![\"\"](\"http:\/\/mossiso.com\/wp-content\/uploads\/2012\/03\/CHNMproduction.png\" "\\"CHNMproduction\\"")
<\/a><\/p>\nSun X2100 M2 OS Install steps<\/h2>\n\n- Boot up with CentOS 6.x Minimal Install CD for x86_64<\/li>\n
- Select the option to \u2018Install or upgrade an existing system\u2019, then hit the Enter key<\/li>\n
- Skip the media test.<\/li>\n
- You are now in graphic install mode.<\/li>\n
- Hit Enter for \u2018OK\u2019 for \u2019English as the language.<\/li>\n
- Hit Enter for \u2018OK\u2019 to US keyboard.<\/li>\n
- Select the option to do a \u201cSpecialized Storage Devices\u201d install<\/li>\n
- Enter the computer name \u2018bill.com\u2019 or \u2018ted.com\u2019, etc<\/li>\n
- Click the button to \u2018Configure Network\u2019.\n
\n- Eth2 seems to be the one associated with port 0 on the servers, so select that one and then \u2018Add\u2019<\/li>\n
- Select \u2018Connect Automatically\u2019.<\/li>\n
- Click the \u2018IPv4 Settings\u2019 tab.<\/li>\n
- Choose \u2018Manual\u2019 for the \u2018Method\u2019.<\/li>\n
- Enter the following for the info in \u2018Addresses\u2019.\n
\n- Address: 192.168.1.1<\/li>\n
- Netmask: 255.255.255.0<\/li>\n
- Gateway: 192.168.1.1<\/li>\n<\/ol>\n<\/li>\n
- For \u2018DNS servers\u2019, enter 192.168.1.100<\/li>\n
- Then \u2018Apply\u2019<\/li>\n<\/ol>\n<\/li>\n
- Select \u2018Next\u2019 to keep the defaults for time zone and system clock.<\/li>\n
- Enter a root password<\/li>\n
- DRIVE PARTITION SETUP<\/strong>\n
\n- On the \u2018Basic Devices\u2019 tab, select the local drive and on the \u2018Multipath Devices\u2019 tab, select the storage array, and click \u2018Next\u2019.<\/li>\n
- Select the \u2018Fresh Installation\u2019 option for a fresh install, or \u2018Upgrade an Existing Installation\u2019 to upgrade. Hit \u2018Next\u2019.<\/li>\n
- Select \u2018Create custom layout.\u2019 and \u2018Next\u2019<\/li>\n
- Delete all of the current LVM and other partitions.<\/li>\n
- Select the free remaining drive for the local drive (should be \/dev\/sda). Click \u2018Create\u2019<\/li>\n
- BOOT PARTITION<\/strong>\n
\n- Select \u2018Standard Partition\u2019 and click \u2018Create\u2019<\/li>\n
- Set the Mount Point as
\/boot<\/code>, the File System Type as \u2018ext4\u2019 and the Size (MB) as 500, then click \u2018OK\u2019<\/li>\n<\/ol>\n<\/li>\n- Select the free space and click \u2018Create\u2019<\/li>\n
- LVM PARTITION<\/strong>(NOTE: The sizes are different based on the size of the hard drives.)\n
\n- Select \u2018LVM Physical Volume\u2019 and click \u2018Create\u2019<\/li>\n
- Select \u2018Fill to maximum allowable size\u2019 and click \u2018OK\u2019<\/li>\n
- Select the new LVM partition and click \u2018Create\u2019<\/li>\n
- Select \u2018LVM Volume Group\u2019 and click \u2018Create\u2019<\/li>\n
- Set the \u2018Volume Group Name\u2019 as \u2018Local\u2019\u00a0 then click the \u2018Add\u2019 button<\/li>\n
- Set the \u2018File System Type\u2019 as swap, the \u2018Logical Volume Name\u2019 as \u2018swap\u2019 and the \u2018Size(MB)\u2019 as \u201812288\u2019, then click \u2018OK\u2019.<\/li>\n
- Click the \u2018Add\u2019 button again. Set the \u2018Mount Point\u2019 to \u2018\/\u2019, the \u2018File System Type\u2019 to ext4, the \u2018Logical Volume Name\u2019 to \u2018root\u2019, and the \u2018Size(MB)\u2019 to \u201851200\u2019. Then click \u2018OK\u2019.<\/li>\n
- Click the \u2018Add\u2019 button again. Set the \u2018Mount Point\u2019 to \u2018\/home\u2019, the \u2018File System Type\u2019 to ext4, the \u2018Logical Volume Name\u2019 to \u2018home\u2019, and the \u2018Size(MB)\u2019 to \u2018500\u2019. Then click \u2018OK\u2019.<\/li>\n
- Click the \u2018Add\u2019 button again. Set the \u2018Mount Point\u2019 to \u2018\/var\u2019, the \u2018File System Type\u2019 to ext4, the \u2018Logical Volume Name\u2019 to \u2018var\u2019, and the \u2018Size(MB)\u2019 to the remaining space available. Then click \u2018OK\u2019.<\/li>\n
- Click \u2018OK\u2019<\/li>\n<\/ol>\n<\/li>\n
- Click \u2018Next\u2019 and \u2018Write changes to disk\u2019 to finish the partition creation.<\/li>\n<\/ol>\n<\/li>\n
- Leave the boot loader settings as is, and click \u2018Next\u2019<\/li>\n
- Select the \u2018Minimal\u2019 option and click \u2018Next\u2019<\/li>\n<\/ol>\n
One of the most important things to have with servers is some form of remote management. That way you don’t need to trek down to the data center each time the server hangs while testing (and it happens a lot). For Sun systems, that means setting up the ELOM (Embedded Lights Out Manager).<\/p>\n
Steps to set up the Remote Console (Embedded Lights Out Manager \u2013 ELOM) for SunFire X2100 M2<\/h2>\nSet the SP serial port rate to 115200.<\/h3>\n\n- Log into the web based console, or through ssh via a computer on the same subnet (https:\/\/192.168.1.10) The IP is whatever the IP is set for the ELOM device. Check in BIOS for the IP.\n
\n- Go to the Configuration tab, then the Serial Port tab.<\/li>\n
- Change the Baud Rate to 115200.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n
