Construction of NFS remote shared storage and FTP file transfer services

1. NFS remote shared storage

File system level sharing (NAS storage) --------- It has been formatted and can be used directly.

Because NFS has many functions, different functions require the use of different ports. So NFS cannot pin the port. So NFS cannot pin the port. RPC will record the NFS port information, so that the server and client can communicate port information through RPC.

practise

Environment preparation:

Server: Server1 IP: 192.168.56.99

Client: web1 IP: 192.168.56.110

Modify hostname:

Server: hostnamectl set-hostname server1

Client: hostnamectl set-hostname web1

At the same time, turn off the server client firewall and selinux kernel firewall:

[root@server1 ~]# systemctl stop firewalld && systemctl disable firewalld && setenforce 0
[root@web1 ~]# systemctl stop firewalld && systemctl disable firewalld && setenforce 0

NFS-server operation

[root@server1 ~]# yum -y install rpcbind  #安装rpc协议的包
[root@server1 ~]# yum -y install nfs-utils  #安装nfs服务,提供文件系统
[root@server1 ~]# systemctl start nfs && systemctl start rpcbind  #开启nfs服务和rpc协议
[root@server1 ~]# mkdir /nfs   #在根下创建一个名为nfs的目录作为共享存储目录
[root@server1 ~]# echo 'holle NFS' >> /nfs/text   #在目录nfc下创建text文件并追加内容
[root@server1 ~]# vim /etc/exports        #编辑共享文件
/nfs 192.168.56.0(rw,no_root_squash,sync)

[Description of parameter value content]

rw ro The permissions shared by this directory are read-write or read-only.

sync async sync means that the data will be written to the memory and hard disk simultaneously, while async means that the data will be temporarily stored in the memory first instead of being written directly to the hard disk!

no_root_squash root_squash If the account used by the client to use the NFS file system is root, how does the system determine the identity of this account? By default, the identity of the client root will be compressed into nfsnobody by the root_squash setting, which will be more secure for the server system. But if you want to allow the client to use the root identity to operate the server's file system, then you have to turn on no_root_squash here!

all_squash Regardless of the identity of the user logging into NFS, his identity will be compressed into an anonymous user, usually nobody (nfsnobody)!

anonuid anongid anon means anonymous (anonymous) The UID setting value of the anonymous user mentioned earlier about *_squash is usually nobody (nfsnobody), but you can set the value of this UID by yourself! Of course, this UID must exist in your /etc/passwd! anonuid refers to the UID and anongid is the GID of the group.

[root@server1 ~]# systemctl restart nfs-server   #重启nfc服务
[root@server1 ~]# systemctl enable nfs-server   #制作开机启动
[root@server1 ~]#  exportfs -v                  #确认 NFS 服务器启动

Client web1 operation:

[root@web1 ~]# yum -y install rpcbind  #安装rpc协议的包
[root@web1 ~]# yum -y install nfs-utils  #安装nfs服务,提供文件系统
[root@web1 ~]# systemctl start nfs && systemctl start rpcbind  #开启nfs服务和rpc协议
[root@web1 ~]# mkdir /gyl      #创建挂载点
[root@web-1 ~]# mount -t nfs 192.168.56.110:/nfs /gyl/   #挂载
[root@web-1 ~]# df -Th                                  # 查看挂载是否成功

[root@web-1 ~]# ls /gyl/
text
[root@web-1 ~]# umount /qf  #取消挂载

Automatically mount when booting:

[root@web-1 ~]# vim /etc/fstab
192.168.56.110:/nfs     /gyl                    nfs     defaults        0 0
[root@web-1 ~]# mount -a

2. FTP file transfer service

File Transfer Protocol (FTP), based on this protocol, the FTP client and server can share files, upload files, and download files. FTP generates a virtual connection based on the TCP protocol. Users can upload, download, and delete files to the FTP server through the client. The FTP server can be shared by multiple people at the same time.

The FTP service is Client/Server (referred to as C/S) mode. The software that realizes external sharing and transmission of FTP files based on the FTP protocol is called the FTP server source. The client program is based on the FTP protocol and is called the FTP client. FTP The client can upload and download files to the FTP server.

FTP Server

Function: Provide file sharing services to achieve uploading and downloading

port:

On the 21st, establish the default port of tcp connection

No. 20: Transfer data

ftp active mode:

The client opens a port N (>1023) to establish a connection with the server's port 21, and at the same time opens a port N+1 to tell the server that I am monitoring port N+1. After the server receives the request, it uses its own 20 The port is connected to the N+1 port of the client for transmission.

Establish a connection on port 21

Port 20 transmits data

ftp passive mode:

The client opens two ports (1024, 1025) at the same time, one port (1024) establishes a connection with the server's port 21, and requests, brother, I am connected, you can open another port. After the server receives the request, it will randomly open a port (1027) and tell the client that I have opened port 1027. The client uses another port (1025) to connect to the server's (1027) port to transmit data.

vsftp service introduction:

Very Secure FTP service process (Very Secure FTP daemon, Vsftpd), Vsftpd is the most mainstream FTP server program in Unix/Linux distributions. It has the advantages of being small and light, safe and easy to use, stable and efficient, and can meet the needs of cross-department and multi-user use in enterprises. (1000 users) etc.

Start vsftpd configuration