Module objectives To manage a SUSE Linux system, the administrator should become familiar with: X-windows tools telnet or ssh tools Installing Webmin Managing with Webmin Managing processing Firewall configuration Router configuration Apache configuration Printer management
SUSE Linux – Production systems Kernel Management Webmin Installation SUSE Firewalling configuration Router configuration Web server setup Ftp server setup Printer spooler (CUPS) Database server Thin client server Authentication server Security Monitor setup Mail server (SMTP and/or POP) Network Attached Storage (NAS)
Kernel management: X-windows (1 of 2) Kernel Management – via X ( /usr/src/linux ) make xconfig
Kernel management: telnet or ssh (1 of 2) Kernel configuration via telnet or ssh ( /usr/src/linux ) make menuconfig
Kernel management: telnet or ssh (2 of 2)
SUSE Linux – Installing Webmin (1 of 5) Webmin may be installed over the internet (the preferred method – ) or via CD.www.Webmin.com Webmin can be installed from an RPM or from a tar package.
SUSE Linux – Installing Webmin (2 of 5) Webmin provides an identical look & feel across a wide number of Unix and Linux operating environments.
SUSE Linux – Installing Webmin (3 of 5) Webmin provides an extensible framework, add ons are widely available and easy to integrate.
SUSE Linux – Installing Webmin (4 of 5) Webmin can be fetched via wget.
SUSE Linux – Installing Webmin (5 of 5) In addition to an RPM install Webmin can also be installed from a tar package using a setup script: 1. tar xzf Webmin tar.gz 2. cd Webmin /setup.sh Thats all there is to it. SUSE includes a full suite of security modules for pearl so Webmin is available to execute in secure mode right out of the box.
SUSE - Managing with Webmin (1 of 9) Webmin defaults to 1 login: root/root-password With SUSE Webmin defaults to a secure web at port 10,000 https://www.yourdomain.com:10000
SUSE - Managing with Webmin (2 of 9)
SUSE - Managing with Webmin (3 of 9)
SUSE - Managing with Webmin (4 of 9)
SUSE - Managing with Webmin (5 of 9)
SUSE - Managing with Webmin (6 of 9)
SUSE - Managing with Webmin (7 of 9)
SUSE - Managing with Webmin (8 of 9)
SUSE - Managing with Webmin (9 of 9)
Managing processes with Webmin The boot process ( /etc/rc ) is manageable with Webmin:
Managing processes with YaST Managing inet processes with YaST:
Managing processes with Webmin (1 of 2)
Managing processes with Webmin (2 of 2) Managing inet processes with Webmin:
SUSE firewall configuration (1 of 3) SuSE firewall is: Easily configured by hand, via YaST or with a Webmin add-on. An easily configurable firewall system that interfaces with iptables. Managed by /etc/sysconfig/SuSEfirewall2 Well documented in /usr/share/doc/packages/SuSEfirewall2
SUSE firewall configuration (2 of 3) The simplified Webmin interface:
SUSE firewall configuration (3 of 3) Full Webmin interface:
SUSE router configuration SUSE Linux comes equipped with the ability to be a very capable router Iproute2 – iproute2 is a package for advanced network management under Linux. In practice, it is composed of a bunch of small utilities to dynamically configure the kernel. – iproute2 replaces, with a single integrated command, all the functionalities of ifconfig, arp, route and iptunnel and more. Zebra – GNU Zebra is software that manages TCP/IP based routing protocols. It supports BGP-4 protocol as well as RIPv1, RIPv2 and OSPFv2. – Put simply Zebra allows a SUSE Linux system to mimic a Cisco Router
SUSE router configuration – iproute2 Instead of typing ifconfig you could type ip addr:
SUSE router configuration – zebra Zebra is a modular routing program that allows a SUSE system to act like a Cisco router. Modules include: – Bgp4 – RIPv1, RIPv2 – OSPFv2 Each of the modules is a standalone daemon with configuration file. Vtysh is an integrated shell for Zebra routing software. Its command language is almost 100% IOS compatible.
SUSE router configuration – basic (1 of 2) If all you need is a firewall, NAT front end then SUSE configuration is easy with Webmin: – Network tab -> Network Configuration icon – Routing & Gateways icon
SUSE router configuration – basic (2 of 2) Configuring a SUSE system as a gateway router is easy:
SUSE – Apache configuration (1 of 4) Apache is apache is apache! Apache is easy to administrate from Webmin
SUSE – Apache configuration (2 of 4) The obvious elements of Apache configuration can be controlled remotely.
SUSE – Apache configuration (3 of 4) Creating a virtual server is quick and easy:
SUSE – Apache configuration (4 of 4) Managing a virtual server is easy too
SUSE – vsftp management SUSE and Red Hat share vsftp, a lightweight ftp server designed with security in mind. Vsftp can be managed from Webmin using a 3 rd party plugin:
SUSE – Printer management (1 of 4) SUSE supports CUPS (Common Unix Printing System). CUPS supports a wide number of printers and printing methodologies: Via SAMBA Via lpd Raw IP interfaces Serial or parallel connection System V or BSD
SUSE – Printer management (2 of 4) Adding printers with YaST:
SUSE – Printer management (3 of 4) Adding printers with Webmin:
SUSE – Printer management (4 of 4) Managing printers with Webmin: