Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
computers:truenas:famp [25-Oct-2021 10:26] – [Preparing the Jail] Steve Joyntcomputers:truenas:famp [02-Feb-2025 16:14] (current) – external edit 127.0.0.1
Line 16: Line 16:
 <code> <code>
 # Tailor each of these examples for your own situation # Tailor each of these examples for your own situation
-JAIL_NAME="dokuwiki          # name of the jail containing this instance of a FAMP stack+DOMAIN_NAME="wiki.example.com" # the fully qualified domain name of the web site you're going to set up 
 +JAIL_NAME="${DOMAIN_NAME%%.*}" # name of the jail containing this instance of a FAMP stack ("wiki" in this example)
 RELEASE_NAME="12.2-RELEASE"    # which release this jail run (usually best to choose the latest available) RELEASE_NAME="12.2-RELEASE"    # which release this jail run (usually best to choose the latest available)
-DOMAIN_NAME="wiki.example.com" # the name of the web site you're going to set up 
 LAN_IP="192.168.7.35"          # IP address within your normal LAN for this jail LAN_IP="192.168.7.35"          # IP address within your normal LAN for this jail
 GATEWAY_IP="192.168.7.1"       # IP address of your gateway to the internet GATEWAY_IP="192.168.7.1"       # IP address of your gateway to the internet
 DNS_IP="${GATEWAY_IP:?}"       # IP address of your DNS server (usually the same as the internet gateway) DNS_IP="${GATEWAY_IP:?}"       # IP address of your DNS server (usually the same as the internet gateway)
 PHP_VER="74"                   # Which version of PHP you want to install (for PHP v7.4 specify "74") PHP_VER="74"                   # Which version of PHP you want to install (for PHP v7.4 specify "74")
 +
 </code> </code>
  
-3. Delete any old jail with the same name - e.g. if you're setting this same jail up again. Most people do not need to perform this step. Be careful you don't delete a jail that you still want to keep!+3. Delete any old jail with the same name - e.g. if you're setting this same jail up again. Most people do not need to perform this step. **Be careful you don't delete a jail that you still want to keep!**
 <code> <code>
 iocage destroy --force "${JAIL_NAME:?}" iocage destroy --force "${JAIL_NAME:?}"
 +
 </code> </code>
  
Line 44: Line 46:
   defaultrouter6=none \   defaultrouter6=none \
   resolver="nameserver ${DNS_IP:?}"   resolver="nameserver ${DNS_IP:?}"
 +
 </code> </code>
  
Line 50: Line 53:
 jexec "ioc-${JAIL_NAME:?}" /bin/sh -c \ jexec "ioc-${JAIL_NAME:?}" /bin/sh -c \
   "echo \"${LAN_IP:? ${DOMAIN_NAME:? ${DOMAIN_NAME%%.*}\" >> /etc/hosts"   "echo \"${LAN_IP:? ${DOMAIN_NAME:? ${DOMAIN_NAME%%.*}\" >> /etc/hosts"
 +
 </code> </code>
  
 6. Prepare the package manager. 6. Prepare the package manager.
 <code> <code>
-jexec "ioc-${JAIL_NAME:?}" /bin/sh -c +jexec "ioc-${JAIL_NAME:?}"
-  "pkg update"+  pkg update 
 </code> </code>
  
Line 62: Line 67:
 1. Install the Apache web server. 1. Install the Apache web server.
 <code> <code>
-jexec "ioc-${JAIL_NAME:?}" /bin/sh -c +pkg \ 
-  "pkg install apache24"+  -j "ioc-${JAIL_NAME:?}"
 +  -install apache24 
 </code> </code>
  
Line 70: Line 77:
 jexec "ioc-${JAIL_NAME:?}" /bin/sh -c \ jexec "ioc-${JAIL_NAME:?}" /bin/sh -c \
   "echo \"ServerName ${DOMAIN_NAME:?}\" >> /usr/local/etc/apache24/httpd.conf"   "echo \"ServerName ${DOMAIN_NAME:?}\" >> /usr/local/etc/apache24/httpd.conf"
 +
 </code> </code>
  
