Presentation is loading. Please wait.

Presentation is loading. Please wait.

WELCOME TO SS-E AFNOG - 2016 BOTSWANA Scalable Services – English.

Published byAndrea Lester Modified over 8 years ago

Similar presentations

Presentation on theme: "WELCOME TO SS-E AFNOG - 2016 BOTSWANA Scalable Services – English."— Presentation transcript:

1 WELCOME TO SS-E AFNOG - 2016 BOTSWANA Scalable Services – English

2 What is SS-E?  Scalable Services – English is a track that teaches advanced topics on designing, configuring and managing large scale Internet Services run on UNIX/Linux servers  It builds on Track Zero which covered introductory topics on UNIX/Linux and Internet Services  What sort of services?  DNS, Web Email  Monitoring, Authentication  Many others  Basically any service that can be offered on a Linux/UNIX server over the Internet

3 Your instructors  Ayitey A. Bulley - Ghana  Chris Wilson – UK  Emmanuel Odoom - Ghana  Frank Kuse – Ghana  Joe Abley – Canada  Kevin Chege – Kenya  Michuki Mwangi – from Kenya

4 How about you….? Introduce yourself:  Name  Country  Work  Hobbies  How did you fly to get to Botswana?

5 Course teaching style  Theory explained first then followed by a practical session  Each of you has been assigned a Virtual Machine running Debian 8.0.0 (Jessie) that you will access from your laptop  Feel free to ask questions anytime  If you need help during the practical labs, raise your hand so the instructors can assist  Kindly mute your phones during classes  Please pay during theory sessions

6 Timetable – please keep time  Breakfast starts at 6am*  First Session 09:00 to 11:00  Tea break 11:00 to 11:00  Second Session from 11:30 to 13:00  Lunch from 13:00 to 14:00  Third Session- from 14:00 to 16:00  Tea break – 16:00 to 16:30  Fourth Session – 16:30 to 18:00  Dinner  Evening sessions – 20:00 – 22:00 Breakfast: At the Metcourt Hotel Lunch and dinner: At the Marquee (on left side of the exit from GICC) Tea break: At the foyer area next to the main entrance Washrooms: At the right of foyer area and 2 nd further along the corridor EXIT: USE DOOR ON RIGHT SIDE OF ROOM VIA SI-E CLASS BEAR IN MIND THAT THE OTHER TRACKS WILL BE IN SESSION

7 Inventory You should have received:  Name badges  Folder with notepad, pen, information pack Keep your name badge with you At the end of the week you will receive:  A USB stick with some O'Reilly eBooks Please share with your colleagues back at home.

8 Connectivity  Use your own laptops for:  Web browsing  Control your virtual machines  Virtualization exercises  Wireless Internet  Use the AIS network if possible, otherwise AIS-bgn  Password for both is "success!”  Hotel wifi is available in your rooms

9 Access Your Virtual Machines  Virtual servers (named pc1 – pc35)  DNS names are pc1.sse.ws.afnog.org (etc)  PC Assignment exercise  Debian 8.0.0 OS installed  Use SSH to access your server (e.g. Putty for Windows)  Login with afnog/afnog  Use sudo to execute commands as root  Don't change passwords  Don't "close security holes"  Don't shutdown your server (there's no power button!)  Your servers are accessible over the Internet

10 Windows Users  Install putty from: http://www.ws.afnog.org/afnog2016/unix- intro/downloads/http://www.ws.afnog.org/afnog2016/unix- intro/downloads/ After downloading you will see the above icon. Double click on it and you should see a window similar to the one on the right

11 Unix, Linux and OS X Users  A default Secure Shell (SSH) client is already installed in Unix, Linux and OS X  To access the default SSH  Open: Terminal application  From Terminal prompt type the following;  ssh afnog@pcX.sse.ws.afnog.org where X is the pc number. ssh afnog@pcX.sse.ws.afnog.org

12 Online Resources Web site: http://www.ws.afnog.org/afnog2016/http://www.ws.afnog.org/afnog2016/ AfNOG Mailing List:  Q&A on Internet operational and technical issues.  No foul language or disrespect for other participants.  No blatant product marketing.  No political postings. Please subscribe while at the Workshop:subscribe  So we can help you if you have problems subscribing. Please raise any questions related to the workshop content.

