Skip to content
CUBDocumentations

Installation serveur WEB

Mise à jour de Packet Tracer

Section titled “Mise à jour de Packet Tracer”

Configuration des serveurs

Section titled “Configuration des serveurs”

Mise à jour du système et installation des paquets nécessaires

Section titled “Mise à jour du système et installation des paquets nécessaires”
Terminal window
sudo apt update && sudo apt upgrade -y
sudo apt install zip apache2 php mariadb-server php-mysql libapache2-mod-php

Configuration du VirtualHost WordPress

Section titled “Configuration du VirtualHost WordPress”
Terminal window
sudoedit /etc/apache2/sites-available/wp.conf
<VirtualHost  *:80>
    ServerName www1.californie.cub.sioplc.fr
    DocumentRoot /var/www/wp
    DirectoryIndex index.php
    <Directory "/var/www/wp">
          Options -Indexes
          AllowOverride All
          Require all granted
    </Directory>
    ErrorLog ${APACHE_LOG_DIR}/error-wp.log
    LogLevel warn;
    CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>

Désactivation du site par défaut et activation de WordPress

Section titled “Désactivation du site par défaut et activation de WordPress”
Terminal window
sudo a2dissite 000-default.conf
sudo a2ensite wp.conf
sudo systemctl reload apache2.service

Configuration DNS (Bind9)

Section titled “Configuration DNS (Bind9)”

Ajout des enregistrements A et CNAME

Section titled “Ajout des enregistrements A et CNAME”
Terminal window
sudo nano /var/cache/bind/db.californie.cub.sioplc.fr
@   IN  SOA ns0.californie.cub.sioplc.fr. admin.californie.cub.sioplc.fr. (
    2025111301  ; Serial
        1D
        1H
        1W
        3H )


californie.cub.sioplc.fr.  IN  NS  ns0.californie.cub.sioplc.fr.
californie.cub.sioplc.fr.  IN  NS  ns1.californie.cub.sioplc.fr.


ns0     IN  A   192.168.3.10
ns1     IN  A   192.168.3.11
www0    IN  A   192.36.3.20
www1    IN  A   192.36.3.21


scanner0 IN  CNAME  www0
scanner1 IN  CNAME  www1

Redémarrage du service DNS

Section titled “Redémarrage du service DNS”
Terminal window
sudo systemctl restart bind9

Vérification

Section titled “Vérification”
Terminal window
dig scanner0.californie.cub.sioplc.fr

Installation de WordPress

Section titled “Installation de WordPress”

Téléchargement

Section titled “Téléchargement”
Terminal window
cd /tmp
wget https://wordpress.org/latest.zip

Création de la base de données

Section titled “Création de la base de données”
Terminal window
sudo mysql
CREATE DATABASE wp_www0_californie_cub;
CREATE USER 'etudiant'@'localhost' IDENTIFIED BY 'etudiant_007';
GRANT ALL PRIVILEGES ON wp_www0_californie_cub.* TO etudiant@localhost;
FLUSH PRIVILEGES;

Déploiement des fichiers

Section titled “Déploiement des fichiers”
Terminal window
sudo unzip latest.zip -d /var/www/wp
cd /var/www/wp
sudo mv wordpress/* /var/www/wp/
sudo rm wordpress/ -Rf
sudo chown -R www-data:www-data /var/www/wp/

Installation Web – Interface WordPress

Section titled “Installation Web – Interface WordPress”

Accéder à :

http://192.36.3.21

Choix de la langue

Section titled “Choix de la langue”

Pré-requis base de données

Section titled “Pré-requis base de données”

Informations de connexion BD

Section titled “Informations de connexion BD”

Confirmation de réussite

Section titled “Confirmation de réussite”

Création du compte administrateur

Section titled “Création du compte administrateur”

Confirmation installation

Section titled “Confirmation installation”

Connexion administration

Section titled “Connexion administration”

Mise à jour de l’URL du site

Section titled “Mise à jour de l’URL du site”

Site fonctionnel

Section titled “Site fonctionnel”

Installation du Scanner Web

Section titled “Installation du Scanner Web”

Récupération de l’application

Section titled “Récupération de l’application”
Terminal window
cd /var/www/
sudo git clone https://github.com/kferrandonFulbert/command-attack.git

Configuration VirtualHost Scanner (HTTP)