 3. Enable the web server so it starts when the jail boots up. 3. Enable the web server so it starts when the jail boots up.
 <code> <code>
-jexec "ioc-${JAIL_NAME:?}" /bin/sh -c +jexec "ioc-${JAIL_NAME:?}"
-  "sysrc apache24_enable=YES"+  sysrc apache24_enable=YES 
 </code> </code>
  
 4. Start the web server now. 4. Start the web server now.
 <code> <code>
-jexec "ioc-${JAIL_NAME:?}" /bin/sh -c +jexec "ioc-${JAIL_NAME:?}"
-  "service apache24 start"+  service apache24 start 
 </code> </code>
  
Line 88: Line 98:
 1. Install the MySQL software. 1. Install the MySQL software.
 <code> <code>
-jexec "ioc-${JAIL_NAME:?}" /bin/sh -c +pkg \ 
-  "pkg install  mysql80-client  mysql80-server"+  -j "ioc-${JAIL_NAME:?}"
 +  install mysql80-client mysql80-server 
 </code> </code>
  
 2. Enable the database server so it starts when the jail boots up. 2. Enable the database server so it starts when the jail boots up.
 <code> <code>
-jexec "ioc-${JAIL_NAME:?}" /bin/sh -c +jexec "ioc-${JAIL_NAME:?}"
-  "sysrc mysql_enable=YES"+  sysrc mysql_enable=YES 
 </code> </code>
  
 3. Start the database server now. 3. Start the database server now.
 <code> <code>
-jexec "ioc-${JAIL_NAME:?}" /bin/sh -c +jexec "ioc-${JAIL_NAME:?}"
-  "service mysql-server start"+  service mysql-server start 
 </code> </code>
  
-4. Secure and configure the database server.+4. Generate a random root password for the database server.
 <code> <code>
-jexec "ioc-${JAIL_NAME:?}" /bin/sh -c +echo "M${RANDOM}y${RANDOM}S${RANDOM}Q${RANDOM}L" 
-  "mysql_secure_installation"+ 
 +</code> 
 + 
 +5. Secure and configure the database server. 
 +<code> 
 +jexec "ioc-${JAIL_NAME:?}"
 +  mysql_secure_installation 
 </code> </code>
  
