Keres: Difference between revisions
From Federal Burro of Information
Jump to navigationJump to search
(→Todo) |
No edit summary |
||
Line 8: | Line 8: | ||
* centos 7 | * centos 7 | ||
== Services / Apps == | |||
* wiki | |||
* smokeping https://www.quadratic.net/cgi-bin/smokeping.cgi | |||
* | |||
== Todo == | == Todo == |
Revision as of 18:37, 10 February 2016
This machine will put Athena out of service
E45M1 - I Deluxe - Mobo - from Martin McCourt - what a guy.
- AMD
- centos 7
Services / Apps
- wiki
- smokeping https://www.quadratic.net/cgi-bin/smokeping.cgi
Todo
- OS - DONE - centos 7
- firewalld - kicked out , not good logging features, so now have iptables back in and firewalld disabled.
- Wifi - none - disabled for now.
- snmp
- powertop tuning
- services
Service | Software | process | status | notes |
firewall | iptables | n/a | DONE | not using firewalld due to lack of default deny log. |
web | apache | httpd | DONE | |
ntp | chrony | chronyd | DONE | |
monitoring | misc | n/a | PENDING | still looking at optins, possibly ganglia / collectd / statsd |
sql | mariadb | mysqld | DONE | and backups done. |
dns | isc bind | named | DONE | really need to try something new here. |
- web apps:
- wiki - DONE
- pagespeed - https://developers.google.com/speed/pagespeed/module - DONE
- rancid:
- rancid installed : done
- fortigate (http://thedonkeyland.com/blog/2011/07/backing-up-fortinet-fortigate-configs-with-rancid/)
- CVSROOT=/home/rancid/var/rancid/CVS
- one module: firewall ( /home/rancid/var/rancid/firewall )
- snmp
- acpi
- backups
from local disk to freenas
- wiki - done
- mysql done
- system config ( etc etc? )
Done
- nfs setup / data exported
athena -> keres data sync
time /usr/bin/rsync -avzr /etc/ /mnt/keres/data/athena/etc --stats time /usr/bin/rsync -avzr /var/bind/ /mnt/keres/data/athena/var/bind --stats
Firewalld
OLD: disabled, firewalld needs more work before I'll use it . (No default deny log rules : d'uh )
[root@keres etc]# firewall-cmd --permanent --zone=public --add-service=dns success [root@keres etc]# firewall-cmd --permanent --zone=public --add-service=https success [root@keres etc]# firewall-cmd --permanent --zone=public --add-service=nfs success [root@keres etc]# firewall-cmd --permanent --zone=public --add-service=ntp success [root@keres etc]# firewall-cmd --reload success [root@keres etc]# firewall-cmd --zone=public --list-all public (default, active) interfaces: enp3s0 wlp2s0 sources: services: dhcpv6-client dns https nfs ntp ssh ports: masquerade: no forward-ports: icmp-blocks: rich rules: [root@keres etc]#
hfs plus
mac Files ystem stupport
Software outside of YUM
- mediawiki - source install.
- https://developers.google.com/speed/pagespeed/module https://dl-ssl.google.com/dl/linux/direct/mod-pagespeed-stable_current_x86_64.rpm