jumpserver介紹

成都創(chuàng)新互聯(lián)公司服務項目包括東川網(wǎng)站建設、東川網(wǎng)站制作、東川網(wǎng)頁制作以及東川網(wǎng)絡營銷策劃等。多年來，我們專注于互聯(lián)網(wǎng)行業(yè)，利用自身積累的技術優(yōu)勢、行業(yè)經(jīng)驗、深度合作伙伴關系等，向廣大中小型企業(yè)、政府機構等提供互聯(lián)網(wǎng)行業(yè)的解決方案，東川網(wǎng)站推廣取得了明顯的社會效益與經(jīng)濟效益。目前，我們服務的客戶以成都為中心已經(jīng)輻射到東川省份的部分城市，未來相信會繼續(xù)擴大服務區(qū)域并繼續(xù)獲得客戶的支持與信任！

• 是一款由python編寫開源的跳板機(堡壘機)系統(tǒng)，實現(xiàn)了跳板機應有的功能?；趕sh協(xié)議來管理，客戶端無需安裝agent。 特點： 完全開源，GPL授權 Python編寫，容易再次開發(fā) 實現(xiàn)了跳板機基本功能，認證、授權、審計 集成了Ansible

• 可以通過堡壘機管理百萬臺機器

• 有效的記錄運維人員的操作記錄

官方資料：
https://github.com/jumpserver/jumpserver　

http://www.jumpserver.org/

搭建jumpserver跳板機/堡壘機:

全新安裝的 Centos7 系統(tǒng)

保持服務器網(wǎng)絡暢通

1.?防火墻?Selinux?設置?
echo?-e?"\033[31m?1.?防火墻?Selinux?設置?\033[0m"?\
??&&?if?[?"$(systemctl?status?firewalld?|?grep?running)"?!=?""?];?then?firewall-cmd?--zone=public?--add-port=80/tcp?--permanent;?firewall-cmd?--zone=public?--add-port=2222/tcp?--permanent;?firewall-cmd?--permanent?--add-rich-rule="rule?family="ipv4"?source?address="172.17.0.0/16"?port?protocol="tcp"?port="8080"?accept";?firewall-cmd?--reload;?fi?\
??&&?if?[?"$(getenforce)"?!=?"Disabled"?];?then?setsebool?-P?httpd_can_network_connect?1;?fi

2.?部署環(huán)境
?echo?-e?"\033[31m?2.?部署環(huán)境?\033[0m"?\
??&&?yum?update?-y?\
??&&?ln?-sf?/usr/share/zoneinfo/Asia/Shanghai?/etc/localtime?\
??&&?yum?-y?install?kde-l10n-Chinese?\
??&&?localedef?-c?-f?UTF-8?-i?zh_CN?zh_CN.UTF-8?\
??&&?export?LC_ALL=zh_CN.UTF-8?\
??&&?echo?'LANG="zh_CN.UTF-8"'?>?/etc/locale.conf?\
??&&?yum?-y?install?wget?gcc?epel-release?git?\
??&&?yum?install?-y?yum-utils?device-mapper-persistent-data?lvm2?\
??&&?yum-config-manager?--add-repo?http://mirrors.aliyun.com/docker-ce/linux/centos/docker-ce.repo?\
??&&?yum?makecache?fast?\
??&&?rpm?--import?https://mirrors.aliyun.com/docker-ce/linux/centos/gpg?\
??&&?echo?-e?"[nginx-stable]\nname=nginx?stable?repo\nbaseurl=http://nginx.org/packages/centos/\$releasever/\$basearch/\ngpgcheck=1\nenabled=1\ngpgkey=https://nginx.org/keys/nginx_signing.key"?>?/etc/yum.repos.d/nginx.repo?\
??&&?rpm?--import?https://nginx.org/keys/nginx_signing.key?\
??&&?yum?-y?install?redis?mariadb?mariadb-devel?mariadb-server?MariaDB-shared?nginx?docker-ce?\
??&&?systemctl?enable?redis?mariadb?nginx?docker?\
??&&?systemctl?start?redis?mariadb?\
??&&?yum?-y?install?python36?python36-devel?\
??&&?python3.6?-m?venv?/opt/py3

