1. - Mounting CD ROM :
mount -t iso9660 /dev/cdrom /media/CentOS
iso9660 : tipe file cdrom
-paket repolokal
yum install createrepo
- disable repo
-- nonaktif semua repo
yum --disablerepo=*
-- nonaktif repo BASE
yum --disablerepo=base
- untuk repo yang dibuat sendiri ubah gpgcheck menjadi 0
- disable SELINUX dan FIREWALLD
- nano /etc/selinux/config, kemudian edit baris SELINUX=DISABLE
- systemctl disable firewalld
-repolokal
[epel]
name=Penamaan saja
#pili salah satu sesuai dengan kebutuhan/kondisi
baseurl=http://[ip_address_repo]/path
baseurl=ftp://[ip_address_repo]/path
baseurl=file:///[lokasi_repo]
enable=1
gpgcheck=0
#disable semua paket php dan mysql untuk repo epel
#jika ada tambahan, sintak dilanjutkan
exclude=php* mysql*
-membuat repo
createrepo -pv [direktori_repo]
-paket php
yum install php php-mysql php-xml php-gd php-mcrypt
php56w php56w-mysql php56w-xml php56w-gd php56w-mcrypt
php72w php72w-mysqlnd php72w-xml php72w-gd php72w-mcrypt php72w-fpm php72w-
opchace php72w-mbstring
yum install epel-release
rpm -Uvh https://mirror.webtatic.com/yum/el7/webtatic-release.rpm
-paket mariadb
yum install mariadb mariadb-server
- konfigurasi mariadb (my.cnf)
- duplicate /usr/share/mysql/my-large.cnf /etc/my.cnf
- tambahkan baris
- skip-name-resolve=on
- event_scheduler=on
-
sql_mode=STRICT_TRANS_TABLES,NO_ZERO_IN_DATE,NO_ZERO_DATE,ERROR_FOR_DIVISION_BY_
ZERO,NO_AUTO_CREATE_USER,NO_ENGINE_SUBSTITUTION
- setting mysql
jalankan perintah : mysql_secure_installation
firewall-cmd --permanent --add-service=mysql
grep 'temporary password' /var/log/mysqld.log
- memberi hak akses mysql
grant all privileges on *.* to 'root'@'%' identified by 'maria';
2. grant all privileges on *.* to 'root'@'%' identified by 'k0p1p4n4553k4l1'
with grant option;
grant all privileges on *.* to 'root'@'%' identified by 'S!mpel1234' with
grant option;
- ftp server
- install #yum install vsftpd
- rubah konfigurasi #nano /etc/vsftpd/vsftpd.conf
- uncomment baris :
localumask=000 022
chroot_list_enable=YES
chroot_list_file=/etc/vsftpd/chroot_list
- buat file chroot_list di /etc/vsftpd, daftarkan user yang akan digunakan
layanan ftp
- menambah user ftp sesuai dengan direktori
-tentukan direkroti user yang akan digunakan
#mkdir /var/www/html/programmer
- buat user baru
#useradd simpel -s /sbin/nologin -d /var/www/html/
- ubah kepemilikan direktori
#chown -Rf simpel:simpel /var/www/html/programmer/
- chmod a-w {folder_ftp}
- chmod o+w {folder_ftp}
- echo 'allow_writeable_chroot=YES' >> /etc/vsftpd/vsftpd.conf
- firewall-cmd --permanent --add-port=21/tcp
- firewall-cmd --permanent --add-service=ftp
- setsebool -P ftp_home_dir on
- setsebool -P allow_ftpd_full_access on
- getsebool -a | grep ftp
- install JDK
1. buat direktori untuk instalasi java = /usr/java
2. salin hasil download jdk ke /usr/java
3. ektrak
4. install java
- alternatives --install /usr/bin/java java /usr/java/jdk/ 200000
- alternatives --install /usr/bin/javac javac
/usr/java/jdk/bin/javac 200000
- alternatives --install /usr/bin/jar jar /usr/java/jdk/bin/jar
200000
5. konfigurasi path java
export JAVA_HOME=/usr/java/jdk/
export JRE_HOME=/usr/java/jdk/jre/bin/
export JRE_HOME=/usr/java/jdk/jre/
export PATH=$PATH:/usr/java/jdk/bin/:/usr/java/jdk/jre/bin/
echo $PATH << untuk melihat path java yang telah diatur
6. menetapkan pengaturan path java agar berlaku permanen setiap mesin di
restart dengan mengedit file di #nano /etc/profile
- tambahkan baris
JAVA_HOME=/usr/java/jdk
JRE_HOME=/usr/java/jdk/jre
PATH=$PATH:$HOME/bin:$JAVA_HOME/bin:$JRE_HOME/bin
export JAVA_HOME
export JRE_HOME
export PATH
- install tomcat
1. salin tomcat di /usr/share kemudia ektrak.
