CentOS 6.2编译安装Nginx1.2.0+MySQL5.5.25+PHP5.3.13
2013-10-24 15:31:12
标签:服务器 防火墙 file 配置文件 written
一、配置好IP、DNS 、网关,确保使用远程连接工具能够连接服务器
二、配置防火墙,开启80端口、3306端口
1 vi/etc/sysconfig/iptables #编辑防火墙配置文件
1 -A INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT(允许80端口通过防火墙)
2 -A INPUT -m state --state NEW -m tcp -p tcp --dport 3306 -j ACCEPT(允许3306端口通过防火墙)
特别提示:很多网友把这两条规则添加到防火墙配置的最后一行,导致防火墙启动失败
正确的应该是添加到默认的22端口这条规则的下面,添加好之后防火墙规则如下所示:
01 #########################################################
02 # Firewall configuration written by system-config-firewall
03 # Manual customization of this file is not recommended.
04 *filter
05 :INPUT ACCEPT [0:0]
06 :FORWARD ACCEPT [0:0]
07 :OUTPUT ACCEPT [0:0]
08 -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
09 -A INPUT -p icmp -j ACCEPT
10 -A INPUT -i lo -j ACCEPT
11 -A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
12 -A INPUT -m state --state NEW -m tcp -p tcp --dport 80 -j ACCEPT
13 -A INPUT -m state --state NEW -m tcp -p tcp --dport 3306 -j ACCEPT
14 -A INPUT -j REJECT --reject-with icmp-host-prohibited
15 -A FORWARD -j REJECT --reject-with icmp-host-prohibited
16 COMMIT
17 #########################################################
1 /etc/init.d/iptables restart #最后重启防火墙使配置生效
三、关闭SELINUX
1 vi/etc/selinux/config #编辑
1 #SELINUX=enforcing #注释掉
2 #SELINUXTYPE=targeted #注释掉
3 SELINUX=disabled #增加
4 :wq #保存退出
1 shutdown-r now #重启系统
四 、系统约定
软件源代码包存放位置:/usr/local/src
源码包编译安装位置:/usr/local/软件名字
五、下载软件包
1、下载nginx(目前最新稳定版)
http://nginx.org/download/nginx-1.2.0.tar.gz
2、下载pcre (支持nginx伪静态)
ftp://ftp.csx.cam.ac.uk/pub/software/programming/pcre/pcre-8.30.tar.gz
3、下载MySQL(目前稳定版)
http://mysql.mirror.kangaroot.net/Downloads/MySQL-5.5/mysql-5.5.25.tar.gz
4、下载php
http://www.php.net/releases/
5、下载cmake(MySQL编译工具)
http://www.cmake.org/files/v2.8/cmake-2.8.8.tar.gz
6、下载libmcrypt(PHPlibmcrypt模块)
ftp://mcrypt.hellug.gr/pub/crypto/mcrypt/libmcrypt/libmcrypt-2.5.7.tar.gz
六、安装编译工具及库文件(使用CentOS yum命令安装)
yum install make apr* autoconf automake curl-devel gcc gcc-c++ zlib-devel openssl openssl-devel pcre-devel gd kernel keyutils patch perl kernel-headers compat* mpfr cpp glibc libgomp libstdc++-devel ppl cloog-ppl keyutils-libs-devel libcom_err-devel libsepol-devel libselinux-devel krb5-devel zlib-devel libXpm* freetype libjpeg* libpng* php-common php-gd ncurses* libtool* libxml2 libxml2-devel patch freetype-devel
安装篇
一、安装cmake
1 cd/usr/local/src
2 tarzxvf cmake-2.8.8.tar.gz
3 cdcmake-2.8.8
4 ./configure
5 make#编译
6 makeinstall#安装
二、安装MySQL
01 groupadd mysql #添加mysql组
02 useradd-g mysql mysql -s /bin/false#创建用户mysql并加入到mysql组,不允许mysql用户直接登录系统
03 mkdir-p /data/mysql #创建MySQL数据库存放目录
04 chown-R mysql:mysql /data/mysql #设置MySQL数据库目录权限
05 mkdir-p /usr/local/mysql #创建MySQL安装目录
06 cd/usr/local/src
07 tarzxvf mysql-5.5.25.tar.gz #解压
08 cdmysql-5.5.25
09 cmake . -DCMAKE_INSTALL_PREFIX=/usr/local/mysql -DMYSQL_DATADIR=/data/mysql -DSYSCONFDIR=/etc #配置
10 make#编译
11 makeinstall#安装
12 cd/usr/local/mysql
13 cp./support-files/my-huge.cnf /etc/my.cnf #拷贝配置文件(注意:如果/etc目录下面默认有一个my.cnf,直接覆盖即可)
14 vi/etc/my.cnf #编辑配置文件,在 [mysqld] 部分增加下面一行
15 datadir = /data/mysql #添加MySQL数据库路径
16 :wq! #保存退出
17 ./scripts/mysql_install_db --user=mysql #生成mysql系统数据库
18 cp./support-files/mysql.server /etc/rc.d/init.d/mysqld #把Mysql加入系统启动
19 chmod755 /etc/init.d/mysqld #增加执行权限
20 chkconfig mysqld on #设置开机启动
21 vi/etc/rc.d/init.d/mysqld #编辑
22 basedir = /usr/local/mysql #MySQL程序安装路径
23 datadir = /data/mysql #MySQl数据库存放目录
24 service mysqld start #启动
25 vi/etc/profile #把mysql服务加入系统环境变量:在最后添加下面这一行
26 exportPATH=$PATH:/usr/local/mysql/bin
27 :wq! #保存退出
28 下面这两行把myslq的库文件链接到系统默认的位置,在编译类似PHP等软件时可以不用指定mysql的库文件地址。
29 ln-s /usr/local/mysql/lib/mysql /usr/lib/mysql
30 ln-s /usr/local/mysql/include/mysql /usr/include/mysql
31 shutdown-r now #需要重启系统,等待系统重新启动之后继续在终端命令行下面操作
32 mysql_secure_installation #设置Mysql密码
33 根据提示按Y 回车(默认密码为空)
34 然后输入2次密码
35 继续按Y 回车,直到设置完成
36 或者直接修改密码/usr/local/mysql/bin/mysqladmin -u root -p password "123456"#修改密码
37 service mysqld restart #重启
38 到此,mysql安装完成!