3.?下載組件
echo?-e?"\033[31m?3.?下載組件?\033[0m"?\
??&&?cd?/opt?\
??&&?if?[?!?-d?"/opt/jumpserver"?];?then?git?clone?--depth=1?https://github.com/jumpserver/jumpserver.git;?fi?\
??&&?if?[?!?-f?"/opt/luna.tar.gz"?];?then?wget?https://demo.jumpserver.org/download/luna/1.5.2/luna.tar.gz;?tar?xf?luna.tar.gz;?chown?-R?root:root?luna;?fi?\
??&&?yum?-y?install?$(cat?/opt/jumpserver/requirements/rpm_requirements.txt)?\
??&&?echo?-e?"[easy_install]\nindex_url?=?https://mirrors.aliyun.com/pypi/simple/"?>?~/.pydistutils.cfg?\
??&&?source?/opt/py3/bin/activate?\
??&&?pip?install?--upgrade?pip?setuptools?-i?https://mirrors.aliyun.com/pypi/simple/?\
??&&?pip?install?-r?/opt/jumpserver/requirements/requirements.txt?-i?https://mirrors.aliyun.com/pypi/simple/?\
??&&?curl?-sSL?https://get.daocloud.io/daotools/set_mirror.sh?|?sh?-s?http://f1361db2.m.daocloud.io?\
??&&?systemctl?restart?docker?\
??&&?docker?pull?jumpserver/jms_koko:1.5.2?\
??&&?docker?pull?jumpserver/jms_guacamole:1.5.2?\
??&&?rm?-rf?/etc/nginx/conf.d/default.conf?\
??&&?wget?-O?/etc/nginx/conf.d/jumpserver.conf?https://demo.jumpserver.org/download/nginx/conf.d/jumpserver.conf

4.?處理配置文件
?echo?-e?"\033[31m?4.?處理配置文件?\033[0m"?\
??&&?source?~/.bashrc?\
??&&?if?[?"$DB_PASSWORD"?=?""?];?then?DB_PASSWORD=`cat?/dev/urandom?|?tr?-dc?A-Za-z0-9?|?head?-c?24`;?fi?\
??&&?if?[?"$SECRET_KEY"?=?""?];?then?SECRET_KEY=`cat?/dev/urandom?|?tr?-dc?A-Za-z0-9?|?head?-c?50`;?echo?"SECRET_KEY=$SECRET_KEY"?>>?~/.bashrc;?fi?\
??&&?if?[?"$BOOTSTRAP_TOKEN"?=?""?];?then?BOOTSTRAP_TOKEN=`cat?/dev/urandom?|?tr?-dc?A-Za-z0-9?|?head?-c?16`;?echo?"BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN"?>>?~/.bashrc;?fi?\
??&&?if?[?"$Server_IP"?=?""?];?then?Server_IP=`ip?addr?|?grep?inet?|?egrep?-v?'(127.0.0.1|inet6|docker)'?|?awk?'{print?$2}'?|?tr?-d?"addr:"?|?head?-n?1?|?cut?-d?/?-f1`;?fi?\
??&&?if?[?!?-d?"/var/lib/mysql/jumpserver"?];?then?mysql?-uroot?-e?"create?database?jumpserver?default?charset?'utf8';grant?all?on?jumpserver.*?to?'jumpserver'@'127.0.0.1'?identified?by?'$DB_PASSWORD';flush?privileges;";?fi?\
??&&?if?[?!?-f?"/opt/jumpserver/config.yml"?];?then?cp?/opt/jumpserver/config_example.yml?/opt/jumpserver/config.yml;?sed?-i?"s/SECRET_KEY:/SECRET_KEY:?$SECRET_KEY/g"??\
??/opt/jumpserver/config.yml;?sed?-i?"s/BOOTSTRAP_TOKEN:/BOOTSTRAP_TOKEN:?$BOOTSTRAP_TOKEN/g"?/opt/jumpserver/config.yml;?sed?-i?"s/#?DEBUG:?true/DEBUG:?false/g"?/opt/jumpserver/config.yml;?sed?-i?"s/#?LOG_LEVEL:?DEBUG/LOG_LEVEL:?ERROR/g"?/opt/jumpserver/config.yml;?sed?-i?"s/#?SESSION_EXPIRE_AT_BROWSER_CLOSE:?false/SESSION_EXPIRE_AT_BROWSER_CLOSE:?true/g"?/opt/jumpserver/config.yml;?sed?-i?"s/DB_PASSWORD:?/DB_PASSWORD:?$DB_PASSWORD/g"?/opt/jumpserver/config.yml;?fi

