创建网站目录

mkdir -p /usr/local/apache/htdocs/site{1,2,3}

配置Apache虚拟主机信息

    
         ServerAdmin webmaster@dummy-host.example.com    DocumentRoot "/usr/local/apache/htdocs/site1"    ServerAlias site1.example.com    ErrorLog "logs/site1.example.com-error_log"    CustomLog "logs/site1.example.com-access_log" common
    
    
         ServerAdmin webmaster@dummy-host.example.com    DocumentRoot "/usr/local/apache/htdocs/site2"    ServerAlias site2.example.com    ErrorLog "logs/site2.example.com-error_log"    CustomLog "logs/site2.example.com-access_log" common
    
    
         ServerAdmin webmaster@dummy-host.example.com    DocumentRoot "/usr/local/apache/htdocs/site3"    ServerAlias site3.example.com    ErrorLog "logs/site3.example.com-error_log"    CustomLog "logs/site3.example.com-access_log" common
    

启动并验证Apache服务

apachectl startss -antl | grep ':80'

确保80端口正在监听。执行ping命令测试网络连通性。

使用域名访问网站

配置SSL（HTTPS）

• 生成SSL证书和密钥：

  mkdir -p /etc/pki/CA/{private, certs, newcerts, crl}(umask 077; openssl genrsa -out /etc/pki/CA/private/cakey.pem 2048)openssl req -new -x509 -key /etc/pki/CA/private/cakey.pem -out /etc/pki/CA/cacert.pem -days 365

• 学习并应用自动生成的证书：

  openssl genrsa -out /etc/pki/httpd/httpd.key 2048openssl req -new -key /etc/pki/httpd/httpd.key -out /etc/pki/httpd/httpd.csr -days 365openssl ca -in /etc/pki/httpd/httpd.csr -out /etc/pki/httpd/httpd.crt -days 365

• 修改Apache配置文件，启用SSL模块并指明证书文件：

  LoadModule ssl_module modules/mod_ssl.soSSLCipherSuite ssl:-SSL:SSLv2SSLProtocol all:-SSLv2SSLOptions +StrictRequireSSLATIOPT Engine drivethinkingSSLRequireEngine onSSLCheckEngine drivenSSLCheckBy CREOLESSLCheckBy providerSSLCheckBy subjectSSLCACertificatePath /etc/pki/CA/cacert.pemSSLCACertificateName "CA.pem"

• 重启Apache服务，并检查443端口是否正在监听：

  apachectl -tss -antl | grep ':443'

测试HTTPS访问