   * Would you like to setup VALIDATE PASSWORD component? **No** (Assuming you are the only user, and you trust yourself)   * Would you like to setup VALIDATE PASSWORD component? **No** (Assuming you are the only user, and you trust yourself)
 +  * Please set the password for root here. (Use the random password generated at step 4).
   * Remove anonymous users? **Yes**   * Remove anonymous users? **Yes**
   * Disallow root login remotely? **Yes**   * Disallow root login remotely? **Yes**
   * Remove test database and access to it? **Yes**   * Remove test database and access to it? **Yes**
   * Reload privilege tables now? **Yes**   * Reload privilege tables now? **Yes**
 +
 +5. Remember the root password for the database.
 +<code>
 +jexec "ioc-${JAIL_NAME:?}" \
 +  mysql_config_editor set --host=localhost --user=root --password
 +
 +</code>
 +Use the random password generated at step 4.
 +
 +====== PHP Software ======
 +
 +1. Install the PHP software.
 +<code>
 +  pkg \
 +    -j "ioc-${JAIL_NAME:?}" \
 +    install \
 +    php${PHP_VER:?                \
 +    php${PHP_VER:?}-bcmath          \
 +    php${PHP_VER:?}-bz2             \
 +    php${PHP_VER:?}-ctype           \
 +    php${PHP_VER:?}-curl            \
 +    php${PHP_VER:?}-dom             \
 +    php${PHP_VER:?}-gd              \
 +    php${PHP_VER:?}-gmp             \
 +    php${PHP_VER:?}-iconv           \
 +    php${PHP_VER:?}-pecl-imagick    \
 +    php${PHP_VER:?}-imap            \
 +    php${PHP_VER:?}-intl            \
 +    php${PHP_VER:?}-json            \
 +    php${PHP_VER:?}-mbstring        \
 +    php${PHP_VER:?}-pdo_mysql       \
 +    php${PHP_VER:?}-opcache         \
 +    php${PHP_VER:?}-posix           \
 +    php${PHP_VER:?}-readline        \
 +    php${PHP_VER:?}-pecl-redis      \
 +    php${PHP_VER:?}-SimpleXML
 +
 +</code>
 +
 +2. Configure PHP
 +<code>
 +jexec "ioc-${JAIL_NAME:?}" \
 +  cp /usr/local/etc/php.ini-production /usr/local/etc/php.ini
 +
 +</code>
 +You may want to amend the configuration manually
 +<code>
 +jexec "ioc-${JAIL_NAME:?}" \
 +  vi /usr/local/etc/php.ini
 +
 +</code>
 +
 +3.Configure Apache to use PHP
 +<code>
 +jexec "ioc-${JAIL_NAME:?}" /bin/sh -c \
 +"cat >| /usr/local/etc/apache24/modules.d/001_mod-php.conf" \
 +<<END
 +<IfModule dir_module>
 +    DirectoryIndex index.php index.html
 +    <FilesMatch "\.php$">
 +        SetHandler application/x-httpd-php
 +    </FilesMatch>
 +    <FilesMatch "\.phps$">
 +        SetHandler application/x-httpd-php-source
 +    </FilesMatch>
 +</IfModule>
 +END
 +
 +</code>
 +
 +4. Ensure the Apache configuration is ok.
 +<code>
 +jexec "ioc-${JAIL_NAME:?}" \
 +  apachectl configtest
 +
 +</code>
 +
 +5. Restart the Apache server with the new configuration.
 +<code>
 +jexec "ioc-${JAIL_NAME:?}" \
 +  apachectl restart
 +
 +</code>
 +
 +====== Create a Database for your Web Site ======
 +
 +1. Make some decisions and define some variables.
 +<code>
 +DB_NAME="${JAIL_NAME:?}"
 +DB_USER="${DB_NAME:?}"
 +DB_PASS="M${RANDOM}y${RANDOM}S${RANDOM}Q${RANDOM}L"
 +set | grep "^DB_"
 +
 +</code>
 +Make a note of this information. You'll need to configure your web site with the same details.
 +
 +2. Create the user login.
 +<code>
 +echo "CREATE USER '${DB_USER:?}'@'localhost' IDENTIFIED BY '${DB_PASS:?}' ;" \
 +| jexec "ioc-${JAIL_NAME:?}" mysql
 +
 +</code>
 +
 +3. Create the database.
 +<code>
 +echo "CREATE DATABASE \`${DB_NAME:?}\` CHARACTER SET utf8 COLLATE utf8_unicode_ci ;" \
 +| jexec "ioc-${JAIL_NAME:?}" mysql
 +
 +</code>
 +
 +4. Allow full access to the database for the user.
 +<code>
 +echo "GRANT ALL ON ${DB_NAME:?}.* TO '${DB_USER:?}'@'localhost' ;" \
 +| jexec "ioc-${JAIL_NAME:?}" mysql
 +
 +</code>
 +
 +====== Install your Web Site files ======
 +
 +Tip: To make it easier to find your Document Root folder in future, it's probably best to create a symbolic link.
 +<code>
 +jexec "ioc-${JAIL_NAME:?}" \
 +  ln -s /usr/local/www/apache24/data /www
 +
 +</code>
 +
 +You can find your Document Root folder here...
 +<code>
 +cd /mnt/*/iocage/jails/${JAIL_NAME:?}/root/www
 +
 +</code>
 +
 +
  • computers/truenas/famp.1635157562.txt.gz
  • Last modified: 02-Feb-2025 16:12
  • (external edit)