[gentoo-dev] Setting up a server with Gentoo

[gentoo-dev] Setting up a server with Gentoo

[Brave Cobra]

[-- Attachment #1: Type: text/plain, Size: 789 bytes --]

Hi,

I've been writing article on setting up a server using Gentoo 1.4 for a
windows Network. Basically it covers setting up DHCP, DNS, SAMBA, Apache
and MySQL. Some other servers, like sendmail, CVS, OpenSSL Apache server
and Squid will be included in the future.
The prelimenary article can be found at 
http://www.bravecobra.com/docs/setupserver.html
That article is subject to change of course.
However, before I publish it to the Wide Internet world, I would like
some of you Gentoo experts to read it through and let me know whether I
told something wrong or how I could explain something better to the
newbies. Yes, it's intend to be a newbie guide.
Any further help is much appreciated.

Tnx

Brave Cobra
Email :        bravecobra@pandora.be
Website :    http://www.bravecobra.com

[-- Attachment #2: Type: text/html, Size: 1379 bytes --]

Re: [gentoo-dev] Setting up a server with Gentoo

[Troy Dack]

Brave Cobra wrote:
> Hi,
> 
> I've been writing article on setting up a server using Gentoo 1.4 for a 
> windows Network. Basically it covers setting up DHCP, DNS, SAMBA, Apache 
> and MySQL. Some other servers, like sendmail, CVS, OpenSSL Apache server 
> and Squid will be included in the future.

Please pick something other than sendmail, especially if you are 
targeting it at new comers.  Postfix + procmail is a nice combo 
(IMNSHO), others are qmail and courier (I use courier-imap too).

> The prelimenary article can be found at  
> http://www.bravecobra.com/docs/setupserver.html
> That article is subject to change of course.
> However, before I publish it to the Wide Internet world, I would like 
> some of you Gentoo experts to read it through and let me know whether I 
> told something wrong or how I could explain something better to the 
> newbies. Yes, it's intend to be a newbie guide.
> Any further help is much appreciated.

I notice that you are advocating dnsmasq because it is not as resource 
intensive as BIND.  I'm running bind on a P200 with apache-2.0 and a 
heap of other crap, it does just fine.

The other advantage that you have with bind9 is the ability to do 
dynamic dns updates on your local zone files when dhcp hands out a new 
lease.  This makes plug and network for you local lan really easy.  Any 
windows clients get a hostname based on the machine name, and it is 
resolvable by other machines in the network.

If you want some sample zone and named.conf files let me know.

WRT the firewall, you say that your router does most of it for you. 
Apart from the netfilter docs, point people to a freshmeat search for 
iptables firewall scripts (there are hepas of them), I'll also plug one 
that I have massaged from another script: 
http://linux.tkdack.com/module.php?mod=firewall

With your mail server setup make sure that you include some sort of imap 
server (and note the differences between mbox & maildir and which 
servers use which).  On a local lan it is really pointless having to pop 
mail from the server.  Another option (if the clients are going to be 
Linux) is to have the home directories exported via nfs and the mail 
storage be in the home dir, then the linux users can access their mail 
with traditional clients and point the client at their home dir.  I 
don't know of any Windows programs that can do this, so they still need 
a retrieval method.

Thanks for the Samba<->WinXP tip, I'll have to give it a try, I've been 
trying to get WinXP to auth with my samba box for a while :)

The proxy-config.pac file is a nice inclusion.

Don't forget some comments regarding log files, setting up of sysklogd 
(or your prefered log daemon), rotation of log files and regular 
checking on log files.

