460 likes | 583 Vues
Technical Overview. RaQ 2. RaQ 2 Hardware. “RaQ ‘em and stack ‘em”. Hardware Specifications. 10/100 Ethernet; single or dual Ultra SCSI connector (RaQ 2+) 30W max power LED status lights; front and back 1 RU form factor enables up to 40 units in a standard rack
E N D
Technical Overview RaQ 2
RaQ 2 Hardware “RaQ ‘em and stack ‘em”
Hardware Specifications • 10/100 Ethernet; single or dual • Ultra SCSI connector (RaQ 2+) • 30W max power • LED status lights; front and back • 1 RU form factor enables up to 40 units in a standard rack • Various RAM sizes (upgradeable) • Various hard drive configurations
LCD Panel • Panel has “root”-level access • Set IP number* (ifconfig) • Set subnet mask (ifconfig) • Set gateway (ifconfig) • Can restart or shutdown system (shutdown) *DHCP server can assign IP number
Software Specifications “LINUX…Cobalt’s Way”
Software Specifications • Cobalt LINUX ported from Red Hat LINUX • Kernel 2.0.34 (with Cobalt enhancements) • Apache 1.3.3 • Full module support (/etc/httpd/modules/) • Bind 8.1.2 DNS server • Sendmail 8.9.3 • Second generation Cobalt administration interface; Customer requested changes
Additional Features • Significant Security improvements • PAM authentication (Plug-able Authentication Modules) • Winner of LINUX World’s Security Award (July 1999, San Jose) • Enhanced DNS administration • Majordomo mail-list support
RaQ 2 Initial Setup The Welcome Screen and Setup Wizard
“Welcome” From ANY html browser access the RaQ 2 using the IP number (Windows, MacOS, LINUX, etc.)
4 Entries: • Host • Domain • Primary DNS • Secondary DNS Type password in twice - it does not echo on-screen Decide what services Network Time Protocol NTP (for atomic clocks sync) Web Setup – Page 1/1
RaQ 2 Administration “Reducing work…”
Administrative Capabilities of the Site User • Modify • Password • Email forwarding • Email vacation autoresponder • Post data files to home directory • Post web content to home directory via FTP • Backup / restore home directory
Administrative Capabilities of the Site Administrator • All the capabilities of the site user, plus… • Create & delete users • Manage users’ settings • Email aliases • Determine access rights and level of users • Modify the web pages associated to site • View / download web log data • Perform site backup & restore • Post files to FTP site
Administrative Capabilities of the RaQ 2 Administrator • All the abilities of the site administrator, plus… • “root” access • Creates and delete sites • Determine service status for web, ftp, email, shell • Manages email configuration • Creates / manages DNS • Performs maintenance • Backup and restore • Update software • Monitoring system operation and status
Site administrators can only manage their domains, and not access or affect others RaQ admin siteadm@dom1.com siteadm@dom2.com siteadm@dom3.com siteadm@dom4.com user2@dom1.com user2@dom2.com Users manage themselves without disruption of others on the box user4@dom1.com user4@dom4.com user5@dom3.com RaQ 2 Administration RaQ ADMINISTRATOR MANAGES IT ALL • All the abilities of the site administrator, plus… • “root” access • Creates and delete sites • Determine service status for web, ftp, email, shell • Manages email configuration • Creates / manages DNS • Performs maintenance • Backup and restore • Update software • Monitoring system operation and status Administration Hierarchy USERS ADMINISTRATE THEMSELVES • Modify password • Email forwarding & vacation autoresponder • Backup home directory • Restore home directory • All the capabilities of the site user, plus… • Create & delete users • Manage users’ settings • Email aliases • Determine access rights and level of users • Modify the web pages associated to site • View / download web log data • Perform site backup & restore • Post files to FTP site
RaQ admin: RaQ 2 Services Email FTP Telnet SNMP Web DNS
RaQ admin: Email E-Mail
RaQ admin: Email Parameters • Use the Control Panel to allow e-mail for a domain (rather than a hostname).
RaQ admin: SNMP Parameters • Support for Public & R/W Communities • Includes Linux specific MIB information • Reports each IP interface • Current System Load • Load average over 1, 5 & 15 minutes • CPU type
Only one domain displays at a time RaQ admin: DNS Parameters • Enhanced interface provides support for A, CNAME, MX & PTR records
RaQ admin: Adding DNS Records Authoritative and Alias Records
RaQ admin: DNS: MX & Reverse DNS Each IP address should have just one Reverse recordNet Mask is RFC 2317 compliant to support small (<255) network ranges A domain can have multiple precedence Mail Exchange records
RaQ admin: DNS: Secondary DNS Many NIC’s (esp. Europe) now require two NS records to be populated before they will register a domain. They will check your Primary Server to verify that the domain is being served.
RaQ admin: RaQ 2 Services Web Server (Apache)
Virtual Site List, which is basically httpd.conf Click on Add Virtual Site, to add a site RaQ admin: Server Hosting Management Note: Access to this screen is restricted to the RaQ admin
Enter IP number, hostname, domain name… This box auto-modifies mail parameters and has Apache work well integrated with Sendmail Decide whether a site has shell accounts, cgi, SSI, Frontpage extensions Anonymous FTP configuration RaQ admin: Add Virtual Site
Site admin • All the capabilities of the site user, plus… • Create & delete users • Manage users’ settings • Email aliases • Determine access rights and level of users • Modify the web pages • View / download web log data • Perform site backup & restore • Post files to FTP site The Green Screen
Site admin: Add/Delete users Once you create a site, you should populate it with users and at least 1 Site Admin.
Site admin: Add users Options Telnet Access (shell account) Leave this off for POP / E-mail only Promote / demote Site Admin Enable FrontPage if the RaQ admin has enabled it for the site Set E-mail Aliases
Site admin: Users List Standard User tool set Site Admin Telnet Access Modify user E-mail settings Delete User
Site admin: Add Mailing List (majordomo) • Site admins can create mail lists with multiple recipients locally or externally
Site admin gets an information but can’t make changes Site admin: Settings (v. RaQ admin) RaQ admin can set all values
Site admin: FTP Settings • Anonymous FTP Configuration The number of simultaneous users puts a cap on FTP related system load
Site admin: Disk Usage • Disk Usage: cool feature Reporting is done by site & user
Site admin: Web Usage • Web Usage: The reporting engine is based on Analog You can download log data for processing on a PC
Site admin: Backup • The RaQ 2 supports several backup strategies • Full Backup • Incremental Backup For RaQ admin: A list of all hosted sites. For site admin: the owned site Incremental / Full Backup For RaQ admin: The list of all users on the RaQ For Site admin: The list of all users on the site
Site admin: Restore • There are several ways to restore files • Full restore • Incremental restore • supports selective restore of individual files
User Self Administration • Profile Settings
FrontPage Extensions • Features: • FrontPage97/98/2000 compatibility • Most Secure Implementation - never runs as root • Fully abstracted through the User Interface - no telnet access is necessary • For security reasons, we do not use Microsoft’s web based “Admin Tools”
CGI / Programming Support • Shell / Perl / C scripts can be run in site or user directories • Server Side Includes (SSI) can be enabled through the UI • PHP 3.0.7 with backend database hooks to mySQL or postgreSQL
3rd Party Applications • Databases • MySQL • PostgreSQL • Java - Kaffe 1.2 from Transvirtual • egcs C/C++ compiler • Kai Kuck C++ preprocessor