2. jalankan tomcat dengan user baru/priveleges terbatas
#groupadd tomcat
#useradd tomcat -s /bin/false -d /usr/share/tomcat -g tomcat
#chown -Rf tomcat:tomcat /usr/share/tomcat7 << mengganti kepemilikan
diretori
3. install tomcat sebagai service
- buat file tomcat.service baru di /etc/systemd/system/
3. [Unit]
Description=Apache Tomcat 7 Servlet Container
After=syslog.target network.target
[Service]
User=tomcat
Group=tomcat
Type=forking
Environment=JAVA_HOME=/usr/java/jdk/jre
Environment=CATALINA_PID=/usr/share/tomcat/tomcat.pid
Environment=CATALINA_HOME=/usr/share/tomcat
Environment=CATALINA_BASE=/usr/share/tomcat
ExecStart=/usr/share/tomcat/bin/startup.sh
ExecStop=/usr/share/tomcat/bin/shutdown.sh
Restart=on-failure
[Install]
WantedBy=multi-user.target
- setelah edit file tomcat.service, jalankan perintah :
#systemctl daemon-reload
- aktfikan service tomcat
#systemctl enable tomcat
- jalankan service tomcat
#systemctl start tomcat
trouble :
jika service error saat dijalankan periksa permission folder tomcat
4. tambahkan baris di file /usr/share/tomcat7/conf/tomcat-users.xml
<role rolename="tomcat"/>
<user username="tomcat" password="tomcat" roles="manager-gui,admin-
gui,admin-script"/>
5. firewall-cmd --zone=public --add-port=8081/tcp --permanent
- install java-bridge (untuk menjalankan java report)
1. kopi hasil download ke /usr/share/tomcat7/webapps
2. salin file library report ke direktori
/usr/share/tomcat7/webapps/JavaBridge/WEB-INF/lib
- ganti port tomcat
/usr/share/tomcat7/conf/server.xml
- testing javabridge
http://[ip_address]:8081/JavaBridge/java/Java.inc
http://192.168.254.3:8081/JavaBridge/
- menambah ip virtual
- copy file /etc/sysconfig/network-scripts/ifcfg-eno1 menjadi
/etc/sysconfig/network-scripts/ifcfg-eno1
- menambah virtual host dan alias
- edit file httpd.conf, tambahkan baris virtual host atau untuk web alias
<IfModule alias_module>
Alias /webservice "/var/www/html/webapps/webservice/public"
<Directory "/var/www/html/webapps/webservice/public">
Options Indexes FollowSymLinks Includes ExecCGI
AllowOverride All
#AllowOverride AuthConfig
#Order allow,deny
Require all granted
</Directory>
Alias /apps "/var/www/html/webapps/application/"
4. <Directory "/var/www/html/webapps/application/SIMpel">
#Options Indexes FollowSymLinks Includes ExecCGI
AllowOverride All
#AllowOverride AuthConfig
#Order allow,deny
Require all granted
</Directory>
</IfModule>
- opcache
opcache.enable=1
opcache.memory_consumption=128
opcache.max_accelerated_files=4000
opcache_revalidate_freq = 240
- php-fpm > fast-gcgi
vi /etc/httpd/conf.d/php.conf
uncommet >> SetHandler application/x-httpd-php
add new line : SetHandler application/x-httpd-php
<FilesMatch .php$>
SetHandler "proxy:fcgi://127.0.0.1:9000"
</FilesMatch>
systemctl start php-fpm
systemctl enable php-fpm
apachectl restart
- mengubah php.ini
a. memory_limit < jika digunakan untuk tidak terbatas berikan nila -1 dan
sesuaikan dengan RAM SERVER
b. upload_max_filesize = 1000M;
c. post_max_size = 1000M;
CONTOH :
post_max_size = 300M
upload_max_filesize = 300M
max_execution_time = 3000
max_input_time = 3000
memory_limit = 1000M
DARI PAK ALAM :
post_max_size = 256M
upload_max_filesize = 256M
max_execution_time = 300
max_input_time = 60
memory_limit = 256M
RAM 1Gb = 32M
RAM 2Gb = 128M
RAM 3Gb = 256M
RAM 4Gb = 512M
RAM 5Gb = 1024M
- jika data di post sebanyak 1000, edit php.ini :
"max_input_var = 1000" nilaix ada default. jika lebih dari 1000, rubah
nilai sesuai dengan kebutuhan.
