Sunday, February 11, 2018

How to Install Lamp Web server with Amazon EC2 Linux AMI


Introduction

For PHP and MySql  Based application you can configure database two types either by installing it on ec2 instance or by using Amazon RDS webservice.

Amazon provide separate web service for Relational database called RDS, Amazon RDS is most recommended way to create and manage database.

But if you want LAMP configuration so you can also install MySQL, on ec2 linux instance.

The Following procedure help you install  Apache Web Server  with PHP and MySQL Support.

Prerequisite 

Launch Ec2 Instance of Amazon Linux
Allow Following PORT

80 - http
22 - SSH
443 - https

If port are not allowed follow instruction else ignore it.

 Add a security rule to allow inbound HTTP (port 80) connections to your instance if you have not already done so. By default, a launch-wizard-N security group was set up for your instance during initialization. This group contains a single rule to allow SSH connections.

 Open the Amazon EC2 console at https://console.aws.amazon.com/ec2/.
Choose Instances and select your instance.
Under Security groups, choose view inbound rules.
You should see the following list of rules in your default security group:

 Security Groups associated with i-1234567890abcdef0
Ports Protocol Source launch-wizard-N
22 tcp 0.0.0.0/0 ✔
Using the procedures in Adding Rules to a Security Group, add a new inbound security rule with the following values:
Type: HTTP
Protocol: TCP
Port Range: 80
Source: Custom

Install LAMP

Update Your System

  1.  Connect Your instance 
            $ ssh -i "path/to/your/private/pemfile.pem" ec2-user<publicdns or IP>

      2. Insure that, all packages are upto date.
               
          [ec2-user ~]$ sudo yum update -y

Install Apache, PHP and MySQL using YUM command

      Now install Apache Web Server , PHP and MySQL Server at this instance.

           [ec2-user ~]$ sudo yum install -y httpd24 php70 mysql56-server php70-mysqlnd

This command install PHP 7 APACHE 2.4 Web Server and MYSQL

Configure APACHE Web Server


1. Start Web Server

[ec2-user ~]$ sudo service httpd start
Starting httpd: [ OK ]

      2.  chkconfig Allow Apache Web Server start at boot time automatically.

            [ec2-user ~]$ sudo chkconfig httpd on

    3. Verify chkconfig  by running the following command
      [ec2-user ~]$ chkconfig --list httpd

        httpd 0:off 1:off 2:on 3:on 4:on 5:on 6:off
       Here, httpd is on in runlevels 2, 3, 4, and 5 (which is what you want to see).

        4.   Test your web server. In a web browser, type the public DNS address (or the  public IP address) of your instance. 

Apache test page
If you are unable to see the Apache test page, check that the security group you are using contains a rule to allow HTTP (port 80) traffic. 

Modify Permission of /var/www/html folder of Web Server

 Apache Server file which kept in /var/www/html folder this is called root folder and this is owned by root user. Allow the ec2-user account to manipulate files in this directory, you must modify the ownership and permissions of the directory.

[ec2-user ~]$ ls -l /var/www total 16 drwxr-xr-x 2 root root 4096 Jul 12 01:00 cgi-bin drwxr-xr-x 3 root root 4096 Aug 7 00:02 error drwxr-xr-x 2 root root 4096 Jan 6 2012 html drwxr-xr-x 3 root root 4096 Aug 7 00:02 icons drwxr-xr-x 2 root root 4096 Aug 7 21:17 noindex

 Add the ec2-user user to the apache group, to give the apache group ownership of the /var/www directory and assign write permissions to the group.

To set file permissions
  1. Add your user (in this case, ec2-user) to the apache group.
    [ec2-user ~]$ sudo usermod -a -G apache ec2-user
  2. Log out and then log back in again to pick up the new group, and then verify your membership.
    1. Log out (use the exit command or close the terminal window):
      [ec2-user ~]$ exit
    2. To verify your membership in the apache group, reconnect to your instance, and then run the following command:
      [ec2-user ~]$ groups
ec2-user wheel apache
  3. Change the group ownership of /var/www and its contents to he apache group.
    [ec2-user ~]$ sudo chown -R ec2-user:apache /var/www
  4. To add group write permissions and to set the group ID on future subdirectories, change the directory permissions of /var/www and its subdirectories.
    [ec2-user ~]$ sudo chmod 2775 /var/www
[ec2-user ~]$ find /var/www -type d -exec sudo chmod 2775 {} \;
  5. To add group write permissions, recursively change the file permissions of /var/wwwand its subdirectories:
    [ec2-user ~]$ find /var/www -type f -exec sudo chmod 0664 {} \;

To test your LAMP web server
If your server is installed and running, and your file permissions are set correctly, your ec2-user account should be able to create a PHP file in the /var/www/html directory that is available from the internet.
  1. Create a PHP file in the Apache document root.
    [ec2-user ~]$ echo "<?php phpinfo(); ?>" > /var/www/html/phpinfo.php

  2. In a web browser, type the URL of the file that you just created. This URL is the public DNS address of your instance followed by a forward slash and the file name. For example:
    

    

    

    
http://my.public.dns.amazonaws.com/phpinfo.php
    You should see the PHP information page:


To secure the database server
  1. Start the MySQL server.
    

    

    

    

    

    
[ec2-user ~]$ sudo service mysqld start
Initializing MySQL database:  
...

PLEASE REMEMBER TO SET A PASSWORD FOR THE MySQL root USER !
...

Starting mysqld:                                           [  OK  ]
  2. Run mysql_secure_installation.
    

    

    

    

    

    
[ec2-user ~]$ sudo mysql_secure_installation
    1. When prompted, type a password for the root account.
      1. Type the current root password. By default, the root account does not have a password set. Press Enter.
      2. Type Y to set a password, and type a secure password twice. For more information about creating a secure password, Type Y to remove the anonymous user accounts.
    2. Type Y to disable the remote root login.
    3. Type Y to remove the test database.
    4. Type Y to reload the privilege tables and save your changes.
  3. Use chkconfig command to on  MySQL server to start at every boot.
    [ec2-user ~]$ sudo chkconfig mysqld on

 Install phpMyAdmin
phpMyAdmin without SLS/TLS in Apache is not recommended, it is very insecure.


  1. Install the required dependencies.
    [ec2-user ~]$ sudo yum install php70-mbstring.x86_64 php70-zip.x86_64 -y
  2. Restart Apache.
    [ec2-user ~]$ sudo service httpd restart
Stopping httpd:                                            [  OK  ]
Starting httpd:                                            [  OK  ]
  3. Navigate to the Apache document root at /var/www/html.
    [ec2-user ~]$ cd /var/www/html
[ec2-user html]$
  4. Select a source package for the latest phpMyAdmin  https://www.phpmyadmin.net/downloads.  and installed it.
    [ec2-user html]$ wget https://www.phpmyadmin.net/downloads/phpMyAdmin-latest-all-languages.tar.gz
  5. Extract the package and change the name of the resulting directory to something more manageable.
    

    

    

    

    

    
[ec2-user html]$ tar -xvzf phpMyAdmin-latest-all-languages.tar.gz
[ec2-user html]$ mv phpMyAdmin-4.7.5-all-languages phpMyAdmin
  6. In a web browser, type the URL of your phpMyAdmin installation. 
  7. http://my.public.dns.amazonaws.com/phpMyAdmin
    You should see the phpMyAdmin login page:
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)