Distribution de travail : Ubuntu 21.10
util01@station66:~$ ssh ubuntu@146.59.154.144
...
ubuntu@146.59.154.144's password:
...
ubuntu@vps-c49a29aa:~$ ubuntu@vps-c49a29aa:~$ sudo apt update ubuntu@vps-c49a29aa:~$ sudo apt --fix-broken installubuntu@vps-c49a29aa:~$ sudo apt upgradeubuntu@vps-c49a29aa:~$ sudo apt install vim htop links screenubuntu@vps-c49a29aa:~$ sudo rebootLien :
https://snapcraft.io/docs/installing-snap-on-ubuntu
ubuntu@vps-c49a29aa:~$ sudo apt install snapdDéconnecter et se reconnecter.
Installation du core :
ubuntu@vps-c49a29aa:~$ sudo snap install core
core 16-2.54.3 from Canonical✓ installedubuntu@vps-c49a29aa:~$ sudo snap install hello-world
hello-world 6.4 from Canonical✓ installed
ubuntu@vps-c49a29aa:~$ ubuntu@vps-c49a29aa:~$ hello-world
Hello World!Liens :
https://linuxcontainers.org/lxd/getting-started-cli/
https://www.tecmint.com/install-lxc-ubuntu-ubuntu/
https://www.linode.com/docs/guides/beginners-guide-to-lxd/
ubuntu@vps-c49a29aa:~$ sudo snap install lxd --channel=4.0/stable
lxd (4.0/stable) 4.0.8 from Canonical✓ installedubuntu@vps-c49a29aa:~$ lxd --version
4.23ubuntu@vps-c49a29aa:~$ sudo lxd init
Would you like to use LXD clustering? (yes/no) [default=no]: no
Do you want to configure a new storage pool? (yes/no) [default=yes]: yes
Name of the new storage pool [default=default]: ilard_pool
Name of the storage backend to use (dir, lvm, zfs, ceph, btrfs) [default=zfs]: zfs
Create a new ZFS pool? (yes/no) [default=yes]: yes
Would you like to use an existing empty block device (e.g. a disk or partition)? (yes/no) [default=no]: no
Size in GB of the new loop device (1GB minimum) [default=30GB]: 30GB
Would you like to connect to a MAAS server? (yes/no) [default=no]: no
Would you like to create a new local network bridge? (yes/no) [default=yes]: yes
What should the new bridge be called? [default=lxdbr0]:
What IPv4 address should be used? (CIDR subnet notation, “auto” or “none”) [default=auto]: auto
What IPv6 address should be used? (CIDR subnet notation, “auto” or “none”) [default=auto]: auto
Would you like the LXD server to be available over the network? (yes/no) [default=no]: no
Would you like stale cached images to be updated automatically? (yes/no) [default=yes]: yes
Would you like a YAML "lxd init" preseed to be printed? (yes/no) [default=no]: noubuntu@vps-c49a29aa:~$ sudo lxc profile show default
To start your first container, try: lxc launch ubuntu:20.04
Or for a virtual machine: lxc launch ubuntu:20.04 --vm
config: {}
description: Default LXD profile
devices:
eth0:
name: eth0
network: lxdbr0
type: nic
root:
path: /
pool: ilard_pool
type: disk
name: default
used_by: []ubuntu@vps-c49a29aa:~$ sudo lxc storage list
+------------+--------+-----------------------------------------------+-------------+---------+
| NAME | DRIVER | SOURCE | DESCRIPTION | USED BY |
+------------+--------+-----------------------------------------------+-------------+---------+
| ilard_pool | zfs | /var/snap/lxd/common/lxd/disks/ilard_pool.img | | 1 |
+------------+--------+-----------------------------------------------+-------------+---------+ubuntu@vps-c49a29aa:~$ sudo lxc storage show ilard_pool
config:
size: 30GB
source: /var/snap/lxd/common/lxd/disks/ilard_pool.img
zfs.pool_name: ilard_pool
description: ""
name: ilard_pool
driver: zfs
used_by:
- /1.0/profiles/default
status: Created
locations:
- noneubuntu@vps-c49a29aa:~$ sudo lxc network show lxdbr0
config:
ipv4.address: 10.168.240.1/24
ipv4.nat: "true"
ipv6.address: fd42:9eda:b555:ed18::1/64
ipv6.nat: "true"
description: ""
name: lxdbr0
type: bridge
used_by:
- /1.0/profiles/default
managed: true
status: Created
locations:
- noneLiens :
https://lxdware.com/simple-nginx-reverse-proxy-in-lxd/
https://www.linode.com/docs/guides/beginners-guide-to-lxd-reverse-proxy/
ubuntu@vps-c49a29aa:~$ sudo lxc launch ubuntu:20.04 container1
Creating container1
Starting container1ubuntu@vps-c49a29aa:~$ sudo lxc launch ubuntu:20.04 container2
Creating container2
Starting container2ubuntu@vps-c49a29aa:~$ sudo lxc launch ubuntu:20.04 proxy
Creating nginx-proxy
Starting nginx-proxy ubuntu@vps-c49a29aa:~$ sudo lxc list
+------------+---------+-----------------------+-----------------------------------------------+-----------+-----------+
| NAME | STATE | IPV4 | IPV6 | TYPE | SNAPSHOTS |
+------------+---------+-----------------------+-----------------------------------------------+-----------+-----------+
| container1 | RUNNING | 10.168.240.200 (eth0) | fd42:9eda:b555:ed18:216:3eff:fe3c:6b14 (eth0) | CONTAINER | 0 |
+------------+---------+-----------------------+-----------------------------------------------+-----------+-----------+
| container2 | RUNNING | 10.168.240.198 (eth0) | fd42:9eda:b555:ed18:216:3eff:feff:cd0a (eth0) | CONTAINER | 0 |
+------------+---------+-----------------------+-----------------------------------------------+-----------+-----------+
| proxy | RUNNING | 10.168.240.247 (eth0) | fd42:9eda:b555:ed18:216:3eff:fe43:c198 (eth0) | CONTAINER | 0 |
+------------+---------+-----------------------+-----------------------------------------------+-----------+-----------+
ubuntu@vps-c49a29aa:~$ lxc exec container1 -- sudo --user ubuntu --login
To start your first container, try: lxc launch ubuntu:20.04
Or for a virtual machine: lxc launch ubuntu:20.04 --vm
To run a command as administrator (user "root"), use "sudo <command>".