Set BIOS<\/h3>\nIPMI Config\r\n Set LAN Config\r\n Set PEF Config\r\n PEF Support ........ [Enabled]\r\n PEF Action Global\r\n All of them ..... [Enabled]\r\n Alert Startup Discover ..... [Disabled]\r\n Startup Delay .............. [Disabled]\r\n Event Message For PEF ...... [Disabled]\r\n BMC Watch Dog Timer Action ... [Disabled]\r\n External Com Port ............ [BMC]\r\nRemote Access\r\n Remote Access ................ [Serial]\r\n Serial Port Number ........... [Com2]\r\n Serial Port Mode ............. [115200 8,n,1]\r\n Flow Control ................. [Hardware]\r\n Post-Boot Support ............ [Always]\r\n Terminal Type ................ [VT100]\r\n VT-UTF8 Combo Key ............ [Enabled]<\/pre>\n
\n- Other options for the Serial Port Mode are 9600, 19200, 38400, and 57600<\/li>\n<\/ul>\n
Edit Linux Config Files<\/h3>\nAdd a \/etc\/init\/serial-ttyS1.conf file<\/h4>\n
RedHat in EL 6, and thereby CentOS, moved to Upstart instead of Sysv, so we create a new serial-ttyS1.conf file instead of editing the \/etc\/inittab file.<\/p>\n
# This service maintains a getty on \/dev\/ttyS1.\r\nstop on runlevel [016]\r\n\r\nrespawn\r\ninstance $TTY\r\nexec \/sbin\/mingetty $TTY<\/pre>\nChange grub.conf<\/h4>\n# grub.conf generated by anaconda\r\n#\r\n# Note that you do not have to rerun grub after making changes to this file\r\n# NOTICE: You have a \/boot partition. This means that\r\n# all kernel and initrd paths are relative to \/boot\/, eg.\r\n# root (hd0,0)\r\n# kernel \/vmlinuz-version ro root=\/dev\/Logical\/root\r\n# initrd \/initrd-version.img\r\n#boot=\/dev\/sda\r\ndefault=0\r\ntimeout=5\r\n#splashimage=(hd0,0)\/grub\/splash.xpm.gz\r\n#hiddenmenu\r\nserial --unit=0 --speed=115200 --word=8 --parity=no --stop=1\r\nterminal --timeout=10 serial console\r\n\r\ntitle CentOS Linux (2.6.32-71.29.1.el6.x86_64)\r\n root (hd0,0)\r\n kernel \/vmlinuz-2.6.32-71.el6.x86_64 ro root=\/dev\/mapper\/Local-root \\\r\nrd_LVM_LV=Local\/root rd_LVM_LV=Local\/swap rd_NO_LUKS rd_NO_MD rd_NO_DM \\\r\nconsole=tty1 console=ttyS1,115200n8\r\n initrd \/initramfs-2.6.32-71.29.1.el6.x86_64.img<\/pre>\nAdd line to securetty<\/h4>\nconsole\r\nvc\/1\r\nvc\/2\r\nvc\/3\r\nvc\/4\r\nvc\/5\r\nvc\/6\r\nvc\/7\r\nvc\/8\r\nvc\/9\r\nvc\/10\r\nvc\/11\r\ntty1\r\ntty2\r\ntty3\r\ntty4\r\ntty5\r\ntty6\r\ntty7\r\ntty8\r\ntty9\r\ntty10\r\ntty11\r\nttyS1<\/pre>\n
\nSUN SP Commands<\/h3>\n
Connect to the ELOM by ssh into the IP address.
\nssh root@192.168.xxx.xxx<\/code><\/p>\n\n- To power on the host, enter the following command:\n
\nset \/SP\/SystemInfo\/CtrlInfo PowerCtrl=on<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n- To power off the host gracefully, enter the following command:\n
\nset \/SP\/SystemInfo\/CtrlInfo PowerCtrl=gracefuloff<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n- To power off the host forcefully, enter the following command:\n
\nset \/SP\/SystemInfo\/CtrlInfo PowerCtrl=forceoff<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n- To reset the host, enter the following command:\n
\nset \/SP\/SystemInfo\/CtrlInfo PowerCtrl=reset<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n- To reboot and enter the BIOS automatically, enter the following command:\n
\nset \/SP\/SystemInfo\/CtrlInfo BootCtrl=BIOSSetup<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n- To change the IP address for the ELOM, enter:\n
\nset \/SP\/AgentInfo IpAddress=xxx.xxx.xxx.xxx <\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n- The default user name is
root<\/code>, and the default password is changeme<\/code>.\n\nset \/SP\/User\/[username] Password=[password]<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n- To start a session on the server console, enter this command:\n
\nstart \/SP\/AgentInfo\/console<\/code><\/li>\n- To revert to CLI once the console has been started, press
Esc-Shift-9<\/code> keys.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n\n- \u2028To terminate a server console session started by another user, enter this command:\n
\nstop \/SP\/AgentInfo\/console<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\nNext we secure the new servers with some software updates and a firewall.<\/p>\n
Software Updates and installs:<\/h2>\n\n- Edit
\/etc\/resolve.conf<\/code><\/li>\n- \nnameserver 192.168.1.100
\noptions single-request-reopen<\/p>\n\n- The last line
options single-request-reopen<\/code> takes care of slow SSH logins. See here https:\/\/stomp.colorado.edu\/blog\/blog\/2011\/06\/29\/on-rhel-6-ssh-dns-firewalls-and-slow-logins\/<\/a> and here http:\/\/www.linuxquestions.org\/questions\/showthread.php?p=4399340#post4399340<\/a> for more info.<\/li>\n<\/ul>\n<\/div>\n<\/li>\nyum install openssh-clients tcsh ksh bc rpm-build gcc gcc-c++ redhat-rpm-config acl gcc gnupg make vim-enhanced man wget which mlocate bzip2-devel libxml2-devel screen sudo parted gd-devel pam_passwdqc.x86_64 rsync zip xorg-x11-server-utils gettext<\/code><\/li>\n- disable SELinux. Edit the
\/etc\/sysconfig\/selinux<\/code> file and set SELINUX=disabled<\/code>.\n\n- Change takes affect on next reboot.<\/li>\n<\/ul>\n<\/li>\n
- Add the following lines to the
\/etc\/vimrc<\/code>file:\nset autoindent ” auto indent after {
\nset smartindent ” same
\nset shiftwidth=4 ” number of space characters inserted for indentation
\nset expandtab ” inserts spaces instead of tabs
\nset tabstop=4 ” number of spaces the tab is.