13 Safety Please be careful in class:  trip on power cords  pull cables out of sockets  knock equipment off tables  fall from leaning back too far in your chair

14 Core topics to be covered this week  DNS  Resolver  Authoritative DNS  Firewalls and Network Security  Host security using IPtables  Mail Services  How to setup mail services  Hosting Web services  Web server using Apache  RADIUS & LDAP  For centralizing authentication  Virtualization  How to build virtual servers

15 Rough agenda for the week  Monday:  First Session: intro, nano bootcamp, Post-installation Best Practices  Second Session: DNS (Intro)  Third Session: Firewalls and Network Security  Fourth Session: DNS (Resolver)  Evening Session: General  Tuesday:  First Session: Security (Public Key, SSL, PGP, Crypto)  Second : DNS (Authoritative)  Third Session: Apache + PHP  Fourth Session: Postfix  Evening Session: DNSSEC  Wednesday:  First and Second Session: Postfix  Third and Fourth Session: Open LDAP Directory  Evening Session: Ansible

16 Rough agenda for the week …  Thursday:  First and Second Session: RADIUS  Third Session: Dovecot IMAP  Fourth Session: Squirrelmail  Friday:  First and Session: Load Balancing  Third and Fourth : Virtualization  Closing Survey

17 Any questions?

18 Nano bootcamp  We will use an editor called “nano” on the Debian machines  However, you should learn “vi” as it has way more features than most editors  Install nano: afnog@debian8: ~$ sudo apt-get install nano  For nano you can open a file by: afnog@debian8: ~$ nano /path/to/filename OR afnog@debian8: ~$ nano filename Save the changes by: ctrl X answer “y” Search the file for a specific word: ctrl W

19 Short nano exercise  Go to your home directory afnog@debian8: ~$ cd /home/afnog  Open a file: afnog@debian8:~$ nano test-script.sh  Type the following 4 lines in the file #!/bin/bash # SSE Test Script echo "Welcome $HOSTNAME to AfNOG SSE 2016!” echo “AfNOG!, Success!”  Then Save and Exit Ctrl X and Then answer y. Maintain the same filename (press enter)  Change the files permissions afnog@debian8:~$ chmod +x test-script.sh  Run the file afnog@debian8:~$./test-script.sh

20 More commands  Ctrl y – previous Page  Ctrl v – next page Nano provides a menu at the bottom :

21 POST-INSTALL BEST PRACTICES

22 Things to do post-install  1. Update the System afnog@debian8: ~$ sudo nano /etc/apt/sources.list Find deb http://httpredir.debian.org/debian jessie main deb http://security.debian.org/ jessie/updates main Add “contrib” and “non-free” repositories to look as follows (use tab key); deb http://httpredir.debian.org/debian jessie main contrib non-free deb http://security.debian.org/ jessie/updates main contrib non-free Save the file and exit

23 Things to do post-install  2. Update the System afnog@debian8: ~$ sudo apt-get update afnog@debian8: ~$ sudo apt-get upgrade  3. Install SSH (If it was not installed during system installation) afnog@debian8: ~$ sudo apt-get install openssh-server  4. Disable unwanted Services afnog@debian8: ~$ sudo service - - status-all afnog@debian8: ~$ sudo service exim4 stop  5. Check Listening Network Ports afnog@debian8: ~$ sudo netstat –tulpn

24 Things to do post-install  6. Disable Remote SSH Root User Login afnog@debian8: ~$ sudo nano /etc/ssh/sshd_config  Change line or if missing Add the line (use  PermitRootLogin without-password  PermitRootLogin no afnog@debian8: ~$ sudo service sshd restart  7. Configure NTP Server afnog@debian8: ~$ sudo apt-get install ntp  (optional but necessary) Edit ntp servers and put local ones afnog@debian8: ~$ sudo nano /etc/ntp.conf  Comment “server” sections or replace server with a local/internal one afnog@debian8: ~$ sudo service ntp start afnog@debian8: ~$ ntpdc –pn afnog@debian8: ~$ ntpq –pn  More here: https://www.debian.org/doc/manuals/securing-debian-howto/

25 Thank you! Questions?

Download ppt "WELCOME TO SS-E AFNOG - 2016 BOTSWANA Scalable Services – English."

