updated on 2013-10-01
Linux Solution Cost and other issues:
Table of Contents
- Configuration of a Network Client.
- Servers Hardware description
- Servers OS Installation
- Configuration of the Domain controller
- DHCP server
- DNS server
- Proxy server
- Bacula client
- Configuration of the back-up server Operating System
- Virtual box installation
- The Bacula service
- Software RAID
- DNS Server
- Proxy server
- DHCP Server
- Virtualisation Server
- Windows Virtual Server
The solution implemented
- The list of the main IP addresses in the network is as follows:
- Any client that is going to be manually reconfigured requires: an IP that is not in use in the range 192.168.1.xxx (where xxx = from 1 to 253 and different from all the user IP addresses). The gateway is 192.168.1.254; the DNS is 192.168.1.51 the WINs server (to access it click on advanced) is: 192.168.1.51 and the net mask is 255.255.255.0.
- Processors: Core i3 x2.
- Motherboard: Intel DH61WW x 2
- HDD: Toshiba 500 Gb x 4.
- RAM: 4 Gb x 2
- Additional Network Card 10/100 Mbps.
- The partitions for both servers will be:
- After the installation is finished you can check the RAID status using the command
cat /proc/mdstat. For more information read the manual on: http://microway.com/hpc-tech-tips/2011/08/managing-a-linux-software-raid-with-mdadm/
- In the case that one of the HDDs fails, the way of replacing it correctly can be found in this manual: http://www.howtoforge.com/replacing_hard_disks_in_a_raid1_array
- After installing an update and upgrade of the OS it is recommended, to do that execute aptitude updateandaptitudesafe-upgrade.
- After the installation it is also recommended to install SSH for remote administrative access, remember that this server could be working without a monitor.
- To Install the PDC server you need to follow several manuals: configure an LDAP server to host the database of users and passwords. Configure the computer as LDAP Consumer or Client on the server to be able to user LDAP as login method. Also configure Samba as a PDC using LDAP and lastly configure the client computers (join the windows computers to the domain).
- Manual to install LDAP server: http://www.server-world.info/en/note?os=Debian_6.0&p=ldap&f=1
- Manual to install LDAP Client: http://www.server-world.info/en/note?os=Debian_6.0&p=ldap&f=2
- Manual to install and Configure Samba server: http://www.server-world.info/en/note?os=Debian_6.0&p=samba&f=4, the smb configurationfile for the servercan also be found in Appendix I
- Manual to configure the windows client: http://www.server-world.info/en/note?os=Debian_6.0&p=samba&f=5When a windows computer is being joined to the domain first:
6. DNS server: This service helps with the translation of names to IP addresses and vice versa. There is a lot of documentation on internet, any way Webmin (https://192.168.1.51:10000) which will explained further on was used to configure it, but the following manual may serve to modify the server manually if is required: http://www.server-world.info/en/note?os=Debian_6.0&p=dnsthe names of the diferent hosts are: clinicserver50, clinicserver51 and fileserver should be resolvable from any computer, if the computer is not able to respond to this requests, then it needs to be reconfigured or there is a server or network problem. The configurationsusing webmin are attached as the Appendix III.
7. Proxy server: This service is used to control Internet browsing. It’s configuration file is also a manual (/etc/squid/squid.conf a copy on the backup server and you can find some Webmin picture as Appendix IV) and you can also find a lot of information to modify the server on Internet: http://www.server-world.info/en/note?os=Debian_6.0&p=squid
- (if required) Configure your browser not to user proxy for local addresses.· Open your browser and write in the address bar: https://192.168.1.51:10000
- It will then prompt you for user name and password, enter the root user and password to gain access to the administration platform.
- Webmin has a very simple interface, the main relevant aspects for the sake of this project are:
The system is organised in a tree view with a lot more than what is being shown on this picture, but this picture shows the main modules that we should focus on; Boot and Shutdown, Change Passwords (not for Domain users, use this module only for the root user), Samba server, Custom Commands (used mainly for managing Domain users and groups) Bind server, Bacula, DHCP server and Squid Proxy Server:
- To manage users and groups after logging-in to webmin go to ‘Others’-> Command Shell and execute the following commands.
- On the file /etc/rc.local there is one command line near to the end of the file that automatically starts the Windows Virtual machine, this server also has a graphic environment that might help in case of failure.
- The bacula File Daemon or bacula-fd: is installed as the client part of the system on every computer (box) that needs a backup. The most important is the one installed on the domain controller that stores the homes of all the users and all the company folders. The configuration file is self-explained, and it’s located on /etc/bacula/bacula-fd.conf, in this file the client just needs to know the Director server (bacula-dir) and the security password for this server.A copy of the configuration file is attached as Appendix V-A.
- The Bacula Storage Daemon or bacula-sd: is installed as the storage system for the backup data, this system only store and restores the things that the Director commands and it’s configured to do that on /home/bacula. It has more than 350 Gb of storage capacity and only needs to know where to store the files and the security password of the director to work. The configuration file can be found on the server on /etc/bacula/bacula-sd.conf.A copy of the configuration file is attached as Appendix V-B.
- The Bacula Director or bacula-director: is the brain of bacula, it manages the entire backup and restoration works to be done, this service says who, when and how someone is going to do any back-up or recovery job. It checks the password configurations and executes jobs. The configuration file for this service can be found on /etc/bacula/bacula-dir.conf, inside this file you can find the passwords for the different clients, the storage daemon, the schedules, the storage devices and the clients definition, etc. A copy of the configuration file is attached as Appendix V-C.
- The bacula console is the software that can be used to manually manage the server behaviour, the main commands are: bacula-console to login to the console, status client to see the status of any of the clients, status director to check how the director is working, status storage to check the storage daemon and run and restore to manually run commands of backup and restore.
- The work was done successfully and documented.
- The servers had been working now for 6 moths with no interruptions, exept for the typical power breaks from Botswana.