day040-搭建lnmp服务与数据库迁移

发布于:2025-06-24 ⋅ 阅读:(11) ⋅ 点赞:(0)

文章目录

0. 老男孩思想-企业会如何对待价值观一般的员工?

在这里插入图片描述

  • 不会刻意培养价值观差的人
  • 重要的业务不会安排给价值观差的做
  • 重要的岗位不会安排给价值观差的担任
  • 企业会想着如何清理/替代价值观差的员工

1. location 规则优先级

  1. 精确匹配:location =
  2. 非正则匹配:location ^~
  3. 正则匹配:location ~或location ~*
  4. 路径匹配:location /URI
  5. 默认匹配:location /

2. 动态网站架构

2.1 动态、静态网站

网站架构 特点 说明
动态资源 服务端处理与加工,设计动态语言
php、java、Python、golang、rust……		 一般需要数据库,服务端处理,将结果响应给用户;
网站处理较慢
静态资源 服务端发送响应,客户端解析(html、css、js)
前端		 客户端解析,服务端只负责发送;网站处理更快
混合 静态(前端开发),动态(后端开发)
全栈开发

2.2 常见动态网站架构

常见动态网站架构 说明
lnmp Linux系统、nginx、mysql、php环境
lnmt Linux系统、nginx、mysql、tomcat(java)
lnm? Linux系统、nginx、mysql、其他语言(python、golang)

2.3 LNMP架构

在这里插入图片描述

3. 部署LNMP环境

3.1 数据库mariadb

3.1.1 安装mariadb

# 查看是否有mysql的安装包
[root@web01 ~]# rpm -qa |grep -E 'mysql|mariadb'
mariadb-connector-c-3.0.6-9.ky10.x86_64
# 安装mariadb-server
[root@web01 ~]# yum install -y mariadb-server
上次元数据过期检查:1:15:23 前,执行于 2025年06月23日 星期一 18时21分42秒。
软件包 mariadb-server-3:10.3.39-1.p01.ky10.x86_64 已安装。
依赖关系解决。
无需任何处理。
完毕!
# 设置开机自启动
[root@web01 ~]# systemctl enable --now mariadb-server
[root@web01 ~]# systemctl is-active mariadb.service 
active
[root@web01 ~]# systemctl is-enabled mariadb.service 
enabled
# 检查
[root@web01 ~]# ss -lntup |grep 3306
tcp     LISTEN   0        80                     *:3306                *:*       users:(("mysqld",pid=2496,fd=21))                            
[root@web01 ~]# ps -ef |grep [m]ysql
mysql       2496       1  0 17:37 ?        00:00:03 /usr/libexec/mysqld

3.1.2 安全配置

  • 仅在初始安装时执行即可
  • 命令:mysql_secure_installation
# 初始化数据库安全设置
[root@web01 ~]# mysql_secure_installation 

NOTE: RUNNING ALL PARTS OF THIS SCRIPT IS RECOMMENDED FOR ALL MariaDB
      SERVERS IN PRODUCTION USE!  PLEASE READ EACH STEP CAREFULLY!

In order to log into MariaDB to secure it, we'll need the current
password for the root user.  If you've just installed MariaDB, and
you haven't set the root password yet, the password will be blank,
so you should just press enter here.

Enter current password for root (enter for none):   # 初始root密码为空,直接回车
OK, successfully used password, moving on...

Setting the root password ensures that nobody can log into the MariaDB
root user without the proper authorisation.

Set root password? [Y/n] Y # 设置root用户密码
New password: 
Re-enter new password: 
Password updated successfully!
Reloading privilege tables..
 ... Success!


By default, a MariaDB installation has an anonymous user, allowing anyone
to log into MariaDB without having to have a user account created for
them.  This is intended only for testing, and to make the installation
go a bit smoother.  You should remove them before moving into a
production environment.

Remove anonymous users? [Y/n] Y # 移除匿名用户
 ... Success!

Normally, root should only be allowed to connect from 'localhost'.  This
ensures that someone cannot guess at the root password from the network.

Disallow root login remotely? [Y/n] Y # 禁用root远程登录
 ... Success!

By default, MariaDB comes with a database named 'test' that anyone can
access.  This is also intended only for testing, and should be removed
before moving into a production environment.

Remove test database and access to it? [Y/n] Y # 移除测试数据库
 - Dropping test database...
 ... Success!
 - Removing privileges on test database...
 ... Success!

