Linux系统之部署teleport堡垒机平台

举报
江湖有缘 发表于 2022/12/03 23:19:22 2022/12/03
【摘要】 Linux系统之部署teleport堡垒机平台

一、teleport介绍

Teleport是一款简单易用的堡垒机系统,具有小技巧、易用、易于集成的特点,支持RDP和SSH协议的跳转和管理。

二、检查系统环境

1.检查系统版本

[root@jeven ~]# cat /etc/os-release 
NAME="CentOS Linux"
VERSION="7 (Core)"
ID="centos"
ID_LIKE="rhel fedora"
VERSION_ID="7"
PRETTY_NAME="CentOS Linux 7 (Core)"
ANSI_COLOR="0;31"
CPE_NAME="cpe:/o:centos:centos:7"
HOME_URL="https://www.centos.org/"
BUG_REPORT_URL="https://bugs.centos.org/"

CENTOS_MANTISBT_PROJECT="CentOS-7"
CENTOS_MANTISBT_PROJECT_VERSION="7"
REDHAT_SUPPORT_PRODUCT="centos"
REDHAT_SUPPORT_PRODUCT_VERSION="7"

2.检查系统内核版本

[root@jeven ~]# uname -r 
3.10.0-957.el7.x86_64

三、下载软件包


[root@jeven teleport]# wget https://tp4a.com/static/download/teleport-server-linux-x64-3.6.4-b3.tar.gz
--2022-12-03 23:07:13--  https://tp4a.com/static/download/teleport-server-linux-x64-3.6.4-b3.tar.gz
Resolving tp4a.com (tp4a.com)... 39.97.125.170
Connecting to tp4a.com (tp4a.com)|39.97.125.170|:443... connected.
ERROR: cannot verify tp4a.com's certificate, issued by ‘/C=US/O=Let's Encrypt/CN=R3’:
  Issued certificate has expired.
To connect to tp4a.com insecurely, use `--no-check-certificate'.
[root@jeven teleport]# ls
[root@jeven teleport]# wget https://tp4a.com/static/download/teleport-server-linux-x64-3.6.4-b3.tar.gz --no-check-certificate
--2022-12-03 23:07:25--  https://tp4a.com/static/download/teleport-server-linux-x64-3.6.4-b3.tar.gz
Resolving tp4a.com (tp4a.com)... 39.97.125.170
Connecting to tp4a.com (tp4a.com)|39.97.125.170|:443... connected.
WARNING: cannot verify tp4a.com's certificate, issued by ‘/C=US/O=Let's Encrypt/CN=R3’:
  Issued certificate has expired.
HTTP request sent, awaiting response... 200 OK
Length: 32717761 (31M) [application/octet-stream]
Saving to: ‘teleport-server-linux-x64-3.6.4-b3.tar.gz’

100%[============================================================================================================>] 32,717,761  2.33MB/s   in 11s    

2022-12-03 23:07:36 (2.80 MB/s) - ‘teleport-server-linux-x64-3.6.4-b3.tar.gz’ saved [32717761/32717761]

[root@jeven teleport]# ls
teleport-server-linux-x64-3.6.4-b3.tar.gz

四、部署teleport系统

1.解压软件包

[root@jeven teleport]# ls
teleport-server-linux-x64-3.6.4-b3.tar.gz
[root@jeven teleport]# tar -xzf teleport-server-linux-x64-3.6.4-b3.tar.gz 
[root@jeven teleport]# ls
teleport-server-linux-x64-3.6.4-b3  teleport-server-linux-x64-3.6.4-b3.tar.gz
[root@jeven teleport]#

2.安装teleport

[root@jeven teleport-server-linux-x64-3.6.4-b3]# sh ./setup.sh 

[]===========================================================================[]
 | Teleport Server Installation                                              |
 |===========================================================================|
 |    ver: 3.6.4                                                             |
 | author: apex.liu@qq.com                                                   |
[]===========================================================================[]

Welcome to install Teleport Server!

NOTICE: There are a few steps need you enter information or make choice,
        if you want to use the DEFAULT choice, just press `Enter` key.
        Otherwise you need enter the highlight character to make choice.


Prepare installation...
 - check local installation ... [not exists]


Set installation path [/usr/local/teleport]: 
 - copy [/data/teleport/teleport-server-linux-x64-3.6.4-b3/data/bin]
     -> [/usr/local/teleport/bin]
 - copy [/data/teleport/teleport-server-linux-x64-3.6.4-b3/data/www]
     -> [/usr/local/teleport/www]
 - copy [/data/teleport/teleport-server-linux-x64-3.6.4-b3/data/tmp/etc]
     -> [/usr/local/teleport/data/etc]
process [daemon.in] to [/etc/init.d/teleport]
process [start.sh.in] to [/usr/local/teleport/start.sh]
process [stop.sh.in] to [/usr/local/teleport/stop.sh]
process [status.sh.in] to [/usr/local/teleport/status.sh]

start services...
starting teleport web ... [done]
starting teleport core server ... [done]

check services status...
teleport web server is running.
teleport core server is running.

--==[ ALL DONE ]==--

3.查看服务端口


[root@jeven ~]# netstat -tunlp |grep 7190
tcp        0      0 0.0.0.0:7190            0.0.0.0:*               LISTEN      79624/tp_web        
[root@jeven ~]#

五、teleport的初始配置

image.png

image.png

六、访问teleport

1.登录teleport

image.png

2.访问teleport的服务端首页

image.png

七、官网下载客户端z助手

https://tp4a.com/download
image.png

【版权声明】本文为华为云社区用户原创内容,转载时必须标注文章的来源(华为云社区)、文章链接、文章作者等基本信息, 否则作者和本社区有权追究责任。如果您发现本社区中有涉嫌抄袭的内容,欢迎发送邮件进行举报,并提供相关证据,一经查实,本社区将立刻删除涉嫌侵权内容,举报邮箱: cloudbbs@huaweicloud.com
Linux
  • 点赞
  • 收藏
  • 关注作者

评论(0

0/1000
抱歉,系统识别当前为高风险访问,暂不支持该操作

全部回复

上滑加载中

设置昵称

在此一键设置昵称,即可参与社区互动!

*长度不超过10个汉字或20个英文字符,设置后3个月内不可修改。

*长度不超过10个汉字或20个英文字符,设置后3个月内不可修改。

确认 取消

加入云驻计划,成为创作者

  • 华为云周边好礼
  • 免费体验产品
  • 特殊身份标识
  • 线下官方门票
  • 内部专家零距离
  • 与10000+优质创作者共同成长
立即加入