-- 
	Troy Dack
	http://linux.tkdack.com		http://webportage.sf.net



--
gentoo-dev@gentoo.org mailing list

Re: [gentoo-dev] Setting up a server with Gentoo

[Brave Cobra]

[-- Attachment #1.1: Type: text/plain, Size: 4195 bytes --]

On Mon, 2002-12-23 at 02:11, Troy Dack wrote:

> Brave Cobra wrote:
> > Hi,
> > 
> > I've been writing article on setting up a server using Gentoo 1.4 for a 
> > windows Network. Basically it covers setting up DHCP, DNS, SAMBA, Apache 
> > and MySQL. Some other servers, like sendmail, CVS, OpenSSL Apache server 
> > and Squid will be included in the future.
> 
> Please pick something other than sendmail, especially if you are 
> targeting it at new comers.  Postfix + procmail is a nice combo 
> (IMNSHO), others are qmail and courier (I use courier-imap too).
> 
> > The prelimenary article can be found at  
> > http://www.bravecobra.com/docs/setupserver.html
> > That article is subject to change of course.
> > However, before I publish it to the Wide Internet world, I would like 
> > some of you Gentoo experts to read it through and let me know whether I 
> > told something wrong or how I could explain something better to the 
> > newbies. Yes, it's intend to be a newbie guide.
> > Any further help is much appreciated.
> 
> I notice that you are advocating dnsmasq because it is not as resource 
> intensive as BIND.  I'm running bind on a P200 with apache-2.0 and a 
> heap of other crap, it does just fine.
> 
> The other advantage that you have with bind9 is the ability to do 
> dynamic dns updates on your local zone files when dhcp hands out a new 
> lease.  This makes plug and network for you local lan really easy.  Any 
> windows clients get a hostname based on the machine name, and it is 
> resolvable by other machines in the network.
> 
> If you want some sample zone and named.conf files let me know.
> 
> WRT the firewall, you say that your router does most of it for you. 
> Apart from the netfilter docs, point people to a freshmeat search for 
> iptables firewall scripts (there are hepas of them), I'll also plug one 
> that I have massaged from another script: 
> http://linux.tkdack.com/module.php?mod=firewall
> 
> With your mail server setup make sure that you include some sort of imap 
> server (and note the differences between mbox & maildir and which 
> servers use which).  On a local lan it is really pointless having to pop 
> mail from the server.  Another option (if the clients are going to be 
> Linux) is to have the home directories exported via nfs and the mail 
> storage be in the home dir, then the linux users can access their mail 
> with traditional clients and point the client at their home dir.  I 
> don't know of any Windows programs that can do this, so they still need 
> a retrieval method.
> 
> Thanks for the Samba<->WinXP tip, I'll have to give it a try, I've been 
> trying to get WinXP to auth with my samba box for a while :)
> 
> The proxy-config.pac file is a nice inclusion.
> 
> Don't forget some comments regarding log files, setting up of sysklogd 
> (or your prefered log daemon), rotation of log files and regular 
> checking on log files.

Hi,

tnx for reading the article. 

I choose for dnsmasq since it was very easy to setup and should cover
most of the home LAN's, but the choice of BIND should be there for the
more adventurious.
I'd love to get some sample files for BIND to be included in the
article. Maybe with an example for dynamic dns updates. I know there are
several people looking for that (read migrating from Windows NT server
to Linux). If you could provide me with an example?

And example firewall script should be included I know. Could you provide
me with one that takes cares of the installed servers? I'm not too good
at that part. That's why I bought a router ;). That would make my
article complete. Still have to cover the OpenSSL part of Apache(or
maybe that's too far fetched) and sshd.

As for the mail server, I guess I'd be going for Postfix then. I hope I
won't forget to have both Windows and Linux clients on the network. The
server should be able to work with both. I think I can cover that part
myself. But covering multiple mailservers could be interesting. Although
I don't have experience with most of them.

Does somebody have more suggestions one what to include into this guide?

Brave Cobra
Email :        bravecobra@pandora.be
Website :    http://www.bravecobra.com

[-- Attachment #1.2: Type: text/html, Size: 5158 bytes --]

[-- Attachment #2: smiley-4.png --]
[-- Type: image/png, Size: 822 bytes --]