Details, Installation, & Set-up of Debian based Linux Servers
From Wiki
Contents |
Server set-up and Associated Details:
Typical SERVER SET-UP
- Base Install of Debian Sarge
- #or Base Install of Debian Sarge with RAID
- Change from DHCP to Manual IP
- How to obtain Packages using APT
Range of SERVICEs, and INSTALLATION HOW-To's
All these services are based on a Debian base install using the current stable Debian Sarge, unless specifically stated otherwise. Similiarly, all these services are installed from Debian Packages from the Stable Repository using APT, unless specifically stated otherwise. It may be the case that the order of installation, or sequence of installing various packages may change, however APT & Debian Packages will take care of *any* dependencies.
A Service is typically one which typically requires ROOT permission to install, runs as a Special User on the server, starts up at boot time, and provides a key base service, with which applications run on top of.
- Manual setup of Iptables Firewall rules & startup scripts
- Shorewall Firewall
- DNS - Bind9
- Apache 2 & SSL - PHP4 - MySQL 4.1
- Postfix SMTP
- Courier IMAPS Server - Maildir
- Secure Outgoing SMTP via Postfix, Courier, TLS and SASL
- Squid Proxy
- Samba
- Snmpd & mrtg
- Munin Statistics
- Netsaint / Nagios
- ntp - Network Time Protocol
- ProFTPd Server
- Quota
- SMART
- NFS
- Anyterm
- Ajaxterm - Web SSH Terminal, alternative to Anyterm
- Trac and SVN
- Mailman
- Dante Socks Server
- Spamassassin setup and config
- Duplicity - secure incremental backup
- Procmail - setup with postfix
- Wine
- openvpn
- PPTP - vpn
APPLICATIONS INSTALLED
An application is one which can be installed by a User with limited permissions, runs ontop of a set of required services, e.g. MySQL, PHP, and is only run when accessed/required by a user.
- Squirrelmail
- Webalizer
- Awstats
- Mediawiki
- sun_jdk
- Rootkit Detection
- snort Network Intrusion Detection
- vnstat Network Traffic Logger and Monitor
Typical VHOSTS
VHOSTS - Virtual Hosts, are typically Web addresses which apache handles and serves out. Virtual Hosts require a DNS entry pointing to an IP Address where Apache is located. See the example of setting up these VHOSTS in Apache.
- http://burkesys.com
- http://wiki.kartbuilding.net
- https://mail.burkesys.com
- http://www.kartbuilding.net
- http://monitor.burkesys.com
Virtual Server (XEN) set-up and Associated Details
Setup of Base Hosting Server with XEN3 (dom0)
There are a number of routes that can be taken when installing Xen on a Server, in order to prepare it to run Virtual Servers. These routes/options are as follows:
- Use Debian Etch Xen Install -- The current working option with no problems.
- Use Debian Backports -- The chosen option, as it worked with least hassle.
- Use Xen Binaries
- Use Xen Source and Compiling
- Use Debian Testing (etch) Packages
Modify XEN (dom0): Resize Partitions, RAID1 & LVM Howto's
Create & Manage XEN Virtual Servers (domU)
- Create DomU
- Create Centos5 DomU on Debian Etch Dom0
- Manage XEND
- Ongoing Experiences with Xen
- Resize/Increase the Size of a File Based DomU Xen Filesystem
Xen Networking
Streamlining Xen
- Automatic domU Installs using xen-tools
Setup of New Xen Server
Linux Tips, Tricks & Commands to be Remembered:
Scripts OF THE TRADE
Tips and Tricks
TOOLS OF THE TRADE
Upgrading Debian Sarge to Debian Etch
- How to Upgrade Sarge to Etch via apt
- X Server Upgrading Issues
- Minor snmp Issue
- smartd and smartmontools problem/issue
- Syntax Highlighting Problems with vim
- nagios upgrade issue
- Squid Issue, Etch and a 2.4 Kernel
- Recommended Packages to Install after Upgrading to Etch
- Moving from Xen Backports to Debian Etch Xen Packages - Attempt1
- Issue with mounting root on a raid1 partition
Setting up a Secure and Stable Linux OS
Work for the Future:
- Secure Backup (gpg) across Cluster - Done. See: Duplicity - secure incremental backup
- Roll Out LDAP
- Try and install vmware on domU to run Windows
