Apache, a leading open-source web server software, is the foundation for countless websites and applications across the globe. If you’re planning to install Apache on Ubuntu 22.04 Jammy Jellyfish or its older stable release Ubuntu 20.04 Focal Fossa, you’re aligning with a choice trusted by developers and system administrators for its reliability, flexibility, and robust performance.
Key Highlights of Apache:
- Multi-Processing Modules (MPMs): Apache’s MPMs enable the server to adapt its connection and request handling, optimizing for specific workloads and system configurations.
- Optimized Performance: Enhanced memory management, swift request processing, and rapid content delivery underscore Apache’s commitment to performance excellence.
- Extensive Module Support: Apache’s modular design facilitates the addition of functionalities like authentication, proxying, caching, and URL rewriting, tailoring the server to specific needs.
- Robust Security Measures: With features like mod_security for web application firewalling and SSL/TLS for encrypted connections, Apache prioritizes the security of web interactions.
- IPv6 Ready: Apache’s compatibility with IPv6 ensures the server is prepared for the evolving internet addressing system.
- User-Friendly Configuration: The organized configuration system in Apache simplifies server management and customization tasks for administrators.
- Cross-Platform Availability: With support for platforms including Windows, macOS, and Linux, Apache guarantees adaptability and broad user reach.
Embarking on the Apache journey ensures a stable, secure, high-performing web server environment. The subsequent guide will detail the steps to seamlessly install Apache on Ubuntu 22.04 Jammy Jellyfish or Ubuntu 20.04 Focal Fossa. Equip yourself to deliver unparalleled web services with Apache’s robust capabilities.
Table of Contents
Install Apache on Ubuntu 22.04 or 20.04 via APT
Step 1: Update Ubuntu Before Apache Installation
Before you begin the installation process, you must update your Ubuntu operating system to ensure all existing packages are up to date. This helps you maintain a stable and secure environment. To update your system, open the terminal and execute the following command:
sudo apt update && sudo apt upgradeStep 2: Install Apache on Ubuntu 22.04 or 20.04 via APT Command
There are two installation methods to choose from when installing Apache on Ubuntu: using the default Ubuntu repository or Ondrej Sury’s PPA.
Option 1: Install Apache with Ubuntu Default Repository
The first option to install Apache is to use the default Ubuntu repository. This method is practical for most users, providing a stable and secure version of Apache. To install Apache using the default repository, open your terminal and execute the following command:
sudo apt install apache2After the installation is complete, verify its success by checking Apache’s build version:
apache2 --versionOption 2: Install Apache on Ubuntu 22.04 or 20.04 via PPA
Apache is available within Ubuntu’s software repositories by default, making it easy to install. However, like most repositories on Ubuntu LTS versions, it can often lag behind in terms of the latest features and improvements, although security risks are usually addressed.
For those who want the most up-to-date version of Apache 2 with additional widely-used modules, it is recommended to install Ondřej Surý’s version of Apache 2. To do this, follow the steps below:
Add Ondřej Surý PPA for Ubuntu with the following command:
sudo add-apt-repository ppa:ondrej/apache2 -yUpdate your package list to reflect the newly imported Apache repository:
sudo apt updateInstall the Apache 2 package from Ondřej Surý’s repository:
sudo apt install apache2Once installed, confirm the version by running the following command:
apache2 -vConfigure UFW Firewall for Apache on Ubuntu 22.04 or 20.04
After installing the Apache web server, it’s essential to configure the UFW (Uncomplicated Firewall) rules to allow outside access to the default web ports. Apache conveniently registers itself with UFW during installation, providing several profiles to enable or disable access quickly and easily.
