#  Setting Up an Apache Web Server

A web server allows for data hosted on one computer (the "server") to be accessable by other nodes on the network. We will refer to any nodes wanting to access the data as "clients".

This example notebook will demonstrate how to set up a client-server network topology on FABRIC, install Apache on a server node, and download files from the server node to a single client node.


## Configure the Environment

In [None]:
import os

# If you are using the FABRIC JupyterHub, the following three evnrionment vars
# were automatically provided when you logged in.
#os.environ['FABRIC_CREDMGR_HOST']='cm.fabric-testbed.net'
#os.environ['FABRIC_ORCHESTRATOR_HOST']='orchestrator.fabric-testbed.net'
#os.environ['FABRIC_TOKEN_LOCATION']=os.environ['HOME']+'/work/fabric_token.json'

# Set your FABRIC PROJECT ID
os.environ['FABRIC_PROJECT_ID']=<INSERT_YOUR_FABRIC_PROJECT_ID>

# Bastion IPs
os.environ['FABRIC_BASTION_HOST'] = 'bastion-1.fabric-testbed.net'

# Set your Bastion username and private key
os.environ['FABRIC_BASTION_USERNAME']=<INSERT_YOUR_FABRIC_USERNAME>
os.environ['FABRIC_BASTION_KEY_LOCATION']=os.environ['HOME']+'/work/fabric_bastion_key'

# Set the keypair FABRIC will install in your slice. 
os.environ['FABRIC_SLICE_PRIVATE_KEY_FILE']=os.environ['HOME']+'/.ssh/id_rsa'
os.environ['FABRIC_SLICE_PUBLIC_KEY_FILE']=os.environ['HOME']+'/.ssh/id_rsa.pub'

# If your slice private key uses a passphrase, set the passphrase
#from getpass import getpass
#print('Please input private key passphrase. Press enter for no passphrase.')
#os.environ['FABRIC_SLICE_PRIVATE_KEY_PASSPHRASE']=getpass()

## Setup the Experiment

#### Import FABRIC API

In [None]:
import json
import traceback

from fabrictestbed_extensions.fablib.fablib import fablib

## Step 4: Create the Experiment Slice

The following creates two nodes with basic NICs connected to an isolated WAN Ethernet, as outlined in the [Create a Wide Area Ethernet (Layer 2) tutorial](../../fablib_api/create_l2network_wide_area.ipynb). More advanced topologies can be created, so long as the server node is routable by each client attempting to access the server's data.

In [None]:
slice_name = 'MySlice'
[site1,site2]  = fablib.get_random_sites(count=2)
print(f"Sites: {site1}, {site2}")

server_name = 'server'
client_name = 'client'
network_name='net1'
server_nic_name = 'server_nic'
client_nic_name = 'client_nic'

# We will use Ubuntu 20.04 for both nodes
image = 'default_ubuntu_20'

In this example, we will set up an L2 network. As discuss above, a different network configuration, such as using the FABNet L3 network should work, so long as the clients and server can route to each other.

In [None]:
try:
    #Create Slice
    slice = fablib.new_slice(name=slice_name)

    # Node1
    server = slice.add_node(name=server_name, site=site1, image=image)
    server_iface = server.add_component(model='NIC_Basic', name=server_nic_name).get_interfaces()[0]
    
    # Node2
    client = slice.add_node(name=client_name, site=site2, image=image)
    client_iface = client.add_component(model='NIC_Basic', name=client_nic_name).get_interfaces()[0]
    
    # Network
    net1 = slice.add_l2network(name=network_name, interfaces=[server_iface, client_iface])

    #Submit Slice Request
    slice.submit()
except Exception as e:
    print(f"Exception: {e}")

## Print the Node Details

In [None]:
try:
    slice = fablib.get_slice(name=slice_name)
    for node in slice.get_nodes():
        print(f"{node}")
except Exception as e:
    print(f"Exception: {e}")

## Configure IP Addresses and Pick a Subnet

Create a subnet and list of available IP addresses. All objects are Python IP managment objects. You can use either IPv4 or IPv6 subents and addresses.

