Difference between revisions of "Jalapeno"

From Nuclear Physics Group Documentation Pages
Jump to navigationJump to search
m
m
Line 1: Line 1:
 
Jalapeno is a [[VMWare]] virtual machine currently running on [[Gourd]]. It serves as our primary [[DNS]] and CUPS print server.
 
Jalapeno is a [[VMWare]] virtual machine currently running on [[Gourd]]. It serves as our primary [[DNS]] and CUPS print server.
 +
 +
=Virtual Hardware=
 +
 +
*Memory: 256 MB
 +
*Hard Disk: 8 GB
 +
*Network 1 (eth0): Farm-Bridge
 +
*Network 2 (eth1): UNH-Bridge
 +
*SCSI Controller: LSI Logic
  
 
=Network Settings=
 
=Network Settings=
*IP Address farm: 10.0.0.253
+
*IP Address farm (eth0): 10.0.0.253
*IP Address UNH:  132.177.88.37
+
*IP Address UNH (eth1):  132.177.88.37
  
 
=Software and Services=
 
=Software and Services=
Line 12: Line 20:
 
== Named ==
 
== Named ==
  
Named provides [[DNS]] hostname resolution for the farm.physics.unh.edu backend network. DNS configuration is stored in the /var/named directory.
+
Named provides [[DNS]] hostname resolution for the farm.physics.unh.edu backend network. DNS configuration files are located in the /var/named directory.
  
 
== Backup Configuration ==
 
== Backup Configuration ==

Revision as of 13:33, 7 June 2010

Jalapeno is a VMWare virtual machine currently running on Gourd. It serves as our primary DNS and CUPS print server.

Virtual Hardware

  • Memory: 256 MB
  • Hard Disk: 8 GB
  • Network 1 (eth0): Farm-Bridge
  • Network 2 (eth1): UNH-Bridge
  • SCSI Controller: LSI Logic

Network Settings

  • IP Address farm (eth0): 10.0.0.253
  • IP Address UNH (eth1): 132.177.88.37

Software and Services

IPTables

Jalapeno uses the standard NPG iptables firewall. It allows ssh, DNS, and CUPS ipp connections.

Named

Named provides DNS hostname resolution for the farm.physics.unh.edu backend network. DNS configuration files are located in the /var/named directory.

Backup Configuration

/etc/rsync-backup.conf

# Backups are 'pull' only.  Too bad there isn't a better way to enforce this.
read only       = yes

# Oh for the ability to retain CAP_DAC_READ_SEARCH, and no other.  
#uid            = root
# XXX There seems to be an obscure bug with pam_ldap and rsync whereby 
# getpwnam(3) segfaults when (and only when) archiving /etc.  Using a numeric
# uid avoids this bug.  Only verified on Fedora Core 2.
uid             = 0

# There's not much point in putting the superuser in a chroot jail
# use chroot    = yes

# This isn't really an effective "lock" per se, since the value is per-module,
# but there really ought never be more than one, and it would at least 
# ensure serialized backups.
max connections = 1

[usr_local]
        path    = /usr/local
        comment = unpackaged software

[opt]
        path    = /opt
        comment = unpackaged software

[etc]
        path    = /etc
        comment = conf files

[var]
        path    = /var
        comment = user and system storage