Step 1: Check UFW Installation
Before configuring the UFW firewall, ensure that UFW is installed on your system. To check if UFW is installed, run the following command:
sudo ufw statusIf UFW is not installed, you can install it with the following command:
sudo apt install ufwAfter installing UFW, enable it with this command:
sudo ufw enableStep 2: List Available Application Profiles
First, list the application profiles to see the available Apache profiles by running the following command:
sudo ufw app listExample output:
Available applications:
Apache
Apache Full
Apache SecureFrom the output above, you have three profile options to choose from. To break it down, Apache runs on port 80 (HTTP), Apache Secure runs on port 443 (HTTPS), and Apache Full combines both. The most common choices are either Apache Full or Apache Secure.
Step 3: Configure UFW Firewall Rules for Apache on Ubuntu
For this tutorial, since we have not set up SSL, we will enable the Apache profile with the following command:
sudo ufw allow 'Apache'Example output:
Rule added
Rule added (v6)As shown above, the rules have been added for IPv4 and IPv6. Later, you can disable this profile and enable secure only or disable the Apache rule and use the Apache Full rule instead.
Step 4: Whitelist IP Addresses and Ranges
You can also whitelist specific IP addresses, IP ranges, or local IP addresses to grant access to your Apache web server. To allow access from a single IP address, use the following command:
sudo ufw allow from <IP_ADDRESS>Replace <IP_ADDRESS> with the actual IP address you want to whitelist.
To allow access from a range of IP addresses, use the following command:
sudo ufw allow from <IP_RANGE> to any port <PORT_NUMBER>Replace <IP_RANGE> with the actual range of IP addresses (e.g., 192.168.1.0/24) and <PORT_NUMBER> with the appropriate port number (e.g., 80 for HTTP or 443 for HTTPS).
To allow access from a local IP address, use the following command:
sudo ufw allow from 192.168.1.0/24This command will allow access from all IP addresses in the 192.168.1.0/24 subnet.
Following these steps, you will have successfully configured the UFW firewall rules for your Apache web server, ensuring a secure and controlled access environment.
Verify Apache Installation on Ubuntu 22.04 or 20.04
Now that you have installed and configured the UFW firewall, it’s time to test if Apache 2 is reachable and working correctly by requesting a page.
Step 1: Find Your Server’s IP Address
You can access the default Apache landing page to check if the software runs correctly through your server’s IP address. If you don’t know your server’s IP address, you can find it using the following command:
hostname -IYou should receive the internal IP address of the server as an example:
###Example Only###
192.168.50.15 You may get 2 to 3 results back. Try each one until you find the correct IP address.
If you need your public IP address (external), use the following command instead:
curl -4 icanhazip.comIf the curl package is missing, you can install it by executing the following command:
sudo apt install curl -yStep 2: Access the Apache Landing Page on Ubuntu
Once you have your server’s IP address, open your favorite internet browser and enter the following in the address bar:
http://your_server_ipReplace your_server_ip with the actual IP address you retrieved earlier.
Step 3: Verify the Apache Default Page on Ubuntu 22.04 or 20.04
You should see the following page in your internet browser:
This page confirms that your Apache web server is up and running. This default page indicates that Apache 2 functions correctly and is reachable through the specified IP address.
Configure Virtual Hosts for Apache on Ubuntu 22.04 or 20.04
Using the Apache web server, you can create virtual hosts to manage configurations for multiple domains on a single server. If you have used Nginx before, virtual hosts are the equivalent of server blocks. In the example below, we will create a domain example-domain.com, which you will replace with your domain name.
Step 1: Create and Configure Directories for Apache on Ubuntu
By default, Apache on Ubuntu has one server block enabled that is configured to serve documents from the /var/www/html directory. If you operate one website, you can modify this server block to suit your needs. However, if you are hosting multiple websites, you need to create a new directory structure for your various domains.