In [None]:
from ipaddress import ip_address, IPv4Address, IPv6Address, IPv4Network, IPv6Network

try:
    subnet = IPv4Network("192.168.1.0/24")
    available_ips = list(subnet)[1:]
except Exception as e:
    print(f"Exception: {e}")

## Configure the Server's Interface

In [None]:
try:
    server = slice.get_node(name=server_name)        
    server_iface = server.get_interface(network_name=network_name) 
    server_addr = available_ips.pop(0)
    server_iface.ip_addr_add(addr=server_addr, subnet=subnet)
    
    stdout, stderr = server.execute(f'ip addr show {server_iface.get_os_interface()}')
    print (stdout)
    
except Exception as e:
    print(f"Exception: {e}")

## Configure the Client's Interface

In [None]:
try:
    client = slice.get_node(name=client_name)        
    client_iface = client.get_interface(network_name=network_name) 
    client_addr = available_ips.pop(0)
    client_iface.ip_addr_add(addr=client_addr, subnet=subnet)
    
    stdout, stderr = client.execute(f'ip addr show {client_iface.get_os_interface()}')
    print (stdout)
    
except Exception as e:
    print(f"Exception: {e}")

## Install Apache on the Server Node

In [None]:
apache_root_dir = "/var/www/html" # Default Root Directory to Store Web Server Files

try:
    print("Installing Apache...")
    stdout, stderr = server.execute("sudo apt-get update && sudo apt-get install -y apache2")
    print("Finished installing Apache.")
    
except Exception as e:
    print(f"Exception: {e}")

## Optional: Set Up Firewall

In [None]:
commands = [
    "sudo ufw allow 'Apache'",                                # Allow Port 80 Through Firewall
    "sudo ufw allow ssh",                                     # Allow Port 22 Through Firewall (IMPORTANT)
    "echo 'y' | sudo ufw enable"                              # Enable the Firewall
]

try:
    print("Setting up firewall...")
    for command in commands:
        stdout, stderr = server.execute(command)
    print("Finished setting up firewall.")
    
except Exception as e:
    print(f"Exception: {e}")

## Check to Ensure the Firewall is Active

The command below should result in a table that looks like:

```
Status: active

To                         Action      From
--                         ------      ----
Apache                     ALLOW       Anywhere                  
22/tcp                     ALLOW       Anywhere                  
Apache (v6)                ALLOW       Anywhere (v6)             
22/tcp (v6)                ALLOW       Anywhere (v6)             
```

In [None]:
try:
    stdout, stderr = server.execute('sudo ufw status')
    print(stdout)
    
except Exception as e:
    print(f"Exception: {e}")

## Check to Ensure the Apache Service is Active

The command below should result in an entry that looks like:

```
● apache2.service - The Apache HTTP Server
     Loaded: loaded (/lib/systemd/system/apache2.service; enabled; vendor preset: enabled)
     Active: active (running) since ...
```

In [None]:
try:
    stdout, stderr = server.execute('sudo systemctl status apache2')
    print(stdout)
    
except Exception as e:
    print(f"Exception: {e}")

## Optional: Change Directory of Where Apache Files are Stored

Update the `apache_root_dir` variable below to the directory you would like to store your files.

In [None]:
apache_root_dir = "/home/ubuntu/apache_contents"
change_root = f"mkdir -p {apache_root_dir} && sudo sed -i 's,/var/www/html,{apache_root_dir},g' /etc/apache2/sites-available/000-default.conf && sudo sed -i 's,/var/www/html,{apache_root_dir},g' /etc/apache2/sites-available/default-ssl.conf && sudo sed -i 's,/var/www/,{apache_root_dir},g' /etc/apache2/apache2.conf"

try:
    stdout, stderr = server.execute(change_root)
    print(stderr)
    
except Exception as e:
    print(f"Exception: {e}")

Restart the Apache service to have the changes take effect.

In [None]:
try:
    stdout, stderr = server.execute("sudo service apache2 restart")
    print(stderr)
    
except Exception as e:
    print(f"Exception: {e}")

## Save Your Files to the Server

Here, we will create a new file called `download_me`, which will be a simple text file. Let's write `Congratualtions! The Apache server was setup correctly.` to our file by redirecting the string into the command `tee`, which writes the string into the file.

In [None]:
create_file = f'echo "Congratualtions! The Apache server was setup correctly." | sudo tee {apache_root_dir}/download_me'
try:
    stdout, stderr = server.execute(create_file)
    print("The file was created successfully.")
    
except Exception as e:
    print(f"Exception: {e}")

## Download the File to the Client

We are now ready to test our web server! Let's download the `download_me` file we created to the client node using `wget`. Apache uses port 80 for normal, unencrypted web traffic.

In [None]:
try:
    stdout, stderr = client.execute(f'wget {server_addr}:80/download_me')
    print(stdout,stderr)
    stdout, stderr = client.execute(f'cat download_me')
    print(stdout)
    
except Exception as e:
    print(f"Exception: {e}")

## Delete the Slice

Please delete your slice when you are done with your experiment.

In [None]:
try:
    slice = fablib.get_slice(name=slice_name)
    slice.delete()
except Exception as e:
    print(f"Exception: {e}")