\nset pastetoggle=<C-P> ” Ctrl-P toggles paste mode<\/div>\n<\/li>\n- Switch root shell to
tcsh<\/code>\n\n- Edit the
\/etc\/passwd<\/code>file to have root use tcshroot:x:0:0:root:\/root:\/bin\/tcsh<\/code><\/li>\n- Edit the
.tcshrc<\/code>file in root\u2019s home.\n#\u00a0 .tcshrc#\u00a0 User specific aliases and functionsalias rm ‘rm -i’
\nalias cp ‘cp -i’
\nalias mv ‘mv -i’set prompt='[%n@%m %c]# ‘<\/p>\nsetenv PATH ${PATH}:\/opt\/sun\/cam\/bin<\/p>\n
#\u00a0 Make command completion (TAB key) cycle through all possible choices
\n#\u00a0 (The default is to simply display a list of all choices when more than one
\n#\u00a0 match is available.)
\nbindkey “^I” complete-word-fwd<\/p>\n<\/div>\n<\/li>\n
- Logout and back in for it to take affect.<\/li>\n<\/ul>\n<\/li>\n
- Edit
\/etc\/hosts<\/code>. Add a line with IP and domain name.\n#\u00a0 Do not remove the following line, or various programs
\n#\u00a0 that require network functionality will fail.
\n127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
\n::1 localhost localhost.localdomain localhost6 localhost6.localdomain6#\u00a0 External IPs
\n192.168.1.1 bill.com
\n192.168.1.2 ted.com192.168.1.3 domain.com # this needs to be an IP that the cluster server can manage#\u00a0 Internal IPs
\n192.168.1.11 bill.localdomain bill # notice the .localdomain, this is necessary for mysql later
\n192.168.1.12 ted.localdomain ted othernode # this is bill’s hosts file. othernode would be on the bill line for ted’s hosts file.
\n#\u00a0 ServicePort IPs
\n192.168.1.21 billsp # I like to have a short name to use to connect to the service port (ELOM)
\n192.168.1.22 tedsp<\/p>\n#\u00a0 Internal Services
\n192.168.1.100 http.localdomain httpd.localdomain
\n192.168.1.101 mysql.localdomain
\n192.168.1.102 memcached.localdomain<\/p>\n<\/div>\n<\/li>\n
- Run
updatedb<\/code> to set up the locate<\/code> database.<\/li>\n- Edit password settings to allow for stricter control over passwords. This requires strong passwords or the use of passphrases.\n
\n- Check here for updated info: http:\/\/www.nsa.gov\/ia\/guidance\/security_configuration_guides\/operating_systems.shtml#linux2<\/a><\/li>\n
- Edit the
\/etc\/pam.d\/system-auth<\/code>file. Change the linepassword requisite pam_cracklib.so try_first_pass retry=3<\/code>to thispassword requisite pam_passwdqc.so min=disabled,disabled,16,12,8<\/code><\/li>\n<\/ul>\n<\/li>\n- [Optional] Firefox:
yum update<\/code>, and then ayum install firefox xorg-x11-xauth xorg-x11-fonts-Type1<\/code>There will be more you\u2019ll need too.\n\n- If you get this error:
process 702: D-Bus library appears to be incorrectly set up; failed to read machine uuid: Failed to open \"\/var\/lib\/dbus\/machine-id\": No such file or directory<\/code>. Then run the following command as root.\n\ndbus-uuidgen > \/var\/lib\/dbus\/machine-id<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/li>\n- Set up ssh keys\n
\nssh-keygen<\/code><\/li>\n- Copy the id_rsa.pub file to the other node<\/li>\n
- Copy the contents of id_rsa.pub to
cat id_rsa.pub >> ~\/.ssh\/authorized_keys<\/code><\/li>\n- Double check permission on
authorized_keys<\/code> and id_rsa<\/code> both set to rw-------<\/code><\/li>\n- You should now be able to log in from bill to ted (and vice versa) without a password.<\/li>\n<\/ul>\n<\/li>\n<\/ol>\n
<\/pre>\nShorewall<\/h2>\n\n- Yum Install:\n
\n- Get EPEL repository. Visit http:\/\/fedoraproject.org\/wiki\/EPEL<\/a> to get the URL for the correct rpm. Something like: epel-release-6-5.noarch.rpm.<\/li>\n
- Copy that URL and run
rpm -Uvh http:\/\/download.fedoraproject.org\/pub\/epel\/6\/i386\/epel-release-6-5.noarch.rpm<\/code>on the machine.<\/li>\n- Edit the
\/etc\/yum.repos.d\/epel.repo<\/code> file and set the first \u201cenabled\u201d line to equal 0. That disables yum from using the EPEL repo by default.<\/li>\n- Install shorewall with yum.
