CentOS 搭建内部Yum源同步阿里Yum源
背景:
有这样的需求,测试环境网段不能上网,但是测试环境centos安装软件包每一台都配置本地yum源很麻烦,也缺少第三方yum源,特此在内网搭建一台yum源服务器满足这一需求,同时防火墙层面只允许此yum源服务器每周日晚限时联网同步阿里云的yum源.
一.yum源服务器的系统环境,最小化安装
|
1
2
|
[root@yumserver ~]# cat /etc/redhat-release CentOS Linux release 7.9.2009 (Core) |
yum源服务器地址 10.8.98.222
放开系统防火墙,关闭selinux
|
1
2
3
4
|
[root@yumserver ~]# firewall-cmd --add-port=80/tcp --permanent success[root@yumserver ~]# firewall-cmd --reloadsuccess |
|
1
2
3
4
5
6
7
8
9
10
11
12
|
[root@yumserver ~]# cat /etc/selinux/config # This file controls the state of SELinux on the system.# SELINUX= can take one of these three values:# enforcing - SELinux security policy is enforced.# permissive - SELinux prints warnings instead of enforcing.# disabled - No SELinux policy is loaded.SELINUX=disabled# SELINUXTYPE= can take one of three values:# targeted - Targeted processes are protected,# minimum - Modification of targeted policy. Only selected processes are protected. # mls - Multi Level Security protection.SELINUXTYPE=targeted |
二.添加阿里云yum源并检查
备份好原系统的repo
|
1
2
3
4
|
[root@yumserver yum.repos.d]# pwd/etc/yum.repos.d[root@yumserver yum.repos.d]# mkdir backup[root@yumserver yum.repos.d]# mv *.repo backup/ |
|
1
2
3
4
|
curl -o /etc/yum.repos.d/CentOS-Base.repo https:999999//mirrors.aliyun.com/repo/Centos-7.repocurl -o /etc/yum.repos.d/epel.repo http:999999//mirrors.aliyun.com/repo/epel-7.repoyum makecacheyum repolist |
去掉999999
三.安装相关软件
|
1
|
yum install -y wget make cmake gcc gcc-c++ pcre-devel zlib-devel openssl openssl-devel httpd yum-utils createrepo |
标注:
yum-utils:reposync同步工具
createrepo:编辑yum库工具
httpd:通过Apache软件提供web服务,也可以使用nginx
四、同步阿里云yum源软件包到本地服务器指定目录/mirror(自定义目录)
|
1
2
3
4
5
6
7
8
9
10
|
mkdir -p /mirrorchown -R apache:apache /mirrorchmod -R 755 /mirror###参数-n指下载最新软件包,-p指定目录,指定本地的源--repoid(如果不指定就同步本地服务器所有的源),下载过程比较久reposync -n --repoid=extras --repoid=updates --repoid=base --repoid=epel -p /mirror[root@yumserver ~]# du -sh /mirror/*9.0G /mirror/base16G /mirror/epel321M /mirror/extras2.2G /mirror/updates |
五 、创建仓库索引
|
1
2
3
4
|
createrepo -po /mirror/base/ /mirror/base/createrepo -po /mirror/extras/ /mirror/extras/createrepo -po /mirror/updates/ /mirror/updates/createrepo -po /mirror/epel/ /mirror/epel/ |
六 、更新数据源
|
1
2
3
4
|
createrepo --update /mirror/base/createrepo --update /mirror/extras/createrepo --update /mirror/updates/createrepo --update /mirror/epel/ |
七、启动并配置Apache服务
|
1
2
3
4
5
6
7
8
9
10
11
12
|
systemctl start httpdsystemctl enable httpdsystemctl status httpd[root@yumserver ~]# vim /etc/httpd/conf/httpd.confDocumentRoot "/mirror/"<Directory "/mirror/"> Options Indexes FollowSymLinks AllowOverride None Order allow,deny Allow from all Require all granted</Directory> |
###修改富贵论坛Apache默认首页index.html,直接复制粘贴执行
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
|
cat << EOF > /usr/share/httpd/noindex/index.html<!DOCTYPE html><html><head><meta charset="utf-8"><title>CentOS 7 镜像</title><script>document.createElement("myHero")</script><style>myHero { display: block; #ddd; padding: 10px; font-size: 20px;} </style> </head><body> <h1>简介</h1> <hr> <p>CentOS,是基于 Red Hat Linux 提供的可自由使用源代码的企业级 Linux 发行版本。</p> <hr> <br> <br> <h1>CentOS 7 配置内部YUM源</h1> <br> <h2>1、备份</h2> <myHero>mkdir /etc/yum.repos.d/backup </myHero> <myHero>mv /etc/yum.repos.d/*.repo /etc/yum.repos.d/backup/</myHero> <br> <h2>2、下载新的 CentOS-Base.repo 到 /etc/yum.repos.d/ </h2> <myHero>curl -o /etc/yum.repos.d/CentOS-Base.repo xxxx://x.x.x.x/repo/CentOS-Base.repo</myHero> <br> <h2>3、运行 yum makecache 生成缓存</h2> <br> <h2>4、运行 yum repolist 查看已经生成缓存</h2> <br> <br></body></html>EOF |
注意:上面
|
1
|
xxxx://x.x.x.x/ |
更改为自己对应的
我这里为http : // 10.8.98.222 /
八、编写yum源客户端配置文件
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
|
[root@yumserver ~]# mkdir -p /mirror/repo/###直接复制粘贴执行cat << EOF > /mirror/repo/CentOS-Base.repo[base]name=CentOS-$releasever - Base - 10.8.98.222failovermethod=prioritybaseurl=enable=1gpgcheck=0 #released updates [updates]name=CentOS-$releasever - Updates - 10.8.98.222failovermethod=prioritybaseurl=enable=1gpgcheck=0 #additional packages that may be useful[extras]name=CentOS-$releasever - Extras - 10.8.98.222failovermethod=prioritybaseurl=enable=1gpgcheck=0 #additional packages that may be useful[epel]name=CentOS-$releasever - Epel - 10.8.98.222failovermethod=prioritybaseurl=enable=1gpgcheck=0EOF |
九、客户端配置yum源
用户可以浏览器访问10.8.98.222查看配置客户端yum源的方法
|
1
2
|
curl -o /etc/yum.repos.d/CentOS-Base.repo http:/ /10.8.98.222/repo/CentOS-Base.repoyum makecache |
十 、设置定时同步yum源的任务
[root@yumserver ~]# cat /mirror/script/centos_yum_update.sh
|
1
2
3
4
5
6
7
8
9
10
11
12
13
14
|
#!/bin/bashecho 'Updating Aliyum Source'DATETIME=`date +%F_%T`exec > /var/log/aliyumrepo_$DATETIME.logreposync -np /mirrorif [ $? -eq 0 ];then createrepo --update /mirror/base createrepo --update /mirror/extras createrepo --update /mirror/updates createrepo --update /mirror/epel echo "SUCESS: $DATETIME aliyum_yum update successful" else echo "ERROR: $DATETIME aliyum_yum update failed" fi |
添加定时任务,每周一凌晨1点执行
|
1
2
|
[root@yumserver ~]# crontab -l0 1 * * 1 /bin/bash /mirror/script/centos_yum_update.sh |