- VPN
# wget http://dl.fedoraproject.org/pub/epel/7/x86_64/e/epel-release-7-
6.noarch.rpm
5. # rpm -Uvh epel-release-7-6.noarch.rpm
yum install ppp pptp pptpd pptp-setup
nano /etc/pptpd.conf
tambahkan baris :
localip 192.168.5.1
remoteip 192.168.5.100-200
nano /etc/ppp/options.pptpd
tambahkan baris :
ms-dns 8.8.8.8
ms-dns 8.8.4.4
nano /etc/ppp/chap-secrets
tambahkan baris
# Secrets for authentication using CHAP
# client server secret IP addresses
kemkes * Januari!(*( *
nano /etc/sysctl.conf
sysctl -p
service pptpd restart
service pptpd status
nano /etc/ppp/options.pptpd
nano /etc/ppp/chap-secrets
nano /etc/pptpd.conf
mysql -u root -5
mysql -u root -p
nano /etc/pptpd.conf
mysql -u root -p
locate ppp
nano /etc/ppp/chap-secrets
/etc/init.d/pptd restart
service ppp restart
nano /etc/ppp/chap-secrets
service ppp restart
nano /etc/ppp/chap-secrets
- install vmware
install paket nya dlu
yum install make gcc kernel-devel kernel-headers glibc-headers perl
- lokasi konfigurasi mariadb
/etc/my.cnf
/usr/share/mysql/my-large.cnf
- deflate
/etc/httpd/conf.modules.d/00-base.conf
tambah baris SetOutPutFilter DEFLATE
- untuk php7 dan mysql 7
setsebool -P httpd_can_network_connect 1
setsebool -P httpd_can_network_connect_db 1
- [ERROR] --initialize specified but the data directory has files in it.
Aborting.
rm -rf /var/lib/mysql/*
- [Warning] TIMESTAMP with implicit DEFAULT value is deprecated. Please use
--explicit_defaults_for_timestamp server o
explicit_defaults_for_timestamp = 1
- jika simpel telah operasional matikan webservice/config/development.config.php
rename jadi .off
- rubah hak akses folder CACHE dan REPORT menjadi 777
firewall-cmd --permanent --add-port=80/tcp
firewall-cmd --permanent --add-port=443/tcp
6. -INSTALL PERCONA XTRABACKUP
Download : wget http://www.percona.com/downloads/percona-
release/redhat/0.1-3/percona-release-0.1-3.noarch.rpm
Install Repo : rpm -ivH percona-release-0.1-3.noarch.rpm
Install Packet : yum install percona-xtrabackup-24
Backup : xtrabackup --user=userdb_mysql --password='password'
--backup --target-dir=/path/backup
Verifikasi : innobackupex --apply-log [folder_backup]
Buat User :
CREATE USER 'xtrabackup'@'localhost' IDENTIFIED BY 'S!
mpelbackup123';
GRANT SELECT, PROCESS, RELOAD, LOCK TABLES, REPLICATION CLIENT ON *.