yum --enablerepo=epel install shorewall<\/code><\/li>\n<\/ul>\n<\/li>\n- Enable program to run by editing the
\/etc\/shorewall\/shorewall.conf<\/code> file. Change the STARTUP_ENABLED=NO<\/code>toSTARTUP_ENABLED=Yes<\/code><\/li>\n- Edit the shorewall config files.<\/li>\n
- Edit the
\/etc\/shorewall\/zones<\/code>file:\n\n- \n#
\n#\u00a0 Shorewall version 4 \u2013 Zones File
\n#
\n#\u00a0 For information about this file, type \u201cman shorewall-zones\u201d
\n#
\n#\u00a0 The manpage is also online at
\n#\u00a0 http:\/\/www.shorewall.net\/manpages\/shorewall-zones.html
\n#
\n###############################################################################
\n#ZONE TYPE OPTIONS IN OUT
\n#\u00a0 OPTIONS OPTIONSnet ipv4 # The big bad Internet
\nloc ipv4 # Internal LAN
\nfw firewall#LAST LINE \u2013 ADD YOUR ENTRIES ABOVE THIS ONE \u2013 DO NOT REMOVE#LAST LINE \u2013 ADD YOUR ENTRIES ABOVE THIS ONE \u2013 DO NOT REMOVE<\/div>\n<\/li>\n<\/ul>\n<\/li>\n- Edit the
\/etc\/shorewall\/interfaces<\/code>file:\n\n- \n#
\n#\u00a0 Shorewall version 4 \u2013 Interfaces File
\n#
\n#\u00a0 For information about entries in this file, type \u201cman shorewall-interfaces\u201d
\n#
\n#\u00a0 The manpage is also online at
\n#\u00a0 http:\/\/www.shorewall.net\/manpages\/shorewall-interfaces.html
\n#
\n###############################################################################
\n#ZONE INTERFACE BROADCAST OPTIONS
\nnet eth2
\nloc eth1<\/div>\n<\/li>\n<\/ul>\n<\/li>\n- Edit the
\/etc\/shorewall\/policy<\/code>file:\n\n- \n###############################################################################
\n#SOURCE DEST POLICY LOG LIMIT: CONNLIMIT:
\n#\u00a0 LEVEL BURST MASK
\n#\u00a0 To\/from internal lan
\nfw loc ACCEPT
\nloc fw ACCEPT
\n#\u00a0 To\/from net
\nfw net ACCEPT
\nnet all DROP info
\n#
\n#\u00a0 THE FOLLOWING POLICY MUST BE LAST
\n#
\nall all REJECT info
\n#LAST LINE \u2014 DO NOT REMOVE<\/div>\n<\/li>\n<\/ul>\n<\/li>\n- Edit the
\/etc\/shorewall\/rules<\/code>file:\n\n- \n######################################################################################
\n#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL
\n#\u00a0 PORT PORT<\/acronym> DEST
\n#SECTION ESTABLISHED
\n#SECTION RELATED
\nSECTION NEWSECTION NEW#\u00a0 Standard services
\n#
\nACCEPT \u00a0net \u00a0\u00a0\u00a0\u00a0 fw \u00a0\u00a0\u00a0\u00a0 tcp \u00a0\u00a0\u00a0 ssh
\nACCEPT \u00a0net \u00a0\u00a0\u00a0\u00a0 fw \u00a0\u00a0\u00a0\u00a0 tcp \u00a0\u00a0\u00a0 80,443Ping\/ACCEPT \u00a0\u00a0\u00a0\u00a0 net \u00a0\u00a0\u00a0\u00a0 fw<\/p>\n#LAST LINE \u2014 ADD YOUR ENTRIES BEFORE THIS ONE \u2014 DO NOT REMOVE<\/p>\n<\/div>\n<\/li>\n<\/ul>\n<\/li>\n
- Edit the
\/etc\/shorewall\/routestopped<\/code>file:\n\n- \n#
\n#\u00a0 Shorewall version 4 \u2013 Routestopped File
\n#
\n#\u00a0 For information about entries in this file, type \u201cman shorewall-routestopped\u201d
\n#
\n#\u00a0 The manpage is also online at
\n#\u00a0 http:\/\/www.shorewall.net\/manpages\/shorewall-routestopped.html
\n#
\n#\u00a0 See http:\/\/shorewall.net\/starting_and_stopping_shorewall.htm for additional
\n#\u00a0 information.
\n#
\n###############################################################################
\n#INTERFACE HOST<\/acronym> OPTIONS PROTO DEST SOURCE
\n#\u00a0 PORT<\/acronym> PORT<\/acronym>
\neth1\u00a0\u00a0\u00a0\u00a0 –
\neth2 \u00a0\u00a0\u00a0\u00a0–<\/div>\n<\/li>\n<\/ul>\n<\/li>\n- Set shorewall to start on reboots.