三、安装pcre
1 cd/usr/local/src
2 mkdir/usr/local/pcre #创建安装目录
3 tarzxvf pcre-8.30.tar.gz
4 cdpcre-8.30
5 ./configure --prefix=/usr/local/pcre #配置
6 make
7 makeinstall
四、安装 nginx
01 cd/usr/local/src
02 groupadd www #添加www组
03 useradd-g www www -s /bin/false#创建nginx运行账户www并加入到www组,不允许www用户直接登录系统
04 tarzxvf nginx-1.2.0.tar.gz
05 cdnginx-1.2.0
06 ./configure --prefix=/usr/local/nginx --without-http_memcached_module --user=www --group=www --with-http_stub_status_module --with-openssl=/usr/ --with-pcre=/usr/local/src/pcre-8.30
07 #注意:--with-pcre=/usr/local/src/pcre-8.30指向的是源码包解压的路径,而不是安装的路径,否则会报错
08 make
09 makeinstall
10 /usr/local/nginx/sbin/nginx #启动nginx
11 vi/etc/rc.d/init.d/nginx #设置nginx开启启动,编辑启动文件添加下面内容
01 #################################################################
02 #!/bin/bash
03 # nginx Startup script for the Nginx HTTP Server
04 # it is v.0.0.2 version.
05 # chkconfig: - 85 15
06 # description: Nginx is a high-performance web and proxy server.
07 # It has a lot of features, but it's not for everyone.
08 # processname: nginx
09 # pidfile: /var/run/nginx.pid
10 # config: /usr/local/nginx/conf/nginx.conf
11 nginxd=/usr/local/nginx/sbin/nginx
12 nginx_config=/usr/local/nginx/conf/nginx.conf
13 nginx_pid=/usr/local/nginx/logs/nginx.pid
14 RETVAL=0
15 prog="nginx"
16 # Source function library.
17 . /etc/rc.d/init.d/functions
18 # Source networking configuration.
19 . /etc/sysconfig/network
20 # Check that networking is up.
21 [ ${NETWORKING} = "no"] && exit0
22 [ -x $nginxd ] || exit0
23 # Start nginx daemons functions.
24 start() {
25 if[ -e $nginx_pid ];then
26 echo"nginx already running...."
27 exit1
28 fi
29 echo-n $"Starting $prog: "
30 daemon $nginxd -c ${nginx_config}
31 RETVAL=$?
32 echo
33 [ $RETVAL = 0 ] && touch/var/lock/subsys/nginx
34 return$RETVAL
35 }
36 # Stop nginx daemons functions.
37 stop() {
38 echo-n $"Stopping $prog: "
39 killproc $nginxd
40 RETVAL=$?
41 echo
42 [ $RETVAL = 0 ] && rm-f /var/lock/subsys/nginx /usr/local/nginx/logs/nginx.pid
43 }
44 reload() {
45 echo-n $"Reloading $prog: "
46 #kill -HUP `cat ${nginx_pid}`
47 killproc $nginxd -HUP
48 RETVAL=$?
49 echo
50 }
51 # See how we were called.