See "man sudo_root" for details.
ubuntu@container1:~$ ubuntu@container1:~$ sudo apt update && sudo apt upgradeubuntu@container1:~$ sudo apt install -y apache2Ouvrir :
/etc/apache2/conf-available/remoteip.confAjouter :
RemoteIPHeader X-Real-IP
RemoteIPTrustedProxy 10.168.240.247 fd42:9eda:b555:ed18:216:3eff:fe43:c198L'adresse ipv4 et l'adresse MAC sont ceux du proxy.
ubuntu@container1:~$ sudo a2enmod remoteip
Enabling module remoteip.
To activate the new configuration, you need to run:
systemctl restart apache2ubuntu@container1:~$ sudo a2enconf remoteip
Enabling conf remoteip.
To activate the new configuration, you need to run:
systemctl reload apache2Ouvrir :
/var/www/html/index.htmlChercher :
<div id="about"></div>
It works!
</div>Remplacer par :
<div id="about"></div>
Container Apache
</div>ubuntu@container1:~$ sudo systemctl reload apache2ubuntu@container1:~$ exit
logout
ubuntu@vps-c49a29aa:~$ ubuntu@vps-c49a29aa:~$ lxc exec container2 -- sudo --user ubuntu --login
To run a command as administrator (user "root"), use "sudo <command>".
See "man sudo_root" for details.
ubuntu@container2:~$ ubuntu@container1:~$ sudo apt update
ubuntu@container1:~$ sudo apt upgrade
ubuntu@container1:~$ sudo apt install -y vim screen htop links
ubuntu@container1:~$ sudo apt install -y nginx Ouvrir :
/etc/nginx/conf.d/real-ip.confAjouter :
real_ip_header X-Real-IP;
set_real_ip_from proxy.lxd;Ouvrir :
/var/www/html/index.nginx-debian.htmlChercher :
<h1>Welcome to nginx!</h1>Remplacer par :
<h1>Container2 Nginx</h1>ubuntu@container2:~$ sudo systemctl reload nginxubuntu@container2:~$ exit
ubuntu@vps-c49a29aa:~$ubuntu@vps-c49a29aa:~$ sudo lxc config device add proxy myport80 proxy listen=tcp:0.0.0.0:80 connect=tcp:127.0.0.1:80 proxy_protocol=true
Device myport80 added to proxyubuntu@vps-c49a29aa:~$ sudo lxc config device add proxy myport443 proxy listen=tcp:0.0.0.0:443 connect=tcp:127.0.0.1:443 proxy_protocol=true
Device myport443 added to proxyubuntu@vps-c49a29aa:~$ lxc exec proxy -- sudo --user ubuntu --login
To run a command as administrator (user "root"), use "sudo <command>".
See "man sudo_root" for details.
ubuntu@proxy:~$ ubuntu@proxy:~$ sudo apt update && sudo apt upgradeubuntu@proxy:~$ sudo apt install -y nginxubuntu@proxy:~$ logout
ubuntu@vps-c49a29aa:~$ ubuntu@vps-c49a29aa:~$ lxc exec proxy -- sudo --user ubuntu --login
ubuntu@proxy:~$ Ouvrir :
/etc/nginx/sites-available/container1.hacklab.runAjouter :
server {
listen 80 proxy_protocol;
listen [::]:80 proxy_protocol;
server_name container1.hacklab.run;
location / {
include /etc/nginx/proxy_params;
proxy_pass http://container1.lxd;
}
real_ip_header proxy_protocol;
set_real_ip_from 127.0.0.1;
}ubuntu@vps-c49a29aa:~$ sudo ln -s /etc/nginx/sites-available/container1.hacklab.run /etc/nginx/sites-enabled/ubuntu@proxy:~$ sudo systemctl reload nginxubuntu@proxy:~$ logout
ubuntu@vps-c49a29aa:~$ Ouvrir :
/etc/hostsAjouter :
146.59.154.144 container1.hacklab.runutil01@station66:~$ links container1.hacklab.run ubuntu@vps-c49a29aa:~$ sudo lxc exec proxy -- sudo --user ubuntu --login
ubuntu@proxy:~$ Ouvrir :
/etc/nginx/sites-available/container2.hacklab.runAjouter :
server {
listen 80 proxy_protocol;
listen [::]:80 proxy_protocol;
server_name container2.hacklab.run;
location / {
include /etc/nginx/proxy_params;
proxy_pass http://container2.lxd;
}
real_ip_header proxy_protocol;
set_real_ip_from 127.0.0.1;
}ubuntu@vps-c49a29aa:~$ sudo ln -s /etc/nginx/sites-available/container2.hacklab.run /etc/nginx/sites-enabled/ubuntu@vps-c49a29aa:~$ sudo systemctl reload nginxubuntu@proxy:~$ logout
ubuntu@vps-c49a29aa:~$ Ouvrir :
/etc/hostsAjouter :
146.59.154.144 container2.hacklab.runutil01@station66:~$ links container2.hacklab.run