1、設置時區
1 2 | rm-f /etc/localtime cp/usr/share/zoneinfo/Asia/Shanghai/etc/localtime |
2、配置內網IP (如果是外網IP,linux要修改遠程端口)
3、配置自己的yum源
1 2 3 4 | yum installwget rm-f /etc/yum.repos.d/CentOS-Base.repo wget -P /etc/yum.repos.d/ http://mirrors.163.com/.help/CentOS6-Base-163.repo wget -P /etc/yum.repos.d/ http://mirrors.aliyun.com/repo/epel-6.repo |
或者
1 2 | curl http://mirrors.163.com/.help/CentOS6-Base-163.repo >/etc/yum.repos.d/comratings.repo curl http://mirrors.aliyun.com/repo/epel-6.repo > /etc/yum.repos.d/epel-6.repo |
如何需要最新版本的rpm包,請安裝下面的倉庫
1 | rpm -Uvh http://repo.webtatic.com/yum/el6/latest.rpm |
4、關閉SELinux
1 2 | sed-i 's#SELINUX=enforcing#SELINUX=disabled#g'/etc/selinux/config setenforce 0 |
5、添加zabbix監控
6、配置防火牆
1 2 3 | service iptables stop iptables -L service iptables save |
7、安裝軟件包
1 | yum install-y vim openssh-clients ntpdate manlrzsz |
8、配置定時任務
1 | echo"10 6 * * * root (/usr/sbin/ntpdate time.nist.gov && /sbin/hwclock -w) &> /dev/null">> /etc/crontab |
9、配置主機名
10、修改文件句柄數
1 2 3 4 5 6 | #臨時修改,立刻生效 ulimit-n 655350 #永久修改 echo"* soft nofile 655360">> /etc/security/limits.conf echo"* hard nofile 655360">> /etc/security/limits.conf |
11、可以禁用ipv6
1 2 3 4 | cat>> /etc/modprobe.d/ipv6.conf < aliasnet-pf-10 off aliasipv6 off EOF |
12、去除ssh遠程DNS認證
1 2 3 | sed-i 's/#UseDNS yes/UseDNS no/g'/etc/ssh/sshd_config sed-i 's/GSSAPIAuthentication yes/GSSAPIAuthentication no/g'/etc/ssh/sshd_config service sshd restart |
13、配置LDAP客戶端(可選)
1 | yum installopenldap-clients nss-pam-ldapd -y |
1 2 3 4 5 6 7 8 9 | authconfig --enablemkhomedir \ --disableldaptls \ --enablemd5 \ --enableldap \ --enableldapauth \ --ldapserver=ldap://211.x.x.27:8389 \ --ldapbasedn="dc=wzlinux,dc=com"\ --enableshadow \ --update |