Difference between revisions of "Old Tomato"

General Information

Okra is the monitoring server. Uses Cacti to do the monitoring, which currently operates questionably.

Hostnames: okra.unh.edu, okra.farm.physics.unh.edu

Network Configuration

Currently has ethernet cable to switch, accessing outside world via the VLAN functions of the switch.

/etc/sysconfig/network-scripts/ifcfg-farm

# Realtek|RTL-8169 Gigabit Ethernet
HWADDR=00:09:5B:BC:EC:C9
DEVICE=eth0
BOOTPROTO=none
IPADDR=10.0.0.246
NETMASK=255.255.255.0
ONBOOT=yes
TYPE=Ethernet
USERCTL=no
PEERDNS=yes
IPV6INIT=no

/etc/sysconfig/network-scripts/ifcfg-unh

# UNH network
VLAN=yes
DEVICE=eth0.2
BOOTPROTO=none
BROADCAST=132.177.91.255
IPADDR=132.177.88.73
NETMASK=255.255.252.0
NETWORK=132.177.88.0
ONBOOT=yes
REORDER_HDR=no
GATEWAY=132.177.88.1
TYPE=Ethernet
USERCTL=no
PEERDNS=yes
IPV6INIT=no

/etc/sysconfig/network-scripts/ifcfg-lo

DEVICE=lo
IPADDR=127.0.0.1
NETMASK=255.0.0.0
NETWORK=127.0.0.0
# If you're having problems with gated making 127.0.0.0/8 a martian,
# you can change this to something else (255.255.255.255, for example)
BROADCAST=127.255.255.255
ONBOOT=yes
NAME=loopback

Access Configuration

/etc/security/access.conf

# NPG Config:
# Allow direct root logins only from console and einstein
+ : root : LOCAL einstein.unh.edu einstein.farm.physics.unh.edu lentil.unh.edu lentil.farm.physics.unh.edu

# Allow only NPG users and administrators
- : ALL EXCEPT npg domain_admins : ALL