Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Vjezba 1
- OS1
- nmtui
- -napraviti bond adapter
- -dodati dva adaptera u bond sa ispravnim nazivom
- -podesiti da su aktivni
- sysctl -w net.ipv4.ip_forward=1 -radi forward paketa
- cat /proc/sys/net/ipv4/ip_forward -provjera, mora biti 1
- iptables -t nat -A POSTROUTING -o ens192 -j MASQUERADE
- OS2
- nmtui
- -napraviti bond adapter
- -dodati dva adaptera u bond sa ispravnim nazivom
- -podesiti da su aktivni
- -podesiti GW (OS1) i DNS(8.8.8.8)
- ifdown ens192
- ip route add 0.0.0.0/32 via 192.168.1.2 dev nm-bond
- vi /etc/resolv.conf
- -dodati liniju "nameserver 8.8.8.8"
- nslookup 1.1.1.1
- Vježba 2.
- hostnamectl set-hostname rhelserver
- vi /etc/hosts - dodati zapise za server i client
- Na serveru
- yum -y install openldap compat-openldap openldap-clients openldap-servers
- openldap-servers-sql openldap-devel
- systemctl start slapd.service
- systemctl enable slapd.service
- slappasswd -spremiti hash od nove lozinke
- vi db.ldif
- dn: olcDatabase={2}hdb,cn=config
- changetype: modify
- replace: olcSuffix
- olcSuffix: dc=example,dc=com
- dn: olcDatabase={2}hdb,cn=config
- changetype: modify
- replace: olcRootDN
- olcRootDN: cn=ldapadm,dc=example,dc=com
- dn: olcDatabase={2}hdb,cn=config
- changetype: modify
- replace: olcRootPW
- olcRootPW: {SSHA}------UMETNI PASSWORD --------
- ldapmodify -Y EXTERNAL -H ldapi:/// -f db.ldif
- vi monitor.ldif
- dn: olcDatabase={1}monitor,cn=config
- changetype: modify
- replace: olcAccess
- olcAccess: {0}to * by
- dn.base="gidNumber=0+uidNumber=0,cn=peercred,cn=external, cn=auth" read by
- dn.base="cn=ldapadm,dc=example,dc=com" read by * none
- ldapmodify -Y EXTERNAL -H ldapi:/// -f monitor.ldif
- openssl req -new -x509 -nodes -out /etc/openldap/certs/exampleldapcert.pem -
- keyout /etc/openldap/certs/exampleldapkey.pem -days 365
- chown -R ldap:ldap /etc/openldap/certs/*.pem
- ldapmodify -Y EXTERNAL -H ldapi:/// -f certs.ldif
- slaptest –u
- cp /usr/share/openldap-servers/DB_CONFIG.example /var/lib/ldap/DB_CONFIG
- chown ldap:ldap /var/lib/ldap/*
- ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/openldap/schema/cosine.ldif
- ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/openldap/schema/nis.ldif
- ldapadd -Y EXTERNAL -H ldapi:/// -f /etc/openldap/schema/inetorgperson.ldif
- vi test.ldif
- dn: uid=test,ou=People,dc=example,dc=com
- objectClass: top
- objectClass: account
- objectClass: posixAccount
- objectClass: shadowAccount
- cn: test
- uid: test
- uidNumber: 9999
- gidNumber: 100
- homeDirectory: /home/test
- loginShell: /bin/bash
- gecos: Test [Test (at) Example]
- userPassword: {crypt}x
- shadowLastChange: 17058
- shadowMin: 0
- shadowMax: 99999
- shadowWarning: 7
- ldapadd -x -W -D "cn=ldapadm,dc=example,dc=com" –f test.ldif
- ldappasswd -s test123 -W -D "cn=ldapadm,dc=example,dc=com" -x "uid=test,ou=People,dc=example,dc=com"
- ldapsearch -x cn=test -b dc=example,dc=com
- Klijent
- yum install -y openldap-clients nss-pam-ldapd
- authconfig --enableldap --enableldapauth --ldapserver=10.10.49.181 --ldapbasedn="dc=example,dc=com" --enablemkhomedir -–update
- systemctl restart nslcd
- Getent passwd test
- Vježba 3.
- yum -y install dhcp
- vi /etc/sysconfig/dhcpd
- DHCPDARGS=ens224
- vi /etc/sysconfig/network-scripts/ifcfg-ens224
- DEVICE=ens224
- BOOTPROTO=none
- ONBOOT=yes
- PREFIX=24
- IPADDR=192.168.1.1
- systemctl restart network
- cp /usr/share/doc/dhcp-4.2.5/dhcpd.conf.example /etc/dhcp/dhcpd.conf
- vi /etc/dhcp/dhcpd.conf
- option domain-name "tecmint.lan";
- option domain-name-servers ns1.tecmint.lan, ns2.tecmint.lan;
- default-lease-time 3600;
- max-lease-time 7200;
- authoritative;
- subnet 192.168.56.0 netmask 255.255.255.0 {
- option routers 192.168.1.1;
- option subnet-mask 255.255.255.0;
- option domain-search "tecmint.lan";
- option domain-name-servers 192.168.1.1;
- range 192.168.56.10 192.168.56.100;
- }
- yum install bind bind-utlis -y
- vi /etc/named.conf
- listen-on port 53 { 127.0.0.1; 192.168.1.101;}; ### Master DNS IP ###
- allow-query { localhost; 192.168.1.0/24;}; ### IP Range ###
- zone "domena1.local" IN {
- type master;
- file "forward.domena1";
- allow-update { none; };
- };
- zone "1.168.192.in-addr.arpa" IN {
- type master;
- file "reverse.domena1";
- allow-update { none; };
- };
- vi /var/named/forward.unixmen
- $TTL 86400
- @ IN SOA racunalo.domena.local. root.domena.local. (
- 2011071001 ; Serial
- 3600 ; Refresh
- 1800 ; Retry
- 604800 ; Expire
- 86400 ; Minimum TTL
- )
- @ IN NS racunalo.domena.local.
