Linux常用命令

1
#进入netplan目录
2
cd /etc/netplan
3

4
#修改yaml文件为
5
# This is the network config written by 'subiquity'
6
network:
7
  version: 2
8
  renderer: networkd
9
  ethernets:
10
    ens33:
11
      dhcp4: no
12
      addresses: [10.135.30.59/24]
13
      gateway4: 10.135.30.254
14
      routes:
15
        - to: default
16
          via: 10.135.30.254
17
      nameservers:
18
        addresses: [8.8.8.8, 114.114.114.144]
19

20
#刷新一下netplan，检测IP是否变化
21
netplan apply
22
hostname -I

1
# 安装openssh-server
2
apt update
3
apt install openssh-server
4

5
# 安装完成后,查看ssh是否开启，如果没启动就手动
6
systemctl status ssh
7
/etc/init.d/ssh start
8

9
# 配置SSH
10
vim /etc/ssh/sshd_config
11
将PermitRootLogin prohibit-password修改为PermitRootLogin yes
12

13
#重启ssh并设置开机自启ssh
14
systemctl restart ssh
15
systemctl enable ssh
16

17
#更改管理员root密码
18
passwd 123456

1
# 将新的空间新建一个磁盘分区
2
fdisk /dev/sda
3
-----------------------------------------------------------------------------------------
4
Welcome to fdisk (util-linux 2.37.2).
5
Changes will remain in memory only, until you decide to write them.
6
Be careful before using the write command.
7

8
GPT PMBR size mismatch (83886079 != 167772159) will be corrected by write.
9
This disk is currently in use - repartitioning is probably a bad idea.
10
It's recommended to umount all file systems, and swapoff all swap
11
partitions on this disk.
12

13

14
Command (m for help): n
15
Partition number (4-128, default 4):
16
First sector (83884032-167772126, default 83884032):
17
Last sector, +/-sectors or +/-size{K,M,G,T,P} (83884032-167772126, default 167772126):
18

19
Created a new partition 4 of type 'Linux filesystem' and of size 40 GiB.
20

21
Command (m for help): w
22
The partition table has been altered.
23
Syncing disks.
24
-----------------------------------------------------------------------------------------
25

26
# 将新建的分区sda4转换为PV并拓展ubuntu-vg这个卷组
27
pvcreate -ff -y /dev/sda4
28
Physical volume "/dev/sda4" successfully created.
29

30
vgextend ubuntu-vg /dev/sda4
31
Volume group "ubuntu-vg" successfully extended.
32

33
#扩容ubuntu-lv这个逻辑空间，并df -h查看
34
lvextend -l +100%FREE /dev/ubuntu-vg/ubuntu-lv

1
# 将新的空间新建一个磁盘分区
2
fdisk /dev/sda
3
-----------------------------------------------------------------------------------------
4
Welcome to fdisk (util-linux 2.37.2).
5
Changes will remain in memory only, until you decide to write them.
6
Be careful before using the write command.
7

8
GPT PMBR size mismatch (83886079 != 167772159) will be corrected by write.
9
This disk is currently in use - repartitioning is probably a bad idea.
10
It's recommended to umount all file systems, and swapoff all swap
11
partitions on this disk.
12

13

14
Command (m for help): n
15
Partition number (4-128, default 4):
16
First sector (83884032-167772126, default 83884032):
17
Last sector, +/-sectors or +/-size{K,M,G,T,P} (83884032-167772126, default 167772126):
18

19
Created a new partition 4 of type 'Linux filesystem' and of size 40 GiB.
20

21
Command (m for help): w
22
The partition table has been altered.
23
Syncing disks.
24
-----------------------------------------------------------------------------------------
25

26
# 将新建的分区sda4转换为PV并拓展ubuntu-vg这个卷组
27
pvcreate -ff -y /dev/sda4
28
Physical volume "/dev/sda4" successfully created.
29

30
vgextend ubuntu-vg /dev/sda4
31
Volume group "ubuntu-vg" successfully extended.
32

33
#扩容ubuntu-lv这个逻辑空间，并df -h查看
34
lvextend -l +100%FREE /dev/ubuntu-vg/ubuntu-lv

1
# 代理Windows的翻墙软件实现下载
2
export http_proxy="http://10.135.30.71:7890"
3
export https_proxy="https://10.135.30.71:7890"
4

5
#代理Docker实现翻墙下载Dockerhub仓库拉取
6
vim /etc/docker/daemon.json
7

8
#配置翻墙VPN
9
{
10
  "proxies": {
11
        "http-proxy": "http://10.135.30.71:7890",
12
        "https-proxy": "http://10.135.30.71:7890"
13
    }
14
}
15