chkconfig shorewall on<\/code><\/li>\n- Start shorewall:
service shorewall start<\/code><\/li>\n<\/ul>\nThe next part will be connecting the servers to the storage array<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"I’ve spent a lot of time at work setting up a few servers to be our new production environment. Much of it was accomplished by reading the documentation over and over again. Not much out there on the Net, so I’m hoping this series of posts benefits someone else out there. First of all, I’ll … Continue reading Setting up a Hosting Environment: Part 1 – The servers<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":1167,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false}}},"categories":[249,167],"tags":[179],"class_list":["post-1158","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-setting-up-a-hosting-environment","category-technical","tag-servers"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/mossiso.com\/wp-content\/uploads\/2012\/03\/DSCN7152-copy.jpg","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9wosP-iG","_links":{"self":[{"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/posts\/1158"}],"collection":[{"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/comments?post=1158"}],"version-history":[{"count":11,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/posts\/1158\/revisions"}],"predecessor-version":[{"id":1432,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/posts\/1158\/revisions\/1432"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/media\/1167"}],"wp:attachment":[{"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/media?parent=1158"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/categories?post=1158"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/tags?post=1158"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
- \n
- Eth2 seems to be the one associated with port 0 on the servers, so select that one and then \u2018Add\u2019<\/li>\n
- Select \u2018Connect Automatically\u2019.<\/li>\n
- Click the \u2018IPv4 Settings\u2019 tab.<\/li>\n
- Choose \u2018Manual\u2019 for the \u2018Method\u2019.<\/li>\n
- Enter the following for the info in \u2018Addresses\u2019.\n
- \n
- Address: 192.168.1.1<\/li>\n
- Netmask: 255.255.255.0<\/li>\n
- Gateway: 192.168.1.1<\/li>\n<\/ol>\n<\/li>\n
- For \u2018DNS servers\u2019, enter 192.168.1.100<\/li>\n
- Then \u2018Apply\u2019<\/li>\n<\/ol>\n<\/li>\n
- Select \u2018Next\u2019 to keep the defaults for time zone and system clock.<\/li>\n
- Enter a root password<\/li>\n
- DRIVE PARTITION SETUP<\/strong>\n
- \n
- On the \u2018Basic Devices\u2019 tab, select the local drive and on the \u2018Multipath Devices\u2019 tab, select the storage array, and click \u2018Next\u2019.<\/li>\n
- Select the \u2018Fresh Installation\u2019 option for a fresh install, or \u2018Upgrade an Existing Installation\u2019 to upgrade. Hit \u2018Next\u2019.<\/li>\n
- Select \u2018Create custom layout.\u2019 and \u2018Next\u2019<\/li>\n
- Delete all of the current LVM and other partitions.<\/li>\n
- Select the free remaining drive for the local drive (should be \/dev\/sda). Click \u2018Create\u2019<\/li>\n
- BOOT PARTITION<\/strong>\n
- \n
- Select \u2018Standard Partition\u2019 and click \u2018Create\u2019<\/li>\n
- Set the Mount Point as
\/boot<\/code>, the File System Type as \u2018ext4\u2019 and the Size (MB) as 500, then click \u2018OK\u2019<\/li>\n<\/ol>\n<\/li>\n- Select the free space and click \u2018Create\u2019<\/li>\n
- LVM PARTITION<\/strong>(NOTE: The sizes are different based on the size of the hard drives.)\n
- \n
- Select \u2018LVM Physical Volume\u2019 and click \u2018Create\u2019<\/li>\n
- Select \u2018Fill to maximum allowable size\u2019 and click \u2018OK\u2019<\/li>\n
- Select the new LVM partition and click \u2018Create\u2019<\/li>\n
- Select \u2018LVM Volume Group\u2019 and click \u2018Create\u2019<\/li>\n
- Set the \u2018Volume Group Name\u2019 as \u2018Local\u2019\u00a0 then click the \u2018Add\u2019 button<\/li>\n
- Set the \u2018File System Type\u2019 as swap, the \u2018Logical Volume Name\u2019 as \u2018swap\u2019 and the \u2018Size(MB)\u2019 as \u201812288\u2019, then click \u2018OK\u2019.<\/li>\n
- Click the \u2018Add\u2019 button again. Set the \u2018Mount Point\u2019 to \u2018\/\u2019, the \u2018File System Type\u2019 to ext4, the \u2018Logical Volume Name\u2019 to \u2018root\u2019, and the \u2018Size(MB)\u2019 to \u201851200\u2019. Then click \u2018OK\u2019.<\/li>\n
- Click the \u2018Add\u2019 button again. Set the \u2018Mount Point\u2019 to \u2018\/home\u2019, the \u2018File System Type\u2019 to ext4, the \u2018Logical Volume Name\u2019 to \u2018home\u2019, and the \u2018Size(MB)\u2019 to \u2018500\u2019. Then click \u2018OK\u2019.<\/li>\n
- Click the \u2018Add\u2019 button again. Set the \u2018Mount Point\u2019 to \u2018\/var\u2019, the \u2018File System Type\u2019 to ext4, the \u2018Logical Volume Name\u2019 to \u2018var\u2019, and the \u2018Size(MB)\u2019 to the remaining space available. Then click \u2018OK\u2019.<\/li>\n
- Click \u2018OK\u2019<\/li>\n<\/ol>\n<\/li>\n
- Click \u2018Next\u2019 and \u2018Write changes to disk\u2019 to finish the partition creation.<\/li>\n<\/ol>\n<\/li>\n
- Leave the boot loader settings as is, and click \u2018Next\u2019<\/li>\n
- Select the \u2018Minimal\u2019 option and click \u2018Next\u2019<\/li>\n<\/ol>\n
One of the most important things to have with servers is some form of remote management. That way you don’t need to trek down to the data center each time the server hangs while testing (and it happens a lot). For Sun systems, that means setting up the ELOM (Embedded Lights Out Manager).<\/p>\n
Steps to set up the Remote Console (Embedded Lights Out Manager \u2013 ELOM) for SunFire X2100 M2<\/h2>\n
Set the SP serial port rate to 115200.<\/h3>\n
