#  Setting Up an Apache Web Server

A web server allows for data hosted on one computer (the "server") to be accessable by other nodes on the network. We will refer to any nodes wanting to access the data as "clients".

This example notebook will demonstrate how to set up a client-server network topology on FABRIC, install Apache on a server node, and download files from the server node to a single client node.


## Configure the Environment

## Setup the Experiment

#### Import FABRIC API

In [1]:
from ipaddress import ip_address, IPv4Address, IPv6Address, IPv4Network, IPv6Network
from fabrictestbed_extensions.fablib.fablib import FablibManager as fablib_manager

fablib = fablib_manager()
                     
fablib.show_config();

0,1
Orchestrator,orchestrator.fabric-testbed.net
Credential Manager,cm.fabric-testbed.net
Core API,uis.fabric-testbed.net
Token File,/home/fabric/.tokens.json
Project ID,656d5ba5-76e6-44f2-9693-f65937c6de5e
Bastion Host,bastion.fabric-testbed.net
Bastion Username,comunidadoscar_0000173468
Bastion Private Key File,/home/fabric/work/fabric_config/fabric-bastion-key
Slice Public Key File,/home/fabric/work/fabric_config/slice_key.pub
Slice Private Key File,/home/fabric/work/fabric_config/slice_key


## Step 4: Create the Experiment Slice

The following creates two nodes with basic NICs connected to an isolated WAN Ethernet, as outlined in the [Create a Wide Area Ethernet (Layer 2) tutorial](../../fablib_api/create_l2network_wide_area_auto/create_l2network_wide_area_auto.ipynb). More advanced topologies can be created, so long as the server node is routable by each client attempting to access the server's data.

In [2]:
slice_name = 'MySlice-apache-web-server'
[site1,site2]  = fablib.get_random_sites(count=2)
print(f"Sites: {site1}, {site2}")

server_name = 'server'
client_name = 'client'
network_name='net1'
server_nic_name = 'server_nic'
client_nic_name = 'client_nic'

# We will use Ubuntu 20.04 for both nodes
image = 'default_ubuntu_20'

Sites: SEAT, UTAH


In this example, we will set up an L2 network. As discuss above, a different network configuration, such as using the FABNet L3 network should work, so long as the clients and server can route to each other.

In [3]:
try:
    #Create Slice
    slice = fablib.new_slice(name=slice_name)

    # Network
    net1 = slice.add_l2network(name=network_name, subnet=IPv4Network("192.168.1.0/24"))

    # Node1
    server = slice.add_node(name=server_name, site=site1, image=image)
    server_iface = server.add_component(model='NIC_Basic', name=server_nic_name).get_interfaces()[0]
    server_iface.set_mode('auto')
    net1.add_interface(server_iface)
    
    # Node2
    client = slice.add_node(name=client_name, site=site2, image=image)
    client_iface = client.add_component(model='NIC_Basic', name=client_nic_name).get_interfaces()[0]
    client_iface.set_mode('auto')
    net1.add_interface(client_iface)    

    #Submit Slice Request
    slice.submit()
except Exception as e:
    print(f"Exception: {e}")


Retry: 1, Time: 41 sec


0,1
ID,6ffd4a2a-ca9e-41e2-88a2-c752ea602492
Name,MySlice-apache-web-server
Lease Expiration (UTC),2024-05-16 00:02:08 +0000
Lease Start (UTC),2024-05-15 00:02:09 +0000
Project ID,656d5ba5-76e6-44f2-9693-f65937c6de5e
State,Closing


ID,Name,Cores,RAM,Disk,Image,Image Type,Host,Site,Username,Management IP,State,Error,SSH Command,Public SSH Key File,Private SSH Key File
6fe9f979-9ea3-4d59-a52a-a9297c0b01b4,client,2.0,8.0,10.0,default_ubuntu_20,qcow2,utah-w3.fabric-testbed.net,UTAH,ubuntu,,Closed,TicketReviewPolicy: Closing reservation due to failure in slice#,,/home/fabric/work/fabric_config/slice_key.pub,/home/fabric/work/fabric_config/slice_key
72af041d-1bc5-4748-9cac-9c792304e911,server,,,,default_ubuntu_20,qcow2,,SEAT,ubuntu,,Closed,Insufficient resources : [core]#,,/home/fabric/work/fabric_config/slice_key.pub,/home/fabric/work/fabric_config/slice_key