Section titled “Configuration VirtualHost Scanner (HTTP)”
Terminal window
sudo nano /etc/apache2/sites-available/scanner.conf
<VirtualHost *:80>
    ServerName scanner1.californie.cub.sioplc.fr
    DocumentRoot /var/www/command-attack
    DirectoryIndex index.php


    <Directory "/var/www/command-attack">
        Options -Indexes
        AllowOverride All


        <RequireAll>
            Require ip 192.168.3.192/28


            AuthType Basic
            AuthName "Zone protégée"
            AuthUserFile /etc/apache2/sites-available/scanner1.htpasswd
            Require valid-user
        </RequireAll>
    </Directory>


    ErrorLog ${APACHE_LOG_DIR}/error-wp.log
    LogLevel warn
    CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>

Création du fichier d’authentification

Section titled “Création du fichier d’authentification”
Terminal window
sudo htpasswd -b /etc/apache2/sites-available/scanner1.htpasswd etudiant "etudiant_007"

Activation

Section titled “Activation”
Terminal window
sudo a2ensite scanner.conf
sudo systemctl reload apache2.service

Site scanner fonctionnel

Section titled “Site scanner fonctionnel”

Activation SSL (HTTPS)

Section titled “Activation SSL (HTTPS)”

Activation du module SSL

Section titled “Activation du module SSL”
Terminal window
sudo a2enmod ssl
sudo systemctl restart apache2

Création des certificats auto-signés

Section titled “Création des certificats auto-signés”
Terminal window
cd /etc/apache2/
sudo mkdir certs
cd certs/

Certificat WordPress

Section titled “Certificat WordPress”
Terminal window
sudo openssl req -newkey rsa:4096 -keyout www1.key -x509 -days 365 -out www1.crt

Common Name :

www0.californie.cub.sioplc.fr

Certificat Scanner

Section titled “Certificat Scanner”
Terminal window
sudo openssl req -newkey rsa:4096 -keyout scanner1.key -x509 -days 365 -out scanner1.crt

VirtualHost SSL – Scanner

Section titled “VirtualHost SSL – Scanner”
Terminal window
sudo nano /etc/apache2/sites-available/scanner-ssl.conf
<VirtualHost *:443>
    ServerName scanner1.californie.cub.sioplc.fr
    DocumentRoot /var/www/command-attack
    DirectoryIndex index.php


    SSLEngine on
    SSLCertificateFile /etc/apache2/certs/scanner1.crt
    SSLCertificateKeyFile /etc/apache2/certs/scanner1.key


    <Directory "/var/www/command-attack">
        Options -Indexes
        AllowOverride All


        <RequireAll>
            Require ip 192.168.3.192/28
            AuthType Basic
            AuthName "Zone protégée"
            AuthUserFile /etc/apache2/sites-available/scanner1.htpasswd
            Require valid-user
        </RequireAll>
    </Directory>


    ErrorLog ${APACHE_LOG_DIR}/error-wp.log
    LogLevel warn
    CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>

VirtualHost SSL – WordPress

Section titled “VirtualHost SSL – WordPress”
Terminal window
sudo nano /etc/apache2/sites-available/wp-ssl.conf
<VirtualHost  *:443>
    ServerName www1.californie.cub.sioplc.fr
    DocumentRoot /var/www/wp
    DirectoryIndex index.php


    SSLEngine on
    SSLCertificateFile /etc/apache2/certs/www1.crt
    SSLCertificateKeyFile /etc/apache2/certs/www1.key


    <Directory "/var/www/wp">
          Options -Indexes
          AllowOverride All
          Require all granted
    </Directory>


    ErrorLog ${APACHE_LOG_DIR}/error-wp.log
    LogLevel warn
    CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>

Redémarrage

Section titled “Redémarrage”
Terminal window
sudo systemctl restart apache2

Supervision réseau – Écoute du port (SPAN)

Section titled “Supervision réseau – Écoute du port (SPAN)”

Configuration sur le switch :

SwitchLv2CUB(config)#monitor session 1 source interface fa0/25 both
SwitchLv2CUB(config)#monitor session 1 destination interface fa0/23

Vérification HTTPS

Section titled “Vérification HTTPS”

WordPress

Section titled “WordPress”

Scanner

Section titled “Scanner”