CF - 分享 - 9isuper论坛 - Powered by Discuz! Archiver

admin 发表于 2022-12-2 13:33:48

CF

1、更新源
yum update -y
yum -y install openssl openssl-devel;
yum -y install pcre-devel;
yum -y install libxml2 libxml2-dev;
yum -y install libxslt-devel;
yum -y install gd gd-devel;
2、升级内核
#查看当前内核版本
uname -r
#导入ELRepo仓库的公共密钥：
rpm --import https://www.elrepo.org/RPM-GPG-KEY-elrepo.org
#安装ELRepo仓库的yum源：
yum -y install https://www.elrepo.org/elrepo-release-8.el8.elrepo.noarch.rpm
#安装最新版内核
yum --disablerepo="*" --enablerepo="elrepo-kernel" list available
yum -y --enablerepo=elrepo-kernel install kernel-ml
#设置以新的内核启动
grubby --default-kernel
grub2-set-default 0

3、关闭IPV6
sudo vim /etc/default/grub在文件末尾，附加以下行：
GRUB_CMDLINE_LINUX="$GRUB_CMDLINE_LINUX ipv6.disable=1"
保存文件并退出。ls -lh /etc/grub*.cfg
grub2-mkconfig -o /boot/grub2/grub.cfg
grub2-mkconfig -o /boot/efi/EFI/centos/grub2.cfg
rebootyum install -y tar
curlhttps://get.acme.sh | sh
export CF_Email="jimmy3389@gmail.com"
export CF_Key="1e30c469b687e13d50d6e46ed98e84fb93d60"
/root/.acme.sh/acme.sh--set-default-ca --server zerossl
/root/.acme.sh/acme.sh--register-account-m jimmy3389@gmail.com --server zerossl --eab-kid mNChaCTVmbydDb_3Hi8I9Q --eab-hmac-key zBx0EQR9i0hGgMPVPqDTurnYvlDd5ExfF4OlTcnnyaRWO8s737qnDS-fZ3_mLCeV2Xxo65ohfPRHElUhb76FuA
/root/.acme.sh/acme.sh --issue --dns dns_cf -d onecloud.best-d *.onecloud.best
4、安装X-UI
bash <(curl -Ls https://raw.githubusercontent.com/sprov065/x-ui/master/install.sh)
5、证书申请yum install -y tar
curlhttps://get.acme.sh | sh
export CF_Email="jimmy3389@gmail.com"
export CF_Key="1e30c469b687e13d50d6e46ed98e84fb93d60"
/root/.acme.sh/acme.sh--set-default-ca --server zerossl
/root/.acme.sh/acme.sh--register-account-m jimmy3389@gmail.com --server zerossl --eab-kid mNChaCTVmbydDb_3Hi8I9Q --eab-hmac-key zBx0EQR9i0hGgMPVPqDTurnYvlDd5ExfF4OlTcnnyaRWO8s737qnDS-fZ3_mLCeV2Xxo65ohfPRHElUhb76FuA
/root/.acme.sh/acme.sh --issue --dns dns_cf -d onecloud.best-d *.onecloud.best
6、Nginx安装
rpm -Uvh https://nginx.org/packages/centos/8/x86_64/RPMS/nginx-1.22.1-1.el8.ngx.x86_64.rpm
yum -y install nginx.x86_64 nginx-all-modules
systemctl enable nginx
systemctl start nginx
mkdir -p /etc/nginx/conf.d/sslconf/onecloud.best
/root/.acme.sh/acme.sh --installcert -d onecloud.best -d *.onecloud.best --key-file /etc/nginx/conf.d/sslconf/onecloud.best/private.key --fullchain-file /etc/nginx/conf.d/sslconf/onecloud.best/cert.crt --reloadcmd "nginx -s reload"

7、开启防火墙
systemctl start firewalld.service
systemctl enablefirewalld.service
firewall-cmd --zone=public --add-port=22/tcp
firewall-cmd --zone=public --add-port=80/tcp
firewall-cmd --zone=public --add-port=443/tcp
firewall-cmd --zone=public --add-port=18080/tcp

页: [1]

9isuper论坛's Archiver

CF