yum install httpd mod_ssl
Vim /etc/httpd/conf/httpd.conf
写上
<VirtualHost *:80>
DocumentRoot "/var/www/html/"
servername linux1.skills.com
RewriteRule ^/(.*)$ http://www.skills.com/$1 [R=301]
RewriteEngine on
</VirtualHost>
<Directory "/">
Require all granted
</Directory>
<VirtualHost *:80>
servername 10.10.70.11
redirect 403/
</VirtualHost>
Yum install mod_ssl
Vim /etc/httpd/conf.d/ssl.conf
<VirtualHost *:443>
servername 10.10.70.11
SSLEngine on
SSLCertificateFile /etc/ssl/skills.crt
SSLCertificateKeyFile /etc/ssl/skills.key
#Redirect 403 / (不注释掉 会默认弹出403 页面)
</VirtualHost>
修改 vim /etc/httpd/conf.d/ssl.conf
40 <VirtualHost skills.com:443‘
43 DocumentRoot "/var/www/html"
44 ServerName www.skills.com:443
85 SSLCertificateFile /etc/ssl/skills.crt
93 SSLCertificateKeyFile /etc/ssl/skills.key
客户端访问不报错 打开这两个
115 #SSLVerifyClient require
116 #SSLVerifyDepth 10
DNS 解析
证 书 转 换
#openssl pkcs12 -in skills.crt -inkey skills.key -out skills.pfx
#openssl pkcs12 -in skills.pfx -out skills.pem -nodes
#openssl rsa -in skills.pem -out apache.crt
#openssl rsa -in skills.pem -out apache.key
放行防火墙
firewall-cmd --permanent --add-port=443/tcp
firewall-cmd --permanent --add-port=80/tcp
firewall-cmd --reload