day51-JumpServer

最新推荐文章于 2025-12-16 16:57:09 发布

原创

最新推荐文章于 2025-12-16 16:57:09 发布 · 361 阅读

5 ·

CC 4.0 BY-SA版权

文章标签：

#服务器 #运维 #linux

1.每日复盘与今日内容

1.1复盘

防火墙iptables简介
四表五链:filter表、nat表🍟🍟🍟🍟🍟
iptables命令
共享上网
端口转发

1.2今日内容

Jumpserver部署
用户管理、资产授权、sudo提权
命令限制、MFA、网域

2.JumpServer服务部署

官网有详细的安装步骤

https://docs.jumpserver.org/zh/v4/installation/setup_linux_standalone/offline_install/#1

1.先去官网下载安装包

https://community.fit2cloud.com/#/products/jumpserver/downloads

2.将安装包拖入Liunx服务器(10.0.0.71)，并解压

cd /opt
tar -xf jumpserver-ce-v4.10.7-x86_64.tar.gz
cd jumpserver-ce-v4.10.7-x86_64

3.查看内容(也可直接进行安装)

cat config-example.txt
# JumpServer configuration file example.
#
# If you don't understand the purpose, you can skip modifying this configuration file, the system will automatically fill in
# Complete parameter documentation https://docs.jumpserver.org/zh/v3/guide/env/

################################# Image Configuration #################################
#
# The connection to docker.io in China will timeout or the download speed will be slow, enable this option to use Huawei Cloud image acceleration
# Replace the old version DOCKER_IMAGE_PREFIX
#
# DOCKER_IMAGE_MIRROR=1

# Image pull policy Always, IfNotPresent
# Always means that the latest image will be pulled every time, IfNotPresent means that the image will be pulled only if it does not exist locally
#
# IMAGE_PULL_POLICY=Always

############################## Installation Configuration #############################
#
# JumpServer database persistence directory, by default, recordings, task logs are in this directory
# Please modify according to the actual situation, the database file (.sql) and configuration file backed up during the upgrade will also be saved to this directory
#
VOLUME_DIR=/data/jumpserver

# Encryption key, please ensure that SECRET_KEY is consistent with the old environment when migrating, do not use special strings
# (*) Warning: Keep this value secret.
# (*) Do not disclose SECRET_KEY to anyone
#
SECRET_KEY=

# The token used by the co