yum install -y geoip #install location : /usr/share/GeoIP/

yum install -y nginx-module-geoip #install location : /etc/nginx/modules/

vi /etc/nginx/nginx.conf

#nginx 설정 파일의 맨 위에 다음 2줄 추가
load_module modules/ngx_http_geoip_module.so;
load_module modules/ngx_stream_geoip_module.so;

http {
......
# 아래 설정 추가
# geoip national data file location
geoip_country /usr/share/GeoIP/GeoIP.dat;
# geoip national code mapping, default no, korea yes
map $geoip_country_code $allowed_country {
    default no;
    KR yes;
}
 #log_format에 국가코드 출력
log_format  main  '$remote_addr - $remote_user [$time_local] "$request" '
    '$status $body_bytes_sent $proxy_host $upstream_addr "$http_referer" '
    '"$http_user_agent" "$http_x_forwarded_for" "$geoip_country_code"';

nginx -t

service nginx restart
service nginx status

Could not resolve host ...

[root@localhost user]# ip addr

[root@localhost user]# vi /etc/systemconfig/network-scripts/ifcfg-<ethernet card name>

ONBOOT=yes # 맨 아래 항목 no -> yes로 수정 후 저장

[root@localhost user]# dhclient

yum -y install telnet

telnet ip_address port_number
---> Connection timed out

telnet ip_address port_number
---> Connection refused

telnet ip_address port_number
---> Connected to ip_address
---> Escape character is '^]'.

yum install -y postgresql9.6*

/usr/pgsql-9.6/bin/postgresql96-setup initdb

systemctl start postgresql-9.6
systemctl enable postgresql-9.6

vi /var/lib/pgsql/9.6/data/pg_hba.conf
    host    all             all              127.0.0.1/0               md5
    host    all             user                       0.0.0.0/0                  md5
vi /var/lib/pgsql/9.6/data/postgresql.conf
   listen_address = '*'

systemctl restart postgresql-9.6

• create the user

sudo adduser access

• assign a password to the new user

sudo passwd access

• create the directory for file upload

sudo mkdir -p /var/sftp/uploads

• establish the root user as owner

sudo chown root:root /var/sftp

• grant write permissions to the root user and read to the other users

sudo chmod 755 /var/sftp

• modify the owner of uploads to be the user access

sudo chown access:access /var/sftp/uploads

• restrict the access by the terminal to the user access

sudo vi /etc/ssh/sshd_config

• In the final part of the file, add followings

Match User access

ForceCommand internal-sftp
PasswordAuthentication yes
ChrootDirectory /var/sftp
PermitTunnel no
AllowAgentForwarding no
AllowTcpForwarding no
X11Forwarding no

• Save the changes using the key combination

ESC + :wq

• apply the changes in SSH

sudo systemctl restart sshd

• SSH connection

ssh acces@{server_ip}

• Use the sftp protocol

sftp access@{server_ip}