- \n
- Log into the web based console, or through ssh via a computer on the same subnet (https:\/\/192.168.1.10) The IP is whatever the IP is set for the ELOM device. Check in BIOS for the IP.\n
- \n
- Go to the Configuration tab, then the Serial Port tab.<\/li>\n
- Change the Baud Rate to 115200.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n
Set BIOS<\/h3>\n
IPMI Config\r\n Set LAN Config\r\n Set PEF Config\r\n PEF Support ........ [Enabled]\r\n PEF Action Global\r\n All of them ..... [Enabled]\r\n Alert Startup Discover ..... [Disabled]\r\n Startup Delay .............. [Disabled]\r\n Event Message For PEF ...... [Disabled]\r\n BMC Watch Dog Timer Action ... [Disabled]\r\n External Com Port ............ [BMC]\r\nRemote Access\r\n Remote Access ................ [Serial]\r\n Serial Port Number ........... [Com2]\r\n Serial Port Mode ............. [115200 8,n,1]\r\n Flow Control ................. [Hardware]\r\n Post-Boot Support ............ [Always]\r\n Terminal Type ................ [VT100]\r\n VT-UTF8 Combo Key ............ [Enabled]<\/pre>\n
- \n
- Other options for the Serial Port Mode are 9600, 19200, 38400, and 57600<\/li>\n<\/ul>\n
Edit Linux Config Files<\/h3>\n
Add a \/etc\/init\/serial-ttyS1.conf file<\/h4>\n
RedHat in EL 6, and thereby CentOS, moved to Upstart instead of Sysv, so we create a new serial-ttyS1.conf file instead of editing the \/etc\/inittab file.<\/p>\n
# This service maintains a getty on \/dev\/ttyS1.\r\nstop on runlevel [016]\r\n\r\nrespawn\r\ninstance $TTY\r\nexec \/sbin\/mingetty $TTY<\/pre>\n
Change grub.conf<\/h4>\n
# grub.conf generated by anaconda\r\n#\r\n# Note that you do not have to rerun grub after making changes to this file\r\n# NOTICE: You have a \/boot partition. This means that\r\n# all kernel and initrd paths are relative to \/boot\/, eg.\r\n# root (hd0,0)\r\n# kernel \/vmlinuz-version ro root=\/dev\/Logical\/root\r\n# initrd \/initrd-version.img\r\n#boot=\/dev\/sda\r\ndefault=0\r\ntimeout=5\r\n#splashimage=(hd0,0)\/grub\/splash.xpm.gz\r\n#hiddenmenu\r\nserial --unit=0 --speed=115200 --word=8 --parity=no --stop=1\r\nterminal --timeout=10 serial console\r\n\r\ntitle CentOS Linux (2.6.32-71.29.1.el6.x86_64)\r\n root (hd0,0)\r\n kernel \/vmlinuz-2.6.32-71.el6.x86_64 ro root=\/dev\/mapper\/Local-root \\\r\nrd_LVM_LV=Local\/root rd_LVM_LV=Local\/swap rd_NO_LUKS rd_NO_MD rd_NO_DM \\\r\nconsole=tty1 console=ttyS1,115200n8\r\n initrd \/initramfs-2.6.32-71.29.1.el6.x86_64.img<\/pre>\n
Add line to securetty<\/h4>\n
console\r\nvc\/1\r\nvc\/2\r\nvc\/3\r\nvc\/4\r\nvc\/5\r\nvc\/6\r\nvc\/7\r\nvc\/8\r\nvc\/9\r\nvc\/10\r\nvc\/11\r\ntty1\r\ntty2\r\ntty3\r\ntty4\r\ntty5\r\ntty6\r\ntty7\r\ntty8\r\ntty9\r\ntty10\r\ntty11\r\nttyS1<\/pre>\n
\nSUN SP Commands<\/h3>\n
Connect to the ELOM by ssh into the IP address.
\nssh root@192.168.xxx.xxx<\/code><\/p>\n- \n
- To power on the host, enter the following command:\n
- \n
set \/SP\/SystemInfo\/CtrlInfo PowerCtrl=on<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n- \n
- To power off the host gracefully, enter the following command:\n
- \n
set \/SP\/SystemInfo\/CtrlInfo PowerCtrl=gracefuloff<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n- \n
- To power off the host forcefully, enter the following command:\n
- \n
set \/SP\/SystemInfo\/CtrlInfo PowerCtrl=forceoff<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n- \n
- To reset the host, enter the following command:\n
- \n
set \/SP\/SystemInfo\/CtrlInfo PowerCtrl=reset<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n- \n
- To reboot and enter the BIOS automatically, enter the following command:\n
- \n
set \/SP\/SystemInfo\/CtrlInfo BootCtrl=BIOSSetup<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n- \n
- To change the IP address for the ELOM, enter:\n
- \n
set \/SP\/AgentInfo IpAddress=xxx.xxx.xxx.xxx <\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n- \n
- The default user name is
root<\/code>, and the default password ischangeme<\/code>.\n- \n
set \/SP\/User\/[username] Password=[password]<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n- \n
- To start a session on the server console, enter this command:\n
- \n
start \/SP\/AgentInfo\/console<\/code><\/li>\n- To revert to CLI once the console has been started, press
Esc-Shift-9<\/code> keys.<\/li>\n<\/ul>\n<\/li>\n<\/ul>\n- \n
- \u2028To terminate a server console session started by another user, enter this command:\n
- \n
stop \/SP\/AgentInfo\/console<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\nNext we secure the new servers with some software updates and a firewall.<\/p>\n
Software Updates and installs:<\/h2>\n
- \n
- Edit
\/etc\/resolve.conf<\/code><\/li>\n- \n
nameserver 192.168.1.100
\noptions single-request-reopen<\/p>\n- \n
- The last line
options single-request-reopen<\/code> takes care of slow SSH logins. See here https:\/\/stomp.colorado.edu\/blog\/blog\/2011\/06\/29\/on-rhel-6-ssh-dns-firewalls-and-slow-logins\/<\/a> and here http:\/\/www.linuxquestions.org\/questions\/showthread.php?p=4399340#post4399340<\/a> for more info.<\/li>\n<\/ul>\n<\/div>\n<\/li>\nyum install openssh-clients tcsh ksh bc rpm-build gcc gcc-c++ redhat-rpm-config acl gcc gnupg make vim-enhanced man wget which mlocate bzip2-devel libxml2-devel screen sudo parted gd-devel pam_passwdqc.x86_64 rsync zip xorg-x11-server-utils gettext<\/code><\/li>\n- disable SELinux. Edit the
\/etc\/sysconfig\/selinux<\/code> file and setSELINUX=disabled<\/code>.\n- \n
- Change takes affect on next reboot.<\/li>\n<\/ul>\n<\/li>\n
- Add the following lines to the
\/etc\/vimrc<\/code>file:\nset autoindent ” auto indent after {
\nset smartindent ” same
\nset shiftwidth=4 ” number of space characters inserted for indentation
\nset expandtab ” inserts spaces instead of tabs
\nset tabstop=4 ” number of spaces the tab is.