- @ IN A 192.168.1.1
- @ IN A 192.168.1.100
- racunalo IN A 192.168.1.1
- localhost IN A 192.168.1.100
- vi /var/named/reverse.unixmen
- $TTL 86400
- @ IN SOA racunalo.domena.local. root.domena.local. (
- 2011071001 ; Serial
- 3600 ; Refresh
- 1800 ; Retry
- 604800 ; Expire
- 86400 ; Minimum TTL
- )
- @ IN NS racunalo.domena.local.
- racunalo IN A 192.168.1.1
- localhost IN A 192.168.1.100
- 1 IN PTR racunalo.domena.local.
- 100 IN PTR localhost.domena.local
- systemctl enable named
- systemctl start named
- chgrp named -R /var/named
- chown -v root:named /etc/named.conf
- restorecon -rv /var/named
- restorecon /etc/named.conf
- named-checkconf /etc/named.conf
- named-checkzone domena.local /var/named/forward.local
- named-checkzone domena.local /var/named/reverse.local
- Postfix
- yum -y install postfix*
- vi /etc/postfix/main.cf
- 76 myhostname=rhelserver111.domena1.local
- 83 mydomain = domena1.local
- 99 myorigin=$mydomain
- 113 inet_interfaces= all
- 165 mydestination=...
- 264 mynetworks = 192.168.1.0/24, 127.0.0.0/8
- 419 home_mailbox = Maildir/
- :x
- mail -s "test" root@rehlserver111 < /etc/hosts
- yum -y install dovecot*
- yum -y install telnet
- telnet rhelserver111 25
- ehlo rhelserver111.domena1.local
- mail from: mailtest
- rcpt to: mailtest
- data
- tekst
- .
- quit
- vi /etc/dovecot/dovecot.conf
- 24 protocols=imap pop3 lmtp
- vi /etc/dovecot/conf.d/10-auth.conf
- 10 disable_plaintext_auth = yes
- 100 auth_mechanisms = plain login
- vi /etc/dovecot/conf.d/10-mail.conf
- 24 mail_location = maildir...
- vi /etc/dovecot/conf.d/10-master.conf
- 91 user = postfix
- 92 group = postfix
- systemctl start dovocet; systemctl restart postfix
- chkconfig dovecot
- telnet localhost 993
- netstat -an | more
- telnet rhelserver111 110
- user mailtest
- pass Pa$$w0rd
- stat
- retr 1
- Apache
- yum -y install httpd
- systemctl start httpd; systemctl enable httpd
- touch /var/www/html/index.html
- vi /var/www/html/index.html
- <html>
- Moja stranica
- </html>
- otvoriti Mozillu i upisati localhost/index.thml
- Virtualni hostovi
- cd /var/www/html
- mkdir prvi
- mkdir drugi
- mkdir treci
- chown apache:apache -R prvi
- chown apache:apache -R drugi
- chown apache:apache -R treci
- touch prvi/index.html
- vi prvi/index.html
- prvi site
- touch drugi/index.html
- vi drugi/index.html
- drugi site
- touch treci/index.html
- vi treci/index.html
- treci site
- cd /etc/httpd
- mkdir sites-available
- mkdir sites-enabled
- ls
- vi conf/httpd.conf
- IncludeOptional sites-enabled/*.conf
- cd sites-available
- vi prvi.com.conf
- <VirtualHost *:80>
- ServerName www.prvi.com
- ServerAlias prvi.com
- DocumentRoot /var/www/html/prvi/
- ErrorLog /var/www/html/prvi/error.log
- CustomLog /var/www/html/prvi/requests.log combined
- </VirtualHost>
- cp prvi.com.conf drugi.com.conf
- vi drugi.com.conf
- <VirtualHost *:80>
- ServerName www.drugi.com
- ServerAlias drugi.com
- DocumentRoot /var/www/html/drugi/
- ErrorLog /var/www/html/drugi/error.log
- CustomLog /var/www/html/drugi/requests.log combined
- </VirtualHost>
- cp prvi.com.conf treci.com.conf
- vi treci.com.conf
- <VirtualHost *:80>
- ServerName www.treci.com
- ServerAlias treci.com
- DocumentRoot /var/www/html/treci/
- ErrorLog /var/www/html/treci/error.log
- CustomLog /var/www/html/treci/requests.log combined
- </VirtualHost>
- ln -s /etc/httpd/sites-available/prvi.com.conf /etc/httpd/sites-enabled/prvi.com.conf
- ln -s /etc/httpd/sites-available/drugi.com.conf /etc/httpd/sites-enabled/drugi.com.conf
- ln -s /etc/httpd/sites-available/treci.com.conf /etc/httpd/sites-enabled/treci.com.conf
- cd /etc/httpd/sites-enabled
- ls
- setenforce 0
- systemctl restart httpd
- vi /etc/hosts
- 192.168.1.1 prvi.com
- 192.168.1.1 drugi.com
- 192.168.1.1 treci.com
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement