Presentation is loading. Please wait.

Presentation is loading. Please wait.

COP 4343 Unix System Administration

Published byLester Holt Modified over 6 years ago

Similar presentations

Presentation on theme: "COP 4343 Unix System Administration"— Presentation transcript:

1 COP 4343 Unix System Administration
Unit 12: basic network services concepts dhcpd, named superserver

2 Basic Network Services
service listens on port for requests examples: http uses port 80 ssh uses port 22 firewall must allow IP packets through /etc/sysconfig/iptables service iptables restart

3 /etc/sysconfig/iptables
# ftp -A RH-Firewall-1-INPUT -p tcp --dport 20 -j ACCEPT -A RH-Firewall-1-INPUT -p tcp --dport 21 -j ACCEPT # ssh -A RH-Firewall-1-INPUT -p tcp --dport 22 -j ACCEPT # http -A RH-Firewall-1-INPUT -p tcp --dport 80 -j ACCEPT # mail -A RH-Firewall-1-INPUT -p tcp --dport 25 -j ACCEPT -A RH-Firewall-1-INPUT -p tcp --dport 143 -j ACCEPT -A RH-Firewall-1-INPUT -p tcp --dport 587 -j ACCEPT

4 Basic Network Services
examples: dhcpd: UPD ports 67 and 68 named: UPD port 53 superserver: can be configured to listen on any port

5 dhcpd server install dhcpd package configuration file: /etc/dhcpd.conf
enable in run-level

6 dhcpd configuration example
subnet netmask { range ; Range of available IP addresses default-lease-time ; Default lease time in seconds max-lease-time ; Maximum time a lease will be given option subnet-mask ; subnetmask given to clients option domain-name-servers , ; List of name server IP addresses option domain-name "your.domain.name"; option routers ; Gateway router }

7 named server implements domain name server (DNS)
Configuration file: /var/named/chroot/etc/named.conf example: zone "ege.com" { type master; file "ege.hosts"; };

8 Example: ege.hosts @ IN SOA ege.com. raimund.ege.com. ( 75
8H ; refresh 2H ; retry 1W ; expire 1H) ; min time to live NS ns3.ege.com. NS ns4.ege.com. MX mail.ege.com. TXT "Ege Consulting Inc" A mail A ns A ns A instructor A A

9 Superserver configurable server to handle multiple network services
xinetd xinetd.conf xinetd.d listens on multiple network ports and starts the appropriate service when a client connects to that port traditional Unix: inetd

10 example configuration file
service echo { type = INTERNAL id = echo-stream socket_type = stream protocol = tcp user = root wait = no disable = yes }

11 example configuration file
service ntalk { disable = yes socket_type = dgram wait = yes user = root group = tty server = /usr/bin/ktalkd }

12 xinetd security enable port in firewall host specific: iptables
/etc/hosts.allow /etc/hosts.deny

13 xinetd to enable: disable = no reload xinetd service
service xinetd reload test via telnet host port

14 example services port 7: echo port 19: chargen port 9: discard
repeats back whatever you type port 19: chargen returns a character stream until control-D port 9: discard like /dev/null port 37: time returns a number corresponding to the current time port 13: daytime returns the current date/time in human-readable form

15 Services Beyond the Superserver
services do not rely on superservers: Apache Web SMTP FTP ... run as service in run level

Download ppt "COP 4343 Unix System Administration"

Similar presentations

McGraw-Hill©The McGraw-Hill Companies, Inc., 2000 Ferry Astika Saputra Workshop Administrasi Jaringan TELNET & SSH.

McGraw-Hill©The McGraw-Hill Companies, Inc., 2000 Ferry Astika Saputra Workshop Administrasi Jaringan TELNET & SSH.
Linux Networking TCP/IP stack kernel controls the TCP/IP protocol Ethernet adapter is hooked to the kernel in with the ipconfig command ifconfig sets the.

Linux Networking TCP/IP stack kernel controls the TCP/IP protocol Ethernet adapter is hooked to the kernel in with the ipconfig command ifconfig sets the.
Securing Network using Linux. Lesson Outline Setting up a secure system TCP Wrapper configuration Firewalls in Linux Authentication Systems –NIS –Kerberos.

Securing Network using Linux. Lesson Outline Setting up a secure system TCP Wrapper configuration Firewalls in Linux Authentication Systems –NIS –Kerberos.
Linux+ Guide to Linux Certification, Second Edition Chapter 15 Configuring Network Services and Security.

Linux+ Guide to Linux Certification, Second Edition Chapter 15 Configuring Network Services and Security.
Linux Services Sirak Kaewjamnong. 2 Linux DHCP Server  DHCP is an IP address dynamically assigned from DHCP server.  PC client will most likely get.

Linux Services Sirak Kaewjamnong. 2 Linux DHCP Server  DHCP is an IP address dynamically assigned from DHCP server.  PC client will most likely get.
DHCP. DHCP (Dynamic Host Configuration Protocol) is a network service that enables clients to obtain network settings (IP Address, Subnet Mask, Default.

DHCP. DHCP (Dynamic Host Configuration Protocol) is a network service that enables clients to obtain network settings (IP Address, Subnet Mask, Default.
New SA Training Topic 7: DNS and DHCP To implement the underlying basis for our organizations networking, we rely on two fundamental services  DNS – the.

New SA Training Topic 7: DNS and DHCP To implement the underlying basis for our organizations networking, we rely on two fundamental services  DNS – the.
1 Linux Networking and Security Chapter 4. 2 Configuring Client Services Configure “superservers” to handle multiple network services Set up administrative.

1 Linux Networking and Security Chapter 4. 2 Configuring Client Services Configure “superservers” to handle multiple network services Set up administrative.
Module 3: Configuring Basic TCP/IPv4 Settings. Overview of the TCP/IP Protocol Suite Overview of TCP/IP Addressing Name Resolution Dynamic IP Addressing.

Module 3: Configuring Basic TCP/IPv4 Settings. Overview of the TCP/IP Protocol Suite Overview of TCP/IP Addressing Name Resolution Dynamic IP Addressing.
A+ Guide to Software: Managing, Maintaining, and Troubleshooting, 5e

A+ Guide to Software: Managing, Maintaining, and Troubleshooting, 5e
Computer Networks. IP Addresses Before we communicate with a computer on the network we have to be able to identify it. Every computer on a network must.

Computer Networks. IP Addresses Before we communicate with a computer on the network we have to be able to identify it. Every computer on a network must.
70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 7: Domain Name System.

70-291: MCSE Guide to Managing a Microsoft Windows Server 2003 Network Chapter 7: Domain Name System.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Application Layer Functionality and Protocols.
Network Services CSCI N321 – System and Network Administration Copyright © 2000, 2007 by Scott Orr and the Trustees of Indiana University.

Network Services CSCI N321 – System and Network Administration Copyright © 2000, 2007 by Scott Orr and the Trustees of Indiana University.
Linux: A Wireless Solution Josh Joiner. Agenda Introduction Minimum Hardware Basic Components Steps on setting up a wireless network Security Concerns.

Linux: A Wireless Solution Josh Joiner. Agenda Introduction Minimum Hardware Basic Components Steps on setting up a wireless network Security Concerns.
ITI-481: Unix Administration Meeting 3. Today’s Agenda Hands-on exercises with booting and software installation. Account Management Basic Network Configuration.

ITI-481: Unix Administration Meeting 3. Today’s Agenda Hands-on exercises with booting and software installation. Account Management Basic Network Configuration.
1 Network Administration ITA3564 Leung Hung 25958118

1 Network Administration ITA3564 Leung Hung
Linux Services Muhammad Amer. 2 xinetd Programs  In computer networking, xinetd, the eXtended InterNET Daemon, is an open-source super-server daemon.

Linux Services Muhammad Amer. 2 xinetd Programs  In computer networking, xinetd, the eXtended InterNET Daemon, is an open-source super-server daemon.
1 Introductory material. This module illustrates the interactions of the protocols of the TCP/IP protocol suite with the help of an example. The example.

1 Introductory material. This module illustrates the interactions of the protocols of the TCP/IP protocol suite with the help of an example. The example.
Fundamentals of Proxying. Proxy Server Fundamentals  Proxy simply means acting on someone other’s behalf  A Proxy acts on behalf of the client or user.

Fundamentals of Proxying. Proxy Server Fundamentals  Proxy simply means acting on someone other’s behalf  A Proxy acts on behalf of the client or user.

Similar presentations

Ads by Google