16
#配置镜像仓库
17
{
18
  "registry-mirrors": ["https://docker.rainbond.cc/"]
19
}
20

21
# 加载systemd配置并重启docker
22
systemctl daemon-reload
23
systemctl restart docker

1
# 使用insecure-registries参数添加http支持
2
vim /etc/docker/daemon.json
3

4
#添加如下内容
5
{
6
  "insecure-registries":["10.135.40.180"]
7
}
8

9
# 重启systemctl服务
10
systemctl daemon-reload
11
systemctl restart docker
12

13
# 检查是否连接docker harbor仓库
14
docker login 10.135.40.180
15
username：admin
16
password：P@ssw0rd
17
--------------- 出现如下显示，则表示登陆成功 --------------
18
Authenticating with existing credentials...
19
Login Succeeded...
20

21
------对本地Docker容器进行打标签------
22
# 查看本地Docker容器标签名
23
docker images
24
docker tag SOURCE_IMAGE[:TAG] 10.135.40.180/repository/REPOSITORY[:TAG]
25
# 例如参考如下命令
26
docker tag tomcat:latest(已经存在的容器名+标签名) 10.135.40.180/repository/tomcat:v1(所需打标签的容器名+标签名)
27
# 再执行以下docker images 则可以看到容器内新打上的容器+标签名
28

29
------使用Docker命令进行push推送至Harbor服务器内------
30
# 推送镜像到当前项目
31
docker push 10.135.40.180/repository/REPOSITORY[:TAG]
32
# 例如参考如下命令
33
docker push 10.135.40.180/repository/tomcat:v1(已经打好标签的容器名+标签名)
34

35
------使用Docker命令进行pull推送至本地服务器内------
36
# 拉取Docker镜像至本地服务器
37
docker pull 10.135.40.180/repository/REPOSITORY[:TAG]
38
# 例如参考如下命令
39
docker pull 10.135.40.180/repository/tomcat:v1(已经打好标签的容器名+标签名)

1
# 创建CA机构证书
2
openssl genrsa -out myCA.key 2048
3
openssl req -new -x509 -key myCA.key -out myCA.cer -days 36500
4

5
#创建服务器证书
6
openssl genrsa -out server.key 2048
7

8
#创建一个签名请求
9
vim openssl.cnf
10
-----------------------------------------------------------------------------------------
11
[ req ]
12
distinguished_name = req_distinguished_name
13
req_extensions = v3_req
14
[ req_distinguished_name ]
15
countryName                     = Country Name (2 letter code)
16
countryName_default             = XX
17
countryName_min                 = 2
18
countryName_max                 = 2
19
stateOrProvinceName             = State or Province Name (full name)
20
#stateOrProvinceName_default    = Default Province
21
localityName                    = Locality Name (eg, city)
22
localityName_default            = Default City
23
0.organizationName              = Organization Name (eg, company)
24
0.organizationName_default      = Default Company Ltd
25
# we can do this but it is not needed normally :-)
26
#1.organizationName             = Second Organization Name (eg, company)
27
#1.organizationName_default     = World Wide Web Pty Ltd
28
organizationalUnitName          = Organizational Unit Name (eg, section)
29
#organizationalUnitName_default =
30
commonName                      = Common Name (eg, your name or your server\'s hostname)
31
commonName_max                  = 64
32
emailAddress                    = Email Address
33
emailAddress_max                = 64
34
# SET-ex3                       = SET extension number 3
35
[ v3_req ]
36
subjectAltName = @alt_names
37

38
[ alt_names ]
39
DNS.1 = 8.8.8.8
40
IP.1 = 192.168.1.2
41
-----------------------------------------------------------------------------------------
42

43
#生成的服务器证书文件
44
openssl req -config openssl.cnf -new -out server.req -key server.key
45

46
#通过CA机构证书对服务器证书进行签名认证
47
openssl x509 -req  -extfile openssl.cnf -extensions v3_req -in server.req -out server.cer -CAkey myCA.key -CA myCA.cer -days 36500 -CAcreateserial -CAserial serial

1
# 使用fdisk命令
2
fdisk -l
3

4
# 磁盘创建一个 ext4 文件系统
5
mkfs.ext4 /dev/vdb
6

7
# 创建挂载点
8
mkdir /data
9

10
# 挂载硬盘
11
mount /dev/vdb /data
12

13
# 设置开机自动挂载
14
blkid /dev/vdb
15

16
记住其中的 UUID="xxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx"
17

18
重启系统或使用 df -h 命令来验证 /dev/vdb 是否已成功挂载到 /data 目录