免费的SSL VPN adito-gateway ssl vpn之华为云软件SSL VPN解决方案
1、 yum install ant
2. 下载adito-0.9.1-bin 并拷贝到 /mnt目录下
3. 解压并移动到 /usr/
[root@adito mnt]# mv /mnt/adito-0.9.1 /usr/
4. 安装 adito
[root@adito usr]# cd adito-0.9.1/
[root@adito adito-0.9.1]# ant install
关闭防火墙
[root@adito ~]# service iptables stop
iptables: Setting chains to policy ACCEPT: filter [ OK ]
iptables: Flushing firewall rules: [ OK ]
iptables: Unloading modules: [ OK ]
[root@adito ~]# chkconfig iptables off
[root@adito ~]# chkconfig ip6tables off
用另外一台机器 打开 http://ip:28080
创建证书
设置证书密码 不能超过6个字符
设置证书信息
选择用户认证方式,这里我选默认adito自带的用户数据库
设置超级用户,等下配置完成了要用这个用户登录
设置WEB登录配置,默认就好
代理,不需要设置
创建完成,
等到信息100%
完成之后,出现如下界面。貌似我的密码设置长了点。
点击 exit 退出安装界面。
退出之前 终端上是这个界面
退出之后是如下界面,回到提示符
先别忙着重启服务器,我们现在可以替换到centos自带的openJDKl 不然客户端登录会出现 adito angent failed的错误提示、
[root@adito mnt]# ls
adito-0.9.1-bin.zip jdk-7u17-linux-x64.tar.gz
[root@adito mnt]# tar -zxvf jdk-7u17-linux-x64.tar.gz
解压出来后,移动到usr目录
[root@adito mnt]# mv jdk1.7.0_17 /usr
配置java 参数
alternatives --install /usr/bin/java java /usr/jdk1.7.0_17/jre/bin/java 20000
alternatives --install /usr/bin/javaws javaws /usr/jdk1.7.0_17/jre/bin/javaws 20000
alternatives --install /usr/bin/javac javac /usr/jdk1.7.0_17/bin/javac 20000
alternatives --install /usr/bin/jar jar /usr/jdk1.7.0_17/bin/jar 20000
选择生效的java版本
[root@adito ~]# alternatives --config java
There are 4 programs which provide 'java'.
Selection Command
-----------------------------------------------
*+ 1 /usr/lib/jvm/jre-1.7.0-openjdk.x86_64/bin/java
2 /usr/lib/jvm/jre-1.6.0-openjdk.x86_64/bin/java
3 /usr/lib/jvm/jre-1.5.0-gcj/bin/java
4 /mnt/java/jdk1.7.0_17/jre/bin/java
Enter to keep the current selection[+], or type selection number: 4
查看一下java 有没有更新完成。
[root@adito java]# java -version
java version "1.7.0_17"
Java(TM) SE Runtime Environment (build 1.7.0_17-b02)
Java HotSpot(TM) 64-Bit Server VM (build 23.7-b01, mixed mode)
回到adito目录
[root@adito java]# cd /usr/adito-0.9.1/
[root@adito adito-0.9.1]#
[root@adito adito-0.9.1]# ant install-service
Buildfile: build.xml
set-tools:
check-tools:
check-permissions:
install-service:
[echo] Installing Adito as Linux service
[exec] Detecting Java
[exec] Using /usr/java/jdk1.7.0_17/jre
[exec] Detected OS redhat (x86-64)
[exec] Service installed
[echo] Adito installed as Linux service
BUILD SUCCESSFUL
Total time: 0 seconds
[root@adito adito-0.9.1]#ant start
set-tools:
check-tools:
check-permissions:
start:
[exec] /usr/adito-0.9.1/install/platforms/linux/adito: /usr/adito-0.9.1/install/platforms/linux/x86/wrapper: /lib/ld-linux.so.2: bad ELF interpreter: No such file or directory
[exec] Starting Adito...
[exec] /usr/adito-0.9.1/install/platforms/linux/adito: line 213: /usr/adito-0.9.1/install/platforms/linux/x86/wrapper: Success
[exec] Result: 1
[echo] Adito started
BUILD SUCCESSFUL
Total time: 0 seconds
出现错误提示,缺少ld-linux.so.2:
是因为64位系统中安装了32位程序
解决方法:
yum install glibc.i686
再次运行 ant start
在测试时已经能进入网页https://服务器IP地址,但是用超级用户不能登录,重启下服务器即可
#reboot
上传插件 点击Extension Manager 右上角的Upload Exension
下载地址
https://svn.code.sf.net/p/openvpn-als/code/adito-applications/
根据需要上传
adito-application-advancednativerdpwin32.zip
adito-application-elusivajavardp.zip
adito-application-nx.zip
adito-application-putty-portable-ssh.zip
adito-application-putty-portable-telnet.zip
adito-application-radmin.zip
adito-application-rdesktop.zip
adito-application-rdp.zip
adito-application-tn5250j.zip
adito-application-ultravnc.zip
adito-application-ultravncproxy.zip
adito-application-vnc.zip
adito-application-winscp.zip
adito-application-wolwindowsnative.zip
创建用户
创建用户组
创建用户组并把先前创建的用户添加到用户组
创建策略
创建VPN可以访问的应用
一个简单的策略资源配置完成
现在退出登录,用我们刚才创建的用户登录
可以看到我们刚才创建的资源,点击右上角带红色方框的按钮,加载adito angent 必须安装 jave 7.45版本以下的JRE
右上角绿灯亮起,说明连接正常
注意,如果提示faile to angent 开头的错误,很有可能是JAVA没有配置好,重新配置后一定要记得重新运行一次
ant install
ant start
reboot
点击 堡垒机SSH的图标
最精简后运行的命令记录
1 vi /etc/hosts
2 vi /etc/sysconfig/network
3 vi /etc/sysconfig/network-scripts/ifcfg-eth0 t
4 reboot
5 cd /mnt/
6 ls
7 unzip adito-0.9.1-bin.zip
8 unzip apache-ant-1.9.6-bin.zip
9 tar -zxvf jdk-7u17-linux-x64.tar.gz
10 ls
11 yum install ant
12 cd adito-0.9.1
13 ant install
14 alternatives --config java
15 cd /mnt/jdk1.7.0_17/
16 ls
17 alternatives --install /usr/bin/java java /usr/jdk1.7.0_17/jre/bin/java 20000
18 alternatives --install /usr/bin/javaws javaws /usr/jdk1.7.0_17/jre/bin/javaws 20000
19 alternatives --install /usr/bin/javac javac /usr/jdk1.7.0_17/bin/javac 20000
20 alternatives --install /usr/bin/jar jar /usr/jdk1.7.0_17/jar 20000
21 alternatives --config java
22 ant install
23 reboot
24 ant install-service
25 netstat -ant
26 cd /mnt/adito-0.9.1
27 ant install-service
28 ant start
29 yum install glibc.i686
30 ant start
31 netstat -ant
32 history