First, leave the /var/www/html directory intact as the default directory. Then, create a new directory for example-domain.com, as shown below:
sudo mkdir /var/www/example_domainNext, assign ownership of the directory with the $USER environment variable:
sudo chown -R $USER:$USER /var/www/example_domainUsually, the web root permissions should be set correctly, and you can verify them using the ls -l command:
ls -l /var/www/Example output:
drwxr-xr-x 2 joshua joshua 4096 Apr 18 15:25 example_domain drwxr-xr-x 2 root root 4096 Apr 18 15:23 html
As you can see, we have the permission of drwxr-xr-x, which is the equivalent of chmod 755. If you do not have this permission set, run the following command:
sudo chmod -R 755 /var/www/example_domainNow create a sample index.html page using your favorite text editor. In this tutorial, we will use nano:
sudo nano /var/www/example_domain/index.htmlIn the file, copy and paste the following code:
<html>
<head>
<title>Welcome to Website!</title>
</head>
<body>
<h1>Success! The virtual host is working! You did not mess it up.</h1>
</body>
</html>Save the file (CTRL+O), then exit (CTRL+X).
Step 2: Create a Virtual Host for Apache on Ubuntu
Now that you have created a landing page and set correct ownership and permissions, you can create a virtual host file. By default, all virtual host files need to be located at /etc/apache2/sites-available/ directory.
First, use your favorite text editor to create a configuration file located at /etc/apache2/sites-available/example_domain.conf:
sudo nano /etc/apache2/sites-available/example_domain.confNow, copy and paste the following into the configuration block file, remembering to replace your ServerName, ServerAlias, and DocumentRoot with your own:
<VirtualHost *:80>
ServerAdmin webmaster@localhost
ServerName example_domain
ServerAlias www.example_domain
DocumentRoot /var/www/example_domain
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>Remember to change the required server directives to your own.
Save the configuration file using (CTRL+O) and exit with (CTRL+X).
Step 3: Enable Virtual Host for Apache on Ubuntu
Now that your virtual host configuration file is ready, it’s time to enable it. With Apache, unlike Nginx, where you would create a symlink using the ln -s command, Apache uses its tools, as demonstrated below:
First, disable the existing default installed server block file 000-default.conf with the a2dissite command:
sudo a2dissite 000-default.confNow enable your virtual host file with the a2ensite command:
sudo a2ensite example_domain.confLike most web server applications, Apache has a dry run function. Before making it live, test your configuration file using the following command:
sudo apache2ctl configtestIf everything is working correctly, the example output should be:
Syntax OKNow restart the Apache web server to make your new virtual host live with the following command:
sudo systemctl restart apache2Apache should currently serve the landing page you created for your new domain. To test this, open your internet browser and type in your domain name http://example_domain, where you should see the following landing page you created in the index.html file:
Secure Apache with Let’s Encrypt Free SSL Certificate on Ubuntu 22.04 or 20.04
To enhance the security and privacy of your website, it is essential to run your Apache web server on HTTPS using an SSL/TLS certificate. One of the best ways to achieve this is by using Let’s Encrypt, a free, automated, and open certificate authority operated by the nonprofit Internet Security Research Group (ISRG).
Step 1: Install Certbot for Apache on Ubuntu
First, you must install the certbot package, which automates obtaining and installing SSL/TLS certificates from Let’s Encrypt. Execute the following command:
sudo apt install python3-certbot-apache -yStep 2: Create and Configure SSL Certificate for Apache on Ubuntu
Once you have installed certbot, run the following command to create your SSL/TLS certificate and configure it with your Apache web server:
sudo certbot --apache --agree-tos --redirect --hsts --staple-ocsp --email you@example.com -d www.example.comThis command includes options for:
- Force HTTPS 301 redirects (
--redirect) - Strict-Transport-Security header (
--hsts) - OCSP Stapling (
--staple-ocsp)
Adjust the email address and domain name to match your requirements.
Step 3: Verify SSL Configuration with Apache on Ubuntu
Now your website’s URL should be https://www.example.com instead of http://www.example.com. If you attempt to access the website using the old HTTP URL, it will automatically redirect to HTTPS, ensuring a secure connection.
You can verify the SSL configuration by visiting your website and checking for the padlock symbol in your browser’s address bar. This symbol indicates that the connection is secure and encrypted.
