baahi noocaas ah, waxaad ka boodi kartaa tallaabadan:
sudo gpasswd -a rdpuser sudoWaxaad ku xidhi kartaa serfarka adiga oo isticmaalaya macmiil kasta oo RDP ah, oo ay ku jiraan macmiilka Adeegyada Desktop-ka ee ku dhex jira ee Windows. Haddii Xrdp uu dhegaysanayo is-dhexgalka dibadda, looma baahna ficillo dheeraad ah. Waa ku filan tahay in la qeexo cinwaanka IP-ga VPS, magaca isticmaalaha iyo erayga sirta ah ee goobaha isku xirka. Isku xirka ka dib, waxaan arki doonaa wax sidan oo kale ah:
Kadib dejinta bilowga ah ee deegaanka desktop-ka, waxaan heli doonaa miis buuxa oo buuxa. Sida aad arki karto, ma isticmaasho kheyraad badan, inkastoo wax walba ay ku xirnaan doonaan codsiyada la isticmaalo.
Haddii server-ka Xrdp uu dhegeysto oo keliya localhost, taraafikada kumbiyuutarka macmiilka waa in lagu xidhaa tunnel-ka SSH (sshd waa in uu ku shaqeeyaa VPS). Daaqadaha, waxaad isticmaali kartaa macmiilka SSH garaaf ahaan (tusaale, PuTTY), iyo nidaamyada UNIX waxaad u baahan tahay utility ssh:
ssh -L 3389:127.0.0.1:3389 -C -N -l rdpuser RDP_server_ipKa dib markii tunnel-ka la bilaabo, macmiilka RDP kuma xidhi doono server-ka fog, laakiin wuxuu ku xidhi doonaa martigeliyaha deegaanka.
Way ku adag tahay aaladaha moobaylka: Macaamiisha SSH ee awooda inay kor u qaadaan tunnel-ka waa in la iibsadaa, iyo IOS iyo iPadOS, hawlgalka asalka ah ee codsiyada qolo saddexaad waa adag tahay sababtoo ah wanaajinta isticmaalka tamarta aad u wanaagsan. IPhone iyo iPadka,ma awoodid inaad ku abuurto tunnel codsi gooni ah; waxaad u baahan doontaa codsi goose kaas oo laftiisu dhisi kara xidhiidhka RDP ee SSH. Sida, tusaale ahaan .
Maareeyaha Kulanka iyo Kulamada Isticmaalaha
Awoodda shaqo ee isticmaaleyaal badan ayaa si toos ah looga hirgeliyaa server-ka Xrdp oo uma baahna qaabayn dheeri ah. Ka dib marka la bilaabo adeegga habka loo maro, hal nidaam ayaa ku socda habka daemon, wuxuu ku dhegeystaa dekedda 3389 oo uu kula xidhiidhaa localhost maamulaha fadhiga.
ps aux |grep xrdp
sudo netstat -ap |grep xrdp
Maamulaha kalfadhigu inta badan uma muuqdaan isticmaalayaasha, sababtoo ah gelitaanka iyo erayga sirta ah ee lagu cayimay habaynta macmiilka ayaa si toos ah loogu wareejiyaa. Haddii tani aysan dhicin ama uu jiro qalad inta lagu jiro xaqiijinta, daaqad soo gal ah oo is dhexgal ah ayaa ka soo muuqan doonta halkii desktop-ka.
Si toos ah u bilaabista maamulaha kalfadhiga waxa lagu cayimay faylka /etc/default/xrdp, qaabayntana waxa lagu kaydiyaa /etc/xrdp/sesman.ini. Sida caadiga ah waxay u egtahay wax sidan oo kale ah:
[Globals]
ListenAddress=127.0.0.1
ListenPort=3350
EnableUserWindowManager=true
UserWindowManager=startwm.sh
DefaultWindowManager=startwm.sh
[Security]
AllowRootLogin=true
MaxLoginRetry=4
TerminalServerUsers=tsusers
TerminalServerAdmins=tsadmins
; When AlwaysGroupCheck=false access will be permitted
; if the group TerminalServerUsers is not defined.
AlwaysGroupCheck=false
[Sessions]Uma baahnid inaad wax ka bedesho halkan, kaliya waa inaad joojisaa gelitaanka xuquuqda xididka (AllowRootLogin=been). Isticmaale kasta oo loo oggolaaday nidaamka, hab xrdp gooni ah ayaa la bilaabay: haddii aad gooyso adoon dhammaanin fadhiga, hababka adeegsaduhu waxay sii wadi doonaan inay si caadi ah u shaqeeyaan, waxaadna ku xidhi kartaa fadhiga mar labaad. Dejinta waxa lagu beddeli karaa faylka /etc/xrdp/sesman.ini (qaybta[Xisbiyada]).
Beddelida qaababka kiiboodhka
Caadi ahaan wax dhibaato ah ma jiraan sanduuqa laba-geesoodka ah, laakiin qaabka kiiboodhka Ruushka waa inaad wax yar ku ciyaareysaa (goobaha Ruushku waa inuu hore u ahaadaa). ). Aynu tafatirno dejinta kiiboodhka server-ka Xrdp:
sudo nano /etc/xrdp/xrdp_keyboard.iniWaxaad u baahan tahay inaad ku darto khadadka soo socda dhamaadka faylka qaabeynta:
[rdp_keyboard_ru]
keyboard_type=4
keyboard_type=7
keyboard_subtype=1
model=pc105
options=grp:alt_shift_toggle
rdp_layouts=default_rdp_layouts
layouts_map=layouts_map_ru
[layouts_map_ru]
rdp_layout_us=us,ru
rdp_layout_ru=us,ruWaxa hadhay oo dhan waa in la kaydiyo faylka oo dib loo bilaabo Xrdp:
sudo systemctl restart xrdpSida aad arki karto, ma adka in la sameeyo server-ka RDP ee Linux VPS, laakiin Waxaan mar hore ka wada hadalnay dejinta VNC. Marka lagu daro tignoolajiyadan, waxaa jira ikhtiyaar kale oo xiiso leh: nidaamka X3Go iyadoo la adeegsanayo hab-maamuuska NX 2 oo la beddelay. Waxaan kaga hadli doonaa daabacaadda soo socota.
Source: www.habr.com