ID,Name,Layer,Type,Site,Subnet,Gateway,State,Error
a3804aee-1b6d-4984-8767-3ae04ff8926e,net1,L2,L2STS,,net1.subnet,net1.gateway,Closed,"redeem predecessor reservation# 72af041d-1bc5-4748-9cac-9c792304e911 is in a terminal state, failing the reservation# a3804aee-1b6d-4984-8767-3ae04ff8926e#"


Name,Short Name,Node,Network,Bandwidth,Mode,VLAN,MAC,Physical Device,Device,IP Address,Numa Node
server-server_nic-p1,p1,server,net1,100,auto,,,,,,
client-client_nic-p1,p1,client,net1,100,auto,,,,,,4.0



Time to print interfaces 41 seconds


## Get Slice information

In [4]:
slice = fablib.get_slice(name=slice_name)
server = slice.get_node(name=server_name)
client = slice.get_node(name=client_name)

Exception: Unable to find slice "MySlice-apache-web-server" for this project. Check slice name spelling and project id.

## Install Apache on the Server Node

In [None]:
apache_root_dir = "/var/www/html" # Default Root Directory to Store Web Server Files

try:
    print("Installing Apache...")
    stdout, stderr = server.execute("sudo apt-get update && sudo apt-get install -y apache2")
    print("Finished installing Apache.")
    
except Exception as e:
    print(f"Exception: {e}")

## Optional: Set Up Firewall

In [6]:
commands = [
    "sudo ufw allow 'Apache'",                                # Allow Port 80 Through Firewall
    "sudo ufw allow ssh",                                     # Allow Port 22 Through Firewall (IMPORTANT)
    "echo 'y' | sudo ufw enable"                              # Enable the Firewall
]

try:
    print("Setting up firewall...")
    for command in commands:
        stdout, stderr = server.execute(command)
    print("Finished setting up firewall.")
    
except Exception as e:
    print(f"Exception: {e}")

Setting up firewall...
Rules updated
Rules updated (v6)
Rules updated
Rules updated (v6)
Command may disrupt existing ssh connections. Proceed with operation (y|n)? Firewall is active and enabled on system startup
Finished setting up firewall.


## Check to Ensure the Firewall is Active

The command below should result in a table that looks like:

```
Status: active

To                         Action      From
--                         ------      ----
Apache                     ALLOW       Anywhere                  
22/tcp                     ALLOW       Anywhere                  
Apache (v6)                ALLOW       Anywhere (v6)             
22/tcp (v6)                ALLOW       Anywhere (v6)             
```

In [7]:
try:
    stdout, stderr = server.execute('sudo ufw status')
    print(stdout)
    
except Exception as e:
    print(f"Exception: {e}")

Status: active

To                         Action      From
--                         ------      ----
Apache                     ALLOW       Anywhere                  
22/tcp                     ALLOW       Anywhere                  
Apache (v6)                ALLOW       Anywhere (v6)             
22/tcp (v6)                ALLOW       Anywhere (v6)             

Status: active

To                         Action      From
--                         ------      ----
Apache                     ALLOW       Anywhere                  
22/tcp                     ALLOW       Anywhere                  
Apache (v6)                ALLOW       Anywhere (v6)             
22/tcp (v6)                ALLOW       Anywhere (v6)             




## Check to Ensure the Apache Service is Active

The command below should result in an entry that looks like:

```
● apache2.service - The Apache HTTP Server
     Loaded: loaded (/lib/systemd/system/apache2.service; enabled; vendor preset: enabled)
     Active: active (running) since ...
```

In [8]:
try:
    stdout, stderr = server.execute('sudo systemctl status apache2')
    print(stdout)
    
except Exception as e:
    print(f"Exception: {e}")

