Versions Compared

Old Version 13

changes.mady.by.user The Force

Saved on

compared with

New Version 14

changes.mady.by.user The Force

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Published by Scroll Versions from this space and version 7.0.0

...

 

Code Block
languagepowershell
yum update

 

2) Install Required Packages

PHP

All installations Installations of ProVision require at least PHP 5.6 7.x and newer require  PHP 7.0 (and related extensions). CentOS 6 comes with PHP 5.3 by default. You can either add a repository which provides PHP 57.6 0 or install PHP manually.

The Webtatic and Remi repos both have versions of PHP which are newer than those in the official repos. For this example, we'll be using Webtatic

Add the repository:

Code Block
languagebash
rpm -Uvh https://mirror.webtatic.com/yum/el6/latest.rpm

Update:

 

Code Block
languagepowershell
yum update

 

Install:

Expand

PHP5 PHP 7.0 / Apache2 / extensions

  • httpd 
  • php56w php70w 
  • php56wphp70w-opcache 
  • php56wphp70w-mysqlnd 
  • php56wphp70w-pdo 
  • php56wphp70w-ldap 
  • php56wphp70w-pecl-memcache 
  • php56wphp70w-bcmath 
  • php56wphp70w-devel 
  • php56wphp70w-pear 
  • php56wphp70w-cli

Development tools for pecl / additional system packages:

  • curl 
  • openssl 
  • memcached 
  • mod_ssl

 


Code Block
languagebash
yum install httpd php56wphp70w php56wphp70w-opcache php56wphp70w-mysqlnd php56wphp70w-pdo php56wphp70w-ldap php56wphp70w-pecl-memcache php56wphp70w-bcmath php56wphp70w-devel php56wphp70w-pear php56wphp70w-cli curl openssl memcached mod_ssl

MySQL

Install MySQL 5.7 to use a local database.

MySQL is included with most CentOS installs, check for it with:

Code Block
languagepowershell
yum list installed | grep mysql

The default MySqL version included with most CentOS installs will need to be upgraded to the latest version:

Code Block
languagebash
rpm -Uvh https://mirror.webtatic.com/yum/el6/latest.rpm

If you have an existing installation, you can replace it with:

Code Block
languagebash
yum install mysql.`uname -i` yum-plugin-replace
yum replace mysql --replace-with mysql56wmysql57w

For a fresh install:

Code Block
languagebash
   yum install mysql56wmysql57w mysql56wmysql57w-server

Then, re-start and configure.

Code Block
languagebash
   service mysqld start      chkconfig mysqld on

 

 If a new install, set the MySQL root password:

...

 

Code Block
languagebash
sed -i 's/AllowOverride None/AllowOverride All/g' /etc/httpd/conf/httpd.conf

 

Start Apache and make it to start on boot 

...

4) Optional configurations:

Configure SELinux

Warning
titleREAD THIS BEFORE YOU USE SELINUX

SELinux is a very powerful method of securing the CentOS environment, but it is not "turn key" and requires expertise to configure it correctly. If you do not know how to configure SELinux, please do not use it. A badly configured SELinux install will not work well and result in frustration. If you have any questions or concerns about this - please contact 6connect Support at support@6connect.com.


Note
titleRE-IP WARNING

Please remember - if you change the IP address of the your server, then you will need to update SELinux functions accordingly


Most CentOS install have SELinux enabled by default.  One of its protections is to not allow   httpd daemon to make network connections, we need to disable this for license checks.

   To view the SELinux configuration for http:

 

Code Block
languagebash
/usr/sbin/getsebool -a | grep httpd

 

   To turn protection off for the httpd daemon for creating network connections:

 

Code Block
languagebash
   /usr/sbin/setsebool -P httpd_can_network_connect 1

 

Configure IPTables

IPTables is enabled by default on CentOS.  Add a new rule to allow 443 from anywhere.  Make sure that this rule is in the chain BEFORE any blanket reject rule:

 
Expand
titleIf you are going to run iptables, click here

To list all current IPTable rules:

 

Code Block
languagebash
/etc/rc.d/init.d/iptables status

To add a rule for 443:

 

Code Block
languagebash
/sbin/iptables  RH-Firewall-1-INPUT -I 5 -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT

 

 

Note
titleNote
    The -I 5 is what adds the rule to the 5th chain position.  You might need to change this depending on existing rules.  Look at what rules are there before running.

To save the new config:

 

Code Block
languagebash
/etc/rc.d/init.d/iptables save

OR (some versions of centOS have different iptables names, so the above won't work)

   
Code Block
languagebash
vi /etc/sysconfig/iptables

With the file open for editing, add:

Code Block
languagepowershell
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 443 -j ACCEPT

Once complete - restart the iptables service:

Code Block
languagepowershell
/etc/init.d/iptables restart


Info
Customers can alter this post install to allow only their IP space, plus the 6connect management space.


...

1. Remove the current contents in the ProVision web folder (currently the www root) and after extract the archive contents (where 57.x.x is the version number for the build) :

Code Block
languagebash
 tar -xf productionBuild-57.x.x-php5php7.60.tar -C /var/www/html

2. Change the permissions to be the web user permissions

...