\nset pastetoggle=<C-P> ” Ctrl-P toggles paste mode<\/div>\n<\/li>\n- Switch root shell to
tcsh<\/code>\n- \n
- Edit the
\/etc\/passwd<\/code>file to have root use tcshroot:x:0:0:root:\/root:\/bin\/tcsh<\/code><\/li>\n- Edit the
.tcshrc<\/code>file in root\u2019s home.\n#\u00a0 .tcshrc#\u00a0 User specific aliases and functionsalias rm ‘rm -i’
\nalias cp ‘cp -i’
\nalias mv ‘mv -i’set prompt='[%n@%m %c]# ‘<\/p>\nsetenv PATH ${PATH}:\/opt\/sun\/cam\/bin<\/p>\n
#\u00a0 Make command completion (TAB key) cycle through all possible choices
\n#\u00a0 (The default is to simply display a list of all choices when more than one
\n#\u00a0 match is available.)
\nbindkey “^I” complete-word-fwd<\/p>\n<\/div>\n<\/li>\n- Logout and back in for it to take affect.<\/li>\n<\/ul>\n<\/li>\n
- Edit
\/etc\/hosts<\/code>. Add a line with IP and domain name.\n#\u00a0 Do not remove the following line, or various programs
\n#\u00a0 that require network functionality will fail.
\n127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4
\n::1 localhost localhost.localdomain localhost6 localhost6.localdomain6#\u00a0 External IPs
\n192.168.1.1 bill.com
\n192.168.1.2 ted.com192.168.1.3 domain.com # this needs to be an IP that the cluster server can manage#\u00a0 Internal IPs
\n192.168.1.11 bill.localdomain bill # notice the .localdomain, this is necessary for mysql later
\n192.168.1.12 ted.localdomain ted othernode # this is bill’s hosts file. othernode would be on the bill line for ted’s hosts file.
\n#\u00a0 ServicePort IPs
\n192.168.1.21 billsp # I like to have a short name to use to connect to the service port (ELOM)
\n192.168.1.22 tedsp<\/p>\n#\u00a0 Internal Services
\n192.168.1.100 http.localdomain httpd.localdomain
\n192.168.1.101 mysql.localdomain
\n192.168.1.102 memcached.localdomain<\/p>\n<\/div>\n<\/li>\n- Run
updatedb<\/code> to set up thelocate<\/code> database.<\/li>\n- Edit password settings to allow for stricter control over passwords. This requires strong passwords or the use of passphrases.\n
- \n
- Check here for updated info: http:\/\/www.nsa.gov\/ia\/guidance\/security_configuration_guides\/operating_systems.shtml#linux2<\/a><\/li>\n
- Edit the
\/etc\/pam.d\/system-auth<\/code>file. Change the linepassword requisite pam_cracklib.so try_first_pass retry=3<\/code>to thispassword requisite pam_passwdqc.so min=disabled,disabled,16,12,8<\/code><\/li>\n<\/ul>\n<\/li>\n- [Optional] Firefox:
yum update<\/code>, and then ayum install firefox xorg-x11-xauth xorg-x11-fonts-Type1<\/code>There will be more you\u2019ll need too.\n- \n
- If you get this error:
process 702: D-Bus library appears to be incorrectly set up; failed to read machine uuid: Failed to open \"\/var\/lib\/dbus\/machine-id\": No such file or directory<\/code>. Then run the following command as root.\n- \n
dbus-uuidgen > \/var\/lib\/dbus\/machine-id<\/code><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<\/li>\n- Set up ssh keys\n
- \n
ssh-keygen<\/code><\/li>\n- Copy the id_rsa.pub file to the other node<\/li>\n
- Copy the contents of id_rsa.pub to
cat id_rsa.pub >> ~\/.ssh\/authorized_keys<\/code><\/li>\n- Double check permission on
authorized_keys<\/code> andid_rsa<\/code> both set torw-------<\/code><\/li>\n- You should now be able to log in from bill to ted (and vice versa) without a password.<\/li>\n<\/ul>\n<\/li>\n<\/ol>\n
<\/pre>\n
Shorewall<\/h2>\n
- \n
- Yum Install:\n
- \n
- Get EPEL repository. Visit http:\/\/fedoraproject.org\/wiki\/EPEL<\/a> to get the URL for the correct rpm. Something like: epel-release-6-5.noarch.rpm.<\/li>\n
- Copy that URL and run
rpm -Uvh http:\/\/download.fedoraproject.org\/pub\/epel\/6\/i386\/epel-release-6-5.noarch.rpm<\/code>on the machine.<\/li>\n- Edit the
\/etc\/yum.repos.d\/epel.repo<\/code> file and set the first \u201cenabled\u201d line to equal 0. That disables yum from using the EPEL repo by default.<\/li>\n- Install shorewall with yum.