● apache2.service - The Apache HTTP Server
     Loaded: loaded (/lib/systemd/system/apache2.service; enabled; vendor preset: enabled)
     Active: active (running) since Mon 2024-05-06 22:04:39 UTC; 34s ago
       Docs: https://httpd.apache.org/docs/2.4/
   Main PID: 3046 (apache2)
      Tasks: 55 (limit: 9494)
     Memory: 5.4M
     CGroup: /system.slice/apache2.service
             ├─3046 /usr/sbin/apache2 -k start
             ├─3080 /usr/sbin/apache2 -k start
             └─3081 /usr/sbin/apache2 -k start

May 06 22:04:39 server systemd[1]: Starting The Apache HTTP Server...
May 06 22:04:39 server apachectl[3045]: AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 10.20.5.239. Set the 'ServerName' directive globally to suppress this message
May 06 22:04:39 server systemd[1]: Started The Apache HTTP Server.
● apache2.service - The Apache HTTP Server
     Loaded: loaded (/lib/systemd/system/apache2.service; enabled; vendor preset: enabled)


## Optional: Change Directory of Where Apache Files are Stored

Update the `apache_root_dir` variable below to the directory you would like to store your files.

In [9]:
apache_root_dir = "/home/ubuntu/apache_contents"
change_root = f"mkdir -p {apache_root_dir} && sudo sed -i 's,/var/www/html,{apache_root_dir},g' /etc/apache2/sites-available/000-default.conf && sudo sed -i 's,/var/www/html,{apache_root_dir},g' /etc/apache2/sites-available/default-ssl.conf && sudo sed -i 's,/var/www/,{apache_root_dir},g' /etc/apache2/apache2.conf"

try:
    stdout, stderr = server.execute(change_root)
    print(stderr)
    
except Exception as e:
    print(f"Exception: {e}")




Restart the Apache service to have the changes take effect.

In [10]:
try:
    stdout, stderr = server.execute("sudo service apache2 restart")
    print(stderr)
    
except Exception as e:
    print(f"Exception: {e}")




## Save Your Files to the Server

Here, we will create a new file called `download_me`, which will be a simple text file. Let's write `Congratualtions! The Apache server was setup correctly.` to our file by redirecting the string into the command `tee`, which writes the string into the file.

In [11]:
create_file = f'echo "Congratualtions! The Apache server was setup correctly." | sudo tee {apache_root_dir}/download_me'
try:
    stdout, stderr = server.execute(create_file)
    print("The file was created successfully.")
    
except Exception as e:
    print(f"Exception: {e}")

Congratualtions! The Apache server was setup correctly.
The file was created successfully.


## Download the File to the Client

We are now ready to test our web server! Let's download the `download_me` file we created to the client node using `wget`. Apache uses port 80 for normal, unencrypted web traffic.

In [12]:
server_addr = server.get_interface(network_name=network_name).get_ip_addr()


In [13]:
try:
    stdout, stderr = client.execute(f'wget {server_addr}:80/download_me')
    print(stdout,stderr)
    stdout, stderr = client.execute(f'cat download_me')
    print(stdout)
    
except Exception as e:
    print(f"Exception: {e}")

[31m --2024-05-06 22:05:59--  http://192.168.1.2/download_me
Connecting to 192.168.1.2:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 56
Saving to: ‘download_me’

     0K                                                       100% 22.5M=0s

2024-05-06 22:05:59 (22.5 MB/s) - ‘download_me’ saved [56/56]

 [0m --2024-05-06 22:05:59--  http://192.168.1.2/download_me
Connecting to 192.168.1.2:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 56
Saving to: ‘download_me’

     0K                                                       100% 22.5M=0s

2024-05-06 22:05:59 (22.5 MB/s) - ‘download_me’ saved [56/56]


Congratualtions! The Apache server was setup correctly.
Congratualtions! The Apache server was setup correctly.



## Delete the Slice

Please delete your slice when you are done with your experiment.

In [None]:
try:
    slice = fablib.get_slice(name=slice_name)
    slice.delete()
except Exception as e:
    print(f"Exception: {e}")