* TO 'bkpuser' @ 'localhost';
FLUSH PRIVILEGES;
Penjadwalan backup (Crontab) : 56 23 * * * /usr/bin/innobackupex
--user=root --password=S!mpel123 /path/directory
Untuk restore database, copy file backup ke /var/lib/mysql/, kemudian
rubah segala permission menjadi mysql:mysql
- ERROR MESSAGE ON OS VIRTUAL "SOFT LOCKUP"
Try setting
vm.dirty_background_bytes = 100000000
vm.dirty_bytes = 100000000
in /etc/sysctl.conf and running "sysctl -p". Alternatively, try:
vm.dirty_expire_centisecs = 3000</code>
- user simpel (ES CDInsU)
- mysqlcheck -u [username] -p --all-databases --check-upgrade --auto-repair
mysql_upgrade -u [username] -p
- setting jam server :
date +%T -s "14:18:00"
7. -INSTALL PERCONA XTRABACKUP
Download : wget http://www.percona.com/downloads/percona-
release/redhat/0.1-3/percona-release-0.1-3.noarch.rpm
Install Repo : rpm -ivH percona-release-0.1-3.noarch.rpm
Install Packet : yum install percona-xtrabackup-24
Backup : xtrabackup --user=userdb_mysql --password='password'
--backup --target-dir=/path/backup
Verifikasi : innobackupex --apply-log [folder_backup]
Buat User :
CREATE USER 'xtrabackup'@'localhost' IDENTIFIED BY 'S!
mpelbackup123';
GRANT SELECT, PROCESS, RELOAD, LOCK TABLES, REPLICATION CLIENT ON *.
* TO 'bkpuser' @ 'localhost';
FLUSH PRIVILEGES;
Penjadwalan backup (Crontab) : 56 23 * * * /usr/bin/innobackupex
--user=root --password=S!mpel123 /path/directory
Untuk restore database, copy file backup ke /var/lib/mysql/, kemudian
rubah segala permission menjadi mysql:mysql
- ERROR MESSAGE ON OS VIRTUAL "SOFT LOCKUP"
Try setting
vm.dirty_background_bytes = 100000000
vm.dirty_bytes = 100000000
in /etc/sysctl.conf and running "sysctl -p". Alternatively, try:
vm.dirty_expire_centisecs = 3000</code>
- user simpel (ES CDInsU)
- mysqlcheck -u [username] -p --all-databases --check-upgrade --auto-repair
mysql_upgrade -u [username] -p
- setting jam server :
date +%T -s "14:18:00"
![- Mounting CD ROM :
mount -t iso9660 /dev/cdrom /media/CentOS
iso9660 : tipe file cdrom
-paket repolokal
yum install createrepo
- disable repo
-- nonaktif semua repo
yum --disablerepo=*
-- nonaktif repo BASE
yum --disablerepo=base
- untuk repo yang dibuat sendiri ubah gpgcheck menjadi 0
- disable SELINUX dan FIREWALLD
- nano /etc/selinux/config, kemudian edit baris SELINUX=DISABLE
- systemctl disable firewalld
-repolokal
[epel]
name=Penamaan saja
#pili salah satu sesuai dengan kebutuhan/kondisi
baseurl=http://[ip_address_repo]/path
baseurl=ftp://[ip_address_repo]/path
baseurl=file:///[lokasi_repo]
enable=1
gpgcheck=0
#disable semua paket php dan mysql untuk repo epel
#jika ada tambahan, sintak dilanjutkan
exclude=php* mysql*
-membuat repo
createrepo -pv [direktori_repo]
-paket php
yum install php php-mysql php-xml php-gd php-mcrypt
php56w php56w-mysql php56w-xml php56w-gd php56w-mcrypt
php72w php72w-mysqlnd php72w-xml php72w-gd php72w-mcrypt php72w-fpm php72w-
opchace php72w-mbstring
yum install epel-release
rpm -Uvh https://mirror.webtatic.com/yum/el7/webtatic-release.rpm
-paket mariadb
yum install mariadb mariadb-server
- konfigurasi mariadb (my.cnf)
- duplicate /usr/share/mysql/my-large.cnf /etc/my.cnf
- tambahkan baris
- skip-name-resolve=on
- event_scheduler=on
-
sql_mode=STRICT_TRANS_TABLES,NO_ZERO_IN_DATE,NO_ZERO_DATE,ERROR_FOR_DIVISION_BY_
ZERO,NO_AUTO_CREATE_USER,NO_ENGINE_SUBSTITUTION
- setting mysql
jalankan perintah : mysql_secure_installation
firewall-cmd --permanent --add-service=mysql
grep 'temporary password' /var/log/mysqld.log
- memberi hak akses mysql
grant all privileges on *.* to 'root'@'%' identified by 'maria';](https://image.slidesharecdn.com/centos-config-190201074522/85/Centos-config-1-320.jpg)