5.?啟動?Jumpserver
echo?-e?"\033[31m?5.?啟動?Jumpserver?\033[0m"?\
??&&?systemctl?start?nginx?\
??&&?cd?/opt/jumpserver?\
??&&?./jms?start?-d?\
??&&?docker?run?--name?jms_koko?-d?-p?2222:2222?-p?127.0.0.1:5000:5000?-e?CORE_HOST=http://$Server_IP:8080?-e?BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN?--restart=always?jumpserver/jms_koko:1.5.2?\
??&&?docker?run?--name?jms_guacamole?-d?-p?127.0.0.1:8081:8081?-e?JUMPSERVER_SERVER=http://$Server_IP:8080?-e?BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN?--restart=always?jumpserver/jms_guacamole:1.5.2?\
??&&?echo?-e?"\033[31m?你的數(shù)據(jù)庫密碼是?$DB_PASSWORD?\033[0m"?\
??&&?echo?-e?"\033[31m?你的SECRET_KEY是?$SECRET_KEY?\033[0m"?\
??&&?echo?-e?"\033[31m?你的BOOTSTRAP_TOKEN是?$BOOTSTRAP_TOKEN?\033[0m"?\
??&&?echo?-e?"\033[31m?你的服務器IP是?$Server_IP?\033[0m"?\
??&&?echo?-e?"\033[31m?請打開瀏覽器訪問?http://$Server_IP?用戶名:admin?密碼:admin?\033[0m"

6.?配置自啟?
?echo?-e?"\033[31m?6.?配置自啟?\033[0m"?\
??&&?if?[?!?-f?"/usr/lib/systemd/system/jms.service"?];?then?wget?-O?/usr/lib/systemd/system/jms.service?https://demo.jumpserver.org/download/shell/centos/jms.service;?chmod?755?/usr/lib/systemd/system/jms.service;?systemctl?enable?jms;?fi

到此安裝結束.如圖所示,訪問測試

另外有需要云服務器可以了解下創(chuàng)新互聯(lián)cdcxhl.cn，海內(nèi)外云服務器15元起步，三天無理由+7*72小時售后在線，公司持有idc許可證，提供“云服務器、裸金屬服務器、高防服務器、香港服務器、美國服務器、虛擬主機、免備案服務器”等云主機租用服務以及企業(yè)上云的綜合解決方案，具有“安全穩(wěn)定、簡單易用、服務可用性高、性價比高”等特點與優(yōu)勢，專為企業(yè)上云打造定制，能夠滿足用戶豐富、多元化的應用場景需求。

文章標題：jumpserver安裝(一)-創(chuàng)新互聯(lián)
文章鏈接：http://www.rwnh.cn/article44/cesgee.html

成都網(wǎng)站建設公司_創(chuàng)新互聯(lián)，為您提供虛擬主機、域名注冊、電子商務、網(wǎng)站營銷、營銷型網(wǎng)站建設、動態(tài)網(wǎng)站

廣告

聲明：本網(wǎng)站發(fā)布的內(nèi)容（圖片、視頻和文字）以用戶投稿、用戶轉(zhuǎn)載內(nèi)容為主，如果涉及侵權請盡快告知，我們將會在第一時間刪除。文章觀點不代表本網(wǎng)站立場，如需處理請聯(lián)系客服。電話：028-86922220；郵箱：631063699@qq.com。內(nèi)容未經(jīng)允許不得轉(zhuǎn)載，或轉(zhuǎn)載時需注明來源： 創(chuàng)新互聯(lián)