Similar presentations

Client-server practices DSC340 Mike Pangburn. Agenda Overview of client-server development Editing on client (e.g., Notepad) or directly on server (e.g.,

Client-server practices DSC340 Mike Pangburn. Agenda Overview of client-server development Editing on client (e.g., Notepad) or directly on server (e.g.,
My UM Portal Click on the weblink Register for education and exams

My UM Portal Click on the weblink Register for education and exams
FIRST SESSION - XAMPP Jeongmin Lee.  Jeongmin Lee  CS  PHD  Machine Learning, AI  Web System Development.

FIRST SESSION - XAMPP Jeongmin Lee.  Jeongmin Lee  CS  PHD  Machine Learning, AI  Web System Development.
Presentation Heading – font Arial

Presentation Heading – font Arial
beas WEB App Installation

beas WEB App Installation
AfNOG 2006 Workshop on Network Technology Track E2 Scalable Network Infrastructure Introduction, Logistics, Schedule, etc.

AfNOG 2006 Workshop on Network Technology Track E2 Scalable Network Infrastructure Introduction, Logistics, Schedule, etc.
Introduction To The Course Network Architecture Hervey Allen Chris Evans Phil Regnauld September 3 - 4, 2009 Santiago, Chile.

Introduction To The Course Network Architecture Hervey Allen Chris Evans Phil Regnauld September 3 - 4, 2009 Santiago, Chile.
CSCI 1411 FUNDAMENTALS OF COMPUTING LAB Lab Introduction 1 Shane Transue MSCS.

CSCI 1411 FUNDAMENTALS OF COMPUTING LAB Lab Introduction 1 Shane Transue MSCS.
Chapter Apache Installation in Linux- Mandrake. Acknowledgment The following information has been obtained directly from www.mandrake.com www.mandrake.com.

Chapter Apache Installation in Linux- Mandrake. Acknowledgment The following information has been obtained directly from
Module 6 Windows 2000 Professional 6.1 Installation 6.2 Administration/User Interface 6.3 User Accounts 6.4 Managing the File System 6.5 Services.

Module 6 Windows 2000 Professional 6.1 Installation 6.2 Administration/User Interface 6.3 User Accounts 6.4 Managing the File System 6.5 Services.
DVG-N5402SP.

DVG-N5402SP.
Activating Pilot Account ( first time users ) Web-based Activation Browse to 1. Click on the link on the lower right that says.

Activating Pilot Account ( first time users ) Web-based Activation Browse to 1. Click on the link on the lower right that says.
SquirrelMail for Webmail AfNOG 2012 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Serrekunda, Gambia (Original Materials by Joelja)

SquirrelMail for Webmail AfNOG 2012 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Serrekunda, Gambia (Original Materials by Joelja)
AfNOG 2014 Track SI-E Scalable Network Infrastructure Introduction, Logistics, Schedule, etc.

AfNOG 2014 Track SI-E Scalable Network Infrastructure Introduction, Logistics, Schedule, etc.
AfNOG 2013 Track SI-E Scalable Network Infrastructure Introduction, Logistics, Schedule, etc.

AfNOG 2013 Track SI-E Scalable Network Infrastructure Introduction, Logistics, Schedule, etc.
SquirrelMail for Webmail AfNOG 2013 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Lusaka, Zambia (Original Materials by Joelja)

SquirrelMail for Webmail AfNOG 2013 Scalable Internet Services (SS-E) Presented by Michuki Mwangi Lusaka, Zambia (Original Materials by Joelja)
A crash course in njit’s Afs

A crash course in njit’s Afs
TAX-AIDE Network Router Setup Network Printer Setups July 2013 2013 SMT/TCS Training - Dallas1.

TAX-AIDE Network Router Setup Network Printer Setups July SMT/TCS Training - Dallas1.
Using the “CLI” Unix / Linux Preparation Course May 25 Djibouti.

Using the “CLI” Unix / Linux Preparation Course May 25 Djibouti.
One to One instructions Installing and configuring samba on Ubuntu Linux to enable Linux to share files and documents with Windows XP.

One to One instructions Installing and configuring samba on Ubuntu Linux to enable Linux to share files and documents with Windows XP.

Similar presentations

Ads by Google