52 case"$1"in
53 start)
54 start
55 ;;
56 stop)
57 stop
58 ;;
59 reload)
60 reload
61 ;;
62 restart)
63 stop
64 start
65 ;;
66
67 status)
68 status $prog
69 RETVAL=$?
70 ;;
71 *)
72 echo$"Usage: $prog {start|stop|restart|reload|status|help}"
73 exit1
74 esac
75 exit$RETVAL
76 #################################################################
1 :wq! #保存退出
2 chmod775 /etc/rc.d/init.d/nginx #赋予文件执行权限
3 chkconfig nginx on #设置开机启动
4 /etc/rc.d/init.d/nginx restart #重启
五、安装libmcrypt
1 cd/usr/local/src
2 tarzxvf libmcrypt-2.5.7.tar.gz #解压
3 cdlibmcrypt-2.5.7 #进入目录
4 ./configure #配置
5 make#编译
6 makeinstall#安装
六、安装php
01 cd/usr/local/src
02 tar-zvxf php-5.3.13.tar.gz
03 cdphp-5.3.13
04 mkdir-p /usr/local/php5 #建立php安装目录
05 ./configure --prefix=/usr/local/php5 --with-config-file-path=/usr/local/php5/etc --with-mysql=/usr/local/mysql --with-mysqli=/usr/local/mysql/bin/mysql_config --with-mysql-sock=/tmp/mysql.sock --with-gd --with-iconv --with-zlib --enable-xml --enable-magic-quotes --enable-safe-mode --enable-bcmath --enable-shmop --enable-sysvsem --enable-inline-optimization --with-curlwrappers --enable-mbregex --enable-fpm --enable-mbstring --enable-ftp--enable-gd-native-ttf --with-openssl --enable-pcntl --enable-sockets --with-xmlrpc --enable-zip --enable-soap --without-pear --with-gettext --enable-session --with-mcrypt --with-curl --with-jpeg-dir--with-freetype-dir#配置
06 make#编译
07 makeinstall#安装
08 cpphp.ini-production /usr/local/php5/etc/php.ini #复制php配置文件到安装目录
09 rm-rf /etc/php.ini #删除系统自带配置文件
10 ln-s /usr/local/php5/etc/php.ini /etc/php.ini #添加软链接
11 cp/usr/local/php5/etc/php-fpm.conf.default /usr/local/php5/etc/php-fpm.conf #拷贝模板文件为php-fpm配置文件
12 vi/usr/local/php5/etc/php-fpm.conf #编辑
13 user = www #设置php-fpm运行账号为www
14 group = www #设置php-fpm运行组为www
15 pid = run/php-fpm.pid #取消前面的分号
16 cp/usr/local/src/php-5.3.13/sapi/fpm/init.d.php-fpm /etc/rc.d/init.d/php-fpm #设置 php-fpm开机启动,拷贝php-fpm到启动目录
17 chmod+x /etc/rc.d/init.d/php-fpm #添加执行权限
18 chkconfig php-fpm on #设置开机启动
19 vi/usr/local/php5/etc/php.ini #编辑配置文件
20 找到:disable_functions =
21 修改为:disable_functions = passthru,exec,system,chroot,scandir,chgrp,chown,shell_exec,proc_open,proc_get_status,ini_alter,ini_alter,ini_restore,dl,openlog,syslog,readlink,symlink,popepassthru,stream_socket_server,escapeshellcmd,dll,popen,disk_free_space,checkdnsrr,checkdnsrr,getservbyname,getservbyport,disk_total_space,posix_ctermid,posix_get_last_error,posix_getcwd, posix_getegid,posix_geteuid,posix_getgid, posix_getgrgid,posix_getgrnam,posix_getgroups,posix_getlogin,posix_getpgid,posix_getpgrp,posix_getpid, posix_getppid,posix_getpwnam,posix_getpwuid, posix_getrlimit, posix_getsid,posix_getuid,posix_isatty, posix_kill,posix_mkfifo,posix_setegid,posix_seteuid,posix_setgid, posix_setpgid,posix_setsid,posix_setuid,posix_strerror,posix_times,posix_ttyname,posix_uname
22 #列出PHP可以禁用的函数,如果某些程序需要用到这个函数,可以删除,取消禁用。
23 找到:;date.timezone =
24 修改为:date.timezone = PRC #设置时区
25 找到:expose_php = On
26 修改为:expose_php = OFF #禁止显示php版本的信息
在编译PHP的过程中可能会报UNDEFINED REFERENCE TO `LIBICONV_OPEN 无法编译PHP LIBICONV错误.
七、配置nginx支持php
01 vi/usr/local/nginx/conf/nginx.conf #编辑配置文件
02 user www www; #首行user去掉注释,修改Nginx运行组为www www;必须与/usr/local/php5/etc/php-fpm.conf中的user,group配置相同,否则php运行出错
03 index index.php index.html index.htm; #添加index.php
04 # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
05 #
06 location ~ .php$ {
07 root html;#此处和server下面root保持一致,默认为html
08 fastcgi_pass 127.0.0.1:9000;
09 fastcgi_index index.php;
10 fastcgi_param SCRIPT_FILENAME /usr/local/nginx/html/$fastcgi_script_name;
11 include fastcgi_params;
12 }
注意:取消FastCGI server部分location的注释,并要注意fastcgi_param行的参数,改为/data/webroot/(此为网站根目录绝对路径)$fastcgi_script_name
1 /etc/init.d/nginx restart #重启nginx