Centos7 配置记录
记录centos7的日常操作记录
- sshd 禁用DNS反向解析和GSSAPI认证,以完成快速登陆
sudo sed -i 's/#UseDNS yes/UseDNS no/g' /etc/ssh/sshd_config
sudo sed -i 's/GSSAPIAuthentication yes/GSSAPIAuthentication no/g' /etc/ssh/sshd_config
sudo systemctl restart sshd
- 添加本地dvd源
mkdir -p /media/dvd && mount -t auto /dev/cdrom /media/dvd
cat <<EOF >/etc/yum.repos.d/CentOS-Base.repo
[c7-dvd]
name=Centos-7
baseurl=file:///media/dvd
enabled=1
gpgcheck=1
gpgkey=file:///media/dvd/RPM-GPG-KEY-CentOS-7
EOF
yum clean all
-
安装docker
- 添加yum源
sudo tee /etc/yum.repos.d/docker.repo <<-'EOF'
[dockerrepo]
name=Docker Repository
baseurl=https://yum.dockerproject.org/repo/main/centos/7/
enabled=1
gpgcheck=1
gpgkey=https://yum.dockerproject.org/gpg
EOF
- 安装docker-engine
sudo yum install -y docker
或者下载离线rpm包(供网络环境差的环境使用)
sudo yum install docker --downloadonly --downloaddir=./
sudo yum localinstall ./*.rpm
3. 修改必要的docker daemon配置参数 现在不需要了,主要是devicemapper需要改下
sudo mkdir /etc/systemd/system/docker.service.d
sudo cat <<EOF >>/etc/systemd/system/docker.service.d/docker.conf
[Service]
ExecStart=
ExecStart=/usr/bin/docker daemon -H tcp://0.0.0.0:2375 -H unix:///var/run/docker.sock --dns 180.76.76.76 --insecure-registry registry.cecf.com -g /home/Docker/docker -s overlay --selinux-enabled=false
EOF
- 启动docker
sudo systemctl enable docker
sudo systemctl start docker
# 普通用户放进docker组里,快速CLI
sudo usermod -aG docker [your_username]
-
firewalld
- 目前docker与firewalld存在兼容性问题
- 先选择关闭firewalld吧
-
安装ntp
yum install -y ntp systemctl start ntpd systemctl enable ntpd ntpdate -u cn.pool.ntp.org -
必要组件
yum install net-tools bind-utils tcpdump lsof -
查询本机的外网IP
curl ipinfo.io
最后修改 January 23, 2022: 迁移陈年老文到新站 (1588b8b)