yum --enablerepo=epel install shorewall<\/code><\/li>\n<\/ul>\n<\/li>\n- Enable program to run by editing the
\/etc\/shorewall\/shorewall.conf<\/code> file. Change theSTARTUP_ENABLED=NO<\/code>toSTARTUP_ENABLED=Yes<\/code><\/li>\n- Edit the shorewall config files.<\/li>\n
- Edit the
\/etc\/shorewall\/zones<\/code>file:\n- \n
- \n#
\n#\u00a0 Shorewall version 4 \u2013 Zones File
\n#
\n#\u00a0 For information about this file, type \u201cman shorewall-zones\u201d
\n#
\n#\u00a0 The manpage is also online at
\n#\u00a0 http:\/\/www.shorewall.net\/manpages\/shorewall-zones.html
\n#
\n###############################################################################
\n#ZONE TYPE OPTIONS IN OUT
\n#\u00a0 OPTIONS OPTIONSnet ipv4 # The big bad Internet
\nloc ipv4 # Internal LAN
\nfw firewall#LAST LINE \u2013 ADD YOUR ENTRIES ABOVE THIS ONE \u2013 DO NOT REMOVE#LAST LINE \u2013 ADD YOUR ENTRIES ABOVE THIS ONE \u2013 DO NOT REMOVE<\/div>\n<\/li>\n<\/ul>\n<\/li>\n- Edit the
\/etc\/shorewall\/interfaces<\/code>file:\n- \n
- \n#
\n#\u00a0 Shorewall version 4 \u2013 Interfaces File
\n#
\n#\u00a0 For information about entries in this file, type \u201cman shorewall-interfaces\u201d
\n#
\n#\u00a0 The manpage is also online at
\n#\u00a0 http:\/\/www.shorewall.net\/manpages\/shorewall-interfaces.html
\n#
\n###############################################################################
\n#ZONE INTERFACE BROADCAST OPTIONS
\nnet eth2
\nloc eth1<\/div>\n<\/li>\n<\/ul>\n<\/li>\n- Edit the
\/etc\/shorewall\/policy<\/code>file:\n- \n
- \n###############################################################################
\n#SOURCE DEST POLICY LOG LIMIT: CONNLIMIT:
\n#\u00a0 LEVEL BURST MASK
\n#\u00a0 To\/from internal lan
\nfw loc ACCEPT
\nloc fw ACCEPT
\n#\u00a0 To\/from net
\nfw net ACCEPT
\nnet all DROP info
\n#
\n#\u00a0 THE FOLLOWING POLICY MUST BE LAST
\n#
\nall all REJECT info
\n#LAST LINE \u2014 DO NOT REMOVE<\/div>\n<\/li>\n<\/ul>\n<\/li>\n- Edit the
\/etc\/shorewall\/rules<\/code>file:\n- \n
- \n######################################################################################
\n#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL
\n#\u00a0 PORT PORT<\/acronym> DEST
\n#SECTION ESTABLISHED
\n#SECTION RELATED
\nSECTION NEWSECTION NEW#\u00a0 Standard services
\n#
\nACCEPT \u00a0net \u00a0\u00a0\u00a0\u00a0 fw \u00a0\u00a0\u00a0\u00a0 tcp \u00a0\u00a0\u00a0 ssh
\nACCEPT \u00a0net \u00a0\u00a0\u00a0\u00a0 fw \u00a0\u00a0\u00a0\u00a0 tcp \u00a0\u00a0\u00a0 80,443Ping\/ACCEPT \u00a0\u00a0\u00a0\u00a0 net \u00a0\u00a0\u00a0\u00a0 fw<\/p>\n#LAST LINE \u2014 ADD YOUR ENTRIES BEFORE THIS ONE \u2014 DO NOT REMOVE<\/p>\n<\/div>\n<\/li>\n<\/ul>\n<\/li>\n
- Edit the
\/etc\/shorewall\/routestopped<\/code>file:\n- \n
- \n#
\n#\u00a0 Shorewall version 4 \u2013 Routestopped File
\n#
\n#\u00a0 For information about entries in this file, type \u201cman shorewall-routestopped\u201d
\n#
\n#\u00a0 The manpage is also online at
\n#\u00a0 http:\/\/www.shorewall.net\/manpages\/shorewall-routestopped.html
\n#
\n#\u00a0 See http:\/\/shorewall.net\/starting_and_stopping_shorewall.htm for additional
\n#\u00a0 information.
\n#
\n###############################################################################
\n#INTERFACE HOST<\/acronym> OPTIONS PROTO DEST SOURCE
\n#\u00a0 PORT<\/acronym> PORT<\/acronym>
\neth1\u00a0\u00a0\u00a0\u00a0 –
\neth2 \u00a0\u00a0\u00a0\u00a0–<\/div>\n<\/li>\n<\/ul>\n<\/li>\n- Set shorewall to start on reboots.
chkconfig shorewall on<\/code><\/li>\n- Start shorewall:
service shorewall start<\/code><\/li>\n<\/ul>\nThe next part will be connecting the servers to the storage array<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"
I’ve spent a lot of time at work setting up a few servers to be our new production environment. Much of it was accomplished by reading the documentation over and over again. Not much out there on the Net, so I’m hoping this series of posts benefits someone else out there. First of all, I’ll … Continue reading Setting up a Hosting Environment: Part 1 – The servers<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":1167,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false}}},"categories":[249,167],"tags":[179],"class_list":["post-1158","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-setting-up-a-hosting-environment","category-technical","tag-servers"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/mossiso.com\/wp-content\/uploads\/2012\/03\/DSCN7152-copy.jpg","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p9wosP-iG","_links":{"self":[{"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/posts\/1158"}],"collection":[{"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/comments?post=1158"}],"version-history":[{"count":11,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/posts\/1158\/revisions"}],"predecessor-version":[{"id":1432,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/posts\/1158\/revisions\/1432"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/media\/1167"}],"wp:attachment":[{"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/media?parent=1158"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/categories?post=1158"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mossiso.com\/wp-json\/wp\/v2\/tags?post=1158"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
- Set shorewall to start on reboots.
- Edit the
- Edit the
- Edit the
- Edit the
- Copy that URL and run
- Get EPEL repository. Visit http:\/\/fedoraproject.org\/wiki\/EPEL<\/a> to get the URL for the correct rpm. Something like: epel-release-6-5.noarch.rpm.<\/li>\n
- Set up ssh keys\n
- Edit the
- Edit the
- Switch root shell to
- \n
- Edit
- To revert to CLI once the console has been started, press
- To start a session on the server console, enter this command:\n
- The default user name is
- To change the IP address for the ELOM, enter:\n
- To reboot and enter the BIOS automatically, enter the following command:\n
- To reset the host, enter the following command:\n
- To power off the host forcefully, enter the following command:\n
- To power off the host gracefully, enter the following command:\n
- To power on the host, enter the following command:\n
- Other options for the Serial Port Mode are 9600, 19200, 38400, and 57600<\/li>\n<\/ul>\n
- Log into the web based console, or through ssh via a computer on the same subnet (https:\/\/192.168.1.10) The IP is whatever the IP is set for the ELOM device. Check in BIOS for the IP.\n