Tuesday, October 4, 2011
Finally, Certified.
After several long months of study, I am finally an Oracle Certified Professional, specifically an Oracle Solaris 10 System Administrator.
Sunday, February 27, 2011
Solaris 10 Jumpstart
Our group inherited a bunch of SPARC workstations. It had been a while since I had tackled jumpstart, so with these extra machines, I decided to give it a go. First up was reloading one of the machines with Sol 10. Unfortunately we didn't have the passwords for any of these boxes, but I wanted to start fresh anyway. I took the defaults for the install, but selected ZFS for the export partition. I had a bit of a problem, since these machines will not be allowed on our network. The machine kept wanting to set up its interface. Finally I had to set it up as a standalone.
Over the weekend I picked up a wireless router to use it as a DHCP server. That did the trick, it allowed be to get the network access I would need to set up the jumpstart server and client enviroment.
I had previously downloaded the Solaris 10, update DVD. Many of the direction I found referred to the OS as being on cdroms, with the OS spread over a number of CDs. I took the DVD route. My jumpstart server has an ip address of 192.168.1.101, my client will be 192.168.1.102. 101 is called guajome-dome, while .102 will be called brownwrap.
1. I created a jumpstart directory: mkdir /export/jumpstart
2. Then went to the Tools directory of the install DVD:
cd /cdrom/cdrom0/Solaris_10/Tools
3. Ran the script to create the jumpstart server:
./setup_install_server /export/jumpstart
4. I then had to set up some services on the server, guajome-dome. I modiled /etc/inetd.conf and uncommented the tftp line to allow the client, brownwrap, to tftp to guajome-dome to grab the installation.
Then ran inetconv to add the service to the Service Management Facility (SFM).
Then enabled the service: svcadm enable tftpd
5. I then created a config directory: mkdir /export/jumpstart/config
and added two files to it sysidcfg and rules.
sysidcfg:
network_interface=primary {netmask=255.255.255.0}
security_policy=none
timezone=US/Mountain
system_locale=en_US
install_locale=en_US
name-service=none
rules:
hostname brownwrap - profile -
profile:
install_type initial_install
cluster SUNWCXall
partitionig explicit
filesystem
system_type standalone
Over the weekend I picked up a wireless router to use it as a DHCP server. That did the trick, it allowed be to get the network access I would need to set up the jumpstart server and client enviroment.
I had previously downloaded the Solaris 10, update DVD. Many of the direction I found referred to the OS as being on cdroms, with the OS spread over a number of CDs. I took the DVD route. My jumpstart server has an ip address of 192.168.1.101, my client will be 192.168.1.102. 101 is called guajome-dome, while .102 will be called brownwrap.
1. I created a jumpstart directory: mkdir /export/jumpstart
2. Then went to the Tools directory of the install DVD:
cd /cdrom/cdrom0/Solaris_10/Tools
3. Ran the script to create the jumpstart server:
./setup_install_server /export/jumpstart
4. I then had to set up some services on the server, guajome-dome. I modiled /etc/inetd.conf and uncommented the tftp line to allow the client, brownwrap, to tftp to guajome-dome to grab the installation.
Then ran inetconv to add the service to the Service Management Facility (SFM).
Then enabled the service: svcadm enable tftpd
5. I then created a config directory: mkdir /export/jumpstart/config
and added two files to it sysidcfg and rules.
sysidcfg:
network_interface=primary {netmask=255.255.255.0}
security_policy=none
timezone=US/Mountain
system_locale=en_US
install_locale=en_US
name-service=none
rules:
hostname brownwrap - profile -
profile:
install_type initial_install
cluster SUNWCXall
partitionig explicit
filesystem
system_type standalone
Sunday, January 9, 2011
Swatch and Logwatch
I had wanted to do some log monitoring without reinventing the world, so I looked around for some log monitoring tools. I found logwatch, which was easy enough to download and install. Had a little problem with configuration, but since I was only interested in watching ssh logins I impleted a command to do just that.
In my looking around, I also found Swatch. Swatch is actually a PERL script. We had a very old very of PERL, so I downloaded and installed the latest from CPAN. I did this because Swatch kept asking for PERL modules which weren't in our version. Once I installed the latest version of PERL, I only needed an additional four modules which I installed. After that I was able to get Swatch up and running and used this command to start it:
/export/home/ramosg/localperl/bin/swatch --tail-file=/var/adm/messages --tail-args -f
Swatch also looks for a config file which I set up in my home directory:
.swatchrc
watchfor /Failed none for/
mail addresses=gregory.c.ramos
In my looking around, I also found Swatch. Swatch is actually a PERL script. We had a very old very of PERL, so I downloaded and installed the latest from CPAN. I did this because Swatch kept asking for PERL modules which weren't in our version. Once I installed the latest version of PERL, I only needed an additional four modules which I installed. After that I was able to get Swatch up and running and used this command to start it:
/export/home/ramosg/localperl/bin/swatch --tail-file=/var/adm/messages --tail-args -f
Swatch also looks for a config file which I set up in my home directory:
.swatchrc
watchfor /Failed none for/
mail addresses=gregory.c.ramos
Tuesday, January 4, 2011
Security +
Well, I have taken a break from Linux for a while. New job, new state. One of my job requirements to meet DOD 8570 was to pass Security +. This was not a certification I would have gone after normally, but it was a job requirement, and it did get me back to studying again. So with that in mind, I have decided to pursue some Linux certs. The first up will be Linux+. I'll take that test and see how things go. If I pass it, it will get me not only Linux+, but LPI level 1, and Novell's Certified Linux Professional. So now, back to the books.
Subscribe to:
Posts (Atom)