Reloading the privilege tables will ensure that all changes made so far
will take effect immediately.

Reload privilege tables now? [Y/n] Y # 重新加载权限信息表
 ... Success!

Cleaning up...

All done!  If you've completed all of the above steps, your MariaDB
installation should now be secure.

Thanks for using MariaDB!

3.1.3 mariadb基础命令

  • 进入数据库
[root@web01 ~]# mysql -uroot -p1
……
[root@web01 ~]# mysql -uroot -p
Enter password:  # 输入密码
  • 显示存在的数据库
MariaDB [(none)]> show databases;
+--------------------+
| Database           |
+--------------------+
| information_schema |
| mysql              |
| performance_schema |
+--------------------+
3 rows in set (0.001 sec)
  • 查看某个数据库中的表
MariaDB [(none)]> show tables from mysql;
+---------------------------+
| Tables_in_mysql           |
+---------------------------+
| column_stats              |
| columns_priv              |
| db                        |
| event                     |
| func                      |
| general_log               |
| gtid_slave_pos            |
| help_category             |
| help_keyword              |
| help_relation             |
| help_topic                |
| host                      |
| index_stats               |
| innodb_index_stats        |
| innodb_table_stats        |
| plugin                    |
| proc                      |
| procs_priv                |
| proxies_priv              |
| roles_mapping             |
| servers                   |
| slow_log                  |
| table_stats               |
| tables_priv               |
| time_zone                 |
| time_zone_leap_second     |
| time_zone_name            |
| time_zone_transition      |
| time_zone_transition_type |
| transaction_registry      |
| user                      |
+---------------------------+
31 rows in set (0.000 sec)
  • 查看用户信息
    • user:用户名
    • host:允许该用户登录的节点(网段)
MariaDB [(none)]> select user,host from mysql.user;
+------+-----------+
| user | host      |
+------+-----------+
| root | 127.0.0.1 |
| root | ::1       |
| root | localhost |
+------+-----------+
3 rows in set (0.000 sec)
  • 查看当前用户信息
    • 用户名@登录的节点
MariaDB [(none)]> select user();
+----------------+
| user()         |
+----------------+
| root@localhost |
+----------------+
1 row in set (0.000 sec)

3.1.4 添加用户及设置权限

  • 命令:grant all on blog.* to 'blog'@'localhost' identified by '1';

在这里插入图片描述

  • 配置远程登录权限
MariaDB [(none)]> grant all on blog.* to 'blog'@'172.16.1.%' identified by '1';
Query OK, 0 rows affected (0.000 sec)

MariaDB [(none)]> select user,host from mysql.user;
+------+------------+
| user | host       |
+------+------------+
| root | 127.0.0.1  |
| blog | 172.16.1.% |
| root | ::1        |
| blog | localhost  |
| root | localhost  |
+------+------------+
5 rows in set (0.000 sec)
  • 检查
# 远程登录:-h,指定mysql服务器地址
[root@db01 ~]# mysql -ublog -p1 -h 172.16.1.7
……
MariaDB [(none)]> select  user();
+-----------+
| user()    |
+-----------+
| blog@db01 |
+-----------+
1 row in set (0.001 sec)
MariaDB [(none)]> show databases;
+--------------------+
| Database           |
+--------------------+
| blog               |
| information_schema |
+--------------------+
2 rows in set (0.001 sec)

3.1.5 删除用户

  • 格式:DROP USER [IF EXISTS] '用户名'@'主机';
MariaDB [(none)]> select user,host from mysql.user;
+------+------------+
| user | host       |
+------+------------+
| root | 127.0.0.1  |
| blog | 172.16.1.% |
| root | ::1        |
| blog | localhost  |
| root | localhost  |
+------+------------+
5 rows in set (0.000 sec)

# 禁用blog远程登录
MariaDB [(none)]> drop user 'blog'@'172.16.1.%';
Query OK, 0 rows affected (0.000 sec)
MariaDB [(none)]> select user,host from mysql.user;
+------+-----------+
| user | host      |
+------+-----------+
| root | 127.0.0.1 |
| root | ::1       |
| blog | localhost |
| root | localhost |
+------+-----------+
4 rows in set (0.000 sec)
  • 删除或更改用户信息后,要刷新用户权限信息
  • 命令:flush privileges;
MariaDB [(none)]> flush privileges;
Query OK, 0 rows affected (0.000 sec)

3.2 php

3.2.1 安装php

yum -y install php php-bcmath php-cli php-common php-devel php-embedded php-fpm php-gd php-intl php-mbstring php-mysqlnd php-opcache php-pdo   php-process php-xml php-json
  • 设置开启自启动
[root@web01 ~]# systemctl enable --now php-fpm

3.2.2 修改php配置文件

  • 修改php子配置文件:/etc/php-fpm.d/www.conf
  • 修改后参数:
[root@web01 ~]# grep -En '^(user|group|listen) ' /etc/php-fpm.d/www.conf
24:user = nginx
26:group = nginx
38:listen = 127.0.0.1:9000

3.2.3 检查语法并重启

[root@web01 ~]# php-fpm -t
[23-Jun-2025 20:42:42] NOTICE: configuration file /etc/php-fpm.conf test is successful
[root@web01 ~]# systemctl reload php-fpm.service

3.3 nginx配置

3.3.1 添加站点配置文件

[root@web01 ~]# cat /etc/nginx/conf.d/blog.oldboy.cn.conf 
server {
	listen 80;
	server_name blog.oldboy.cn;
	root /app/code/blog;
	error_log /var/log/nginx/blog.oldboy.cn-error.log notice;
	access_log /var/log/nginx/blog.oldboy.cn-access.log main;

	location / {
		index index.php;
	}
	location ~ \.php$ {
		fastcgi_pass 127.0.0.1:9000;
		fastcgi_index index.php;
		fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
		include fastcgi_params;
	}
}

3.3.2 在站点跟目录添加php文件

[root@web01 /app/code/blog]# ll chk_*
-rw-r--r-- 1 nginx nginx 274  623 15:16 chk_db.php
-rw-r--r-- 1 nginx nginx   7  623 15:11 chk_ngx.html
-rw-r--r-- 1 nginx nginx  20  623 15:12 chk_ngx.php
[root@web01 /app/code/blog]# cat chk_db.php 
<?php
//数据库地址
$db_host='localhost'
$db_user='blog'
$db_pass='1'
//数据库名字
$db_name='blog'

$link_id=mysqli_connect($db_host,$db_user,$db_pass,$db_name);
if($link_id){
	echo "mysql successflu by oldboy lidao996!\n";
}else{
	echo "connection failed!\n"
}
?>
[root@web01 /app/code/blog]# cat chk_ngx.html 
oldboy
[root@web01 /app/code/blog]# cat chk_ngx.php 
<?php
phpinfo();
?>

3.4 部署代码与设置权限

wget https://cn.wordpress.org/latest-zh_CN.zip
unzip *zh_CN.zip
mv wordpress/* /app/code/blog/
chown -R nginx.nginx /app/code/blog/
ll -d /app/code/blog/

3.5 配置本地hosts解析

在这里插入图片描述

4. 数据库迁移

4.1 备份旧数据库

  • mysqldump:mysql备份工具
    • –all-databases/-A:备份所有数据库
  • 管道+gzip:实时压缩大型数据
[root@web01 ~]# mysqldump -uroot -p1 --all-databases |gzip >web-db-all.sql.gz
[root@web01 ~]# ll web-db-all.sql.gz 
-rw-r--r-- 1 root root 442243  623 20:57 web-db-all.sql.gz

4.2 导入备份数据

  • 先将备份文件传输到目标节点
scp web-db-all.ssql.gz root@db01:~
  • 将备份数据导入数据库
  • zcat:直接查看或处理 gzip 压缩文件(.gz)内容
zcat web-db-all.sql.gz |mysql -uroot -p
  • 进入数据库,更新用户权限表
flush privileges;

4.3 修改代码连接的数据库

# wordprass-数据库配置文件
/wp-config.php

[root@web01 /app/code/blog]# grep DB_ wp-config.php
define( 'DB_NAME','blog' );
define( 'DB_USER','blog' );
define( 'DB_PASSWORD','blog' );
define( 'DB_HOST','172.16.1.51' ); # 修改成目标数据服务器
define( 'DB_CHARSET','utf8mb4' );
define( 'DB_COLLATE','' )

5. 思维导图

https://kdocs.cn/join/gpuxq6r?f=101\r\n邀请你加入共享群「老男孩教育Linux运维99期-孙克旭」一起进行文档协作

网站公告

今日签到

点亮在社区的每一天
去签到

热门文章

最新发布