Step 4: Automate Certificate Renewal
Let’s Encrypt certificates are valid for 90 days, so it is crucial to set up automated renewal. By default, Certbot includes a cron job or systemd timer to handle renewals automatically. To test the renewal process manually, run the following command:
sudo certbot renew --dry-runThis command performs a dry run of the renewal process, checking whether the renewal will work without actually renewing the certificate. If the test is successful, you can be confident that your certificate will be renewed automatically before it expires.
Managing Apache on Ubuntu 22.04 or 20.04
Managing Apache Service on Ubuntu
Now that your Apache web server is successfully running on your server, it’s essential to understand some key management aspects. This section’ll discuss managing server logs and basic Apache commands for day-to-day management.
Apache Server Logs
Analyzing and searching Apache logs is essential for identifying issues, monitoring user activity, and gaining insights into the server’s performance. In this section, we’ll provide some examples of Linux commands you can use to search and analyze Apache logs.
1. Display the last few lines of a log file:
The tail command allows you to view the last few lines of a log file. This can be useful for monitoring recent activity or errors.
tail /var/log/apache2/access.log
tail /var/log/apache2/error.log2. Monitor log file in real-time:
Use the tail -f command to monitor log files in real-time, which is useful for observing live user activity or troubleshooting issues as they occur.
tail -f /var/log/apache2/access.log
tail -f /var/log/apache2/error.log3. Search for specific keywords in log files:
The grep command allows you to search for specific keywords or patterns in log files. For example, you can search for occurrences of the “404” error code in the error log:
grep "404" /var/log/apache2/error.log4. Count the occurrences of a specific keyword or pattern:
You can use grep in combination with the -c flag to count the occurrences of a specific keyword or pattern in log files. For example, to count the number of “500” error codes in the error log:
grep -c "500" /var/log/apache2/error.log5. Display unique IP addresses that have accessed the server:
Use the awk command to display unique IP addresses that have accessed your server by analyzing the access log:
awk '{print $1}' /var/log/apache2/access.log | sort | uniqThese are just a few examples of using Linux commands to search and analyze Apache logs.
Common Apache Commands on Ubuntu
The following are some of the most common Apache commands you will use for day-to-day management when working with the Apache web server:
Stop Apache web server:
sudo systemctl stop apache2Start Apache web server:
sudo systemctl start apache2Restart Apache web server:
sudo systemctl restart apache2Reload Apache web server: (For minor changes that don’t require a complete restart)
sudo systemctl reload apache2Disable Apache on server boot:
sudo systemctl disable apache2Enable Apache on server boot: (Automatically enabled upon installation)
sudo systemctl enable apache2Additional Commands for Apache on Ubuntu 22.04 or 20.04
In this section, we will discuss various additional commands that can help manage Apache on Ubuntu, such as updating, upgrading, and removing Apache.
Update Apache on Ubuntu 22.04 or 20.04
Keeping your Apache server up-to-date is crucial to ensure security and optimal performance. To check for updates and apply them when necessary, follow these steps:
Check for available updates:
Before updating Apache, you should check for available updates for your system:
sudo apt updateUpgrade Apache:
If an Apache update is available, you can upgrade it using the following command:
sudo apt upgradeNote that it’s always a good idea to create backups or server images if your Apache service is running critical applications. While most updates are safe, occasional issues can arise during upgrades.
Remove Apache From Ubuntu 22.04 or 20.04
If you no longer require Apache on your server, you can remove it using the following steps:
To uninstall Apache, execute the command:
sudo apt remove apache2This command will also remove any unused dependencies that were installed alongside Apache.
Conclusion
This guide covered installing, configuring, and managing Apache 2 HTTPD on Ubuntu Linux. Following the steps outlined, you should have a fully functional and secure Apache web server that can easily host multiple websites. Remember to keep your server up-to-date and maintain proper security measures to ensure a smooth user experience.