August 12, 2010

Login Linux Terminal

Login linux terminal pwd ls useradd commands accessing virtual terminals

In this assignment I will instruct you about some basic commands of Linux. You will get seven virtual terminal when you perform full installations. Although you can use graphics for daily task but here we are preparing for RHCE exam so you must use command line interface. Because all question are based on command line in RHCE Exam.

Virtual Consoles

A virtual console is a command line where you can log into and control Linux. As RHEL is a multi terminal operating system, you can log into Linux, even with the same user ID, several times. It's easy to open a new virtual console. Just use the appropriate ALT-function key combination. For example, pressing ALT-F2 brings you to the second virtual console. You can switch between adjacent virtual consoles by pressing ALT-RIGHT ARROW or ALT-LEFT ARROW. For example, to move from virtual console 2 to virtual console 3, press ALT-RIGHT ARROW.

You can switch between virtual terminals by just press the ALT+CTRL+Funcation key combinations.

ALT + CTRL + F1  for terminal 1
ALT + CTRL + F2 for terminal 2
ALT + CTRL + F3 for terminal 3
ALT + CTRL + F4 for terminal 4
ALT + CTRL + F5 for terminal 5
ALT + CTRL + F6 for terminal 6
ALT + CTRL + F7 for terminal 7

Terminal 7 is by default graphic mode beside it all six terminal are CLI based. Open any terminial by press ALT+CTRL+F1 key combinations. root account is automatically created when we install Linux.

default login screen

Type root on login name and press enter key, now give password ( no asterisk character like window to guess the password length) When you login from root account you will get # sign at command prompt , and when you login from normal user you will get $ prompt.

login in linux

#clear

This command is used to clear the screen.You have three options to logout .


Press CTRL+D
#exit
#logout

All three commands perform same task.


#pwd
/root

linux basic command

Print working directory command will tell you about current location from / partition.


#ls

ls command will list the object in directory. All directory are listed in blue color while files are shown white color.


#ls –a

Normal ls command will not list the hidden files. If you want to list the hidden file use –a switch with ls command to list the hidden files.


#ls –l

Ls command with –l switch will list the objects in long formats . we will discuss more about –l switch in coming sections.


#ll

Same as ls –l . First and major task for any system administrator is user managements. For testing purpose you can perform all task with root account but in real life root account is used for administrative purpose only. Lest create a normal user account for further practical.


#useradd [user name ]

Useradd command is used to create user. Several advance options are used with useradd command but you will learn about them in coming article.

linux create user


#passwd [user name]

In linux no user can be login without password. passwd command is used to assign password for any user. Do not execute this command without user name otherwise it will change root password.

Linux Unix Filesystem Hierarchy and Structure

Overview of the FHS

Everything in Linux can be reduced to a file. Partitions are associated with files such as /dev/hda1. Hardware components are associated with files such as /dev/modem. Detected devices are documented as files in the /proc directory. The Filesystem Hierarchy Standard (FHS) is the official way to organize files in Unix and Linux directories.

Linux/Unix Filesystems and Directories

Several major directories are associated with all modern Unix/Linux operating systems. These directories organize user files, drivers, kernels, logs, programs, utilities, and more into different categories. The standardization of the FHS makes it easier for users of other Unix-based operating systems to understand the basics of Linux. Every FHS starts with the root directory, also known by its label, the single forward slash (/). All of the other directories shown in Table are subdirectories of the root directory. Unless they are mounted separately, you can also find their files on the same partition as the root directory.

/ The root directory, the top-level directory in the FHS. All other directories are subdirectories of root, which is always mounted on some partition. All directories that are not mounted on a separate partition are included in the root directory?s partition.
/bin Essential command line utilities. Should not be mounted separately; otherwise, it could be difficult to get to these utilities when using a rescue disk.
/boot Includes Linux startup files, including the Linux kernel. Can be small; 16MB is usually adequate for a typical modular kernel. If you use multiple kernels, such as for testing a kernel upgrade, increase the size of this partition accordingly.
/etc Most basic configuration files.
/dev Hardware and software device drivers for everything from floppy drives to terminals. Do not mount this directory on a separate partition.
/home Home directories for almost every user.
/lib Program libraries for the kernel and various command line utilities. Do not mount this directory on a separate partition.
/mnt The mount point for removable media, including floppy drives, CD-ROMs, and Zip disks.
/opt Applications such as WordPerfect or StarOffice.
/proc Currently running kernel-related processes, including device assignments such as IRQ ports, I/O addresses, and DMA channels.
/root The home directory of the root user.
/sbin System administration commands. Don't mount this directory separately.
/tmp Temporary files. By default, Red Hat Linux deletes all files in this directory periodically.
/usr Small programs accessible to all users. Includes many system administration commands and utilities.
/var Variable data, including log files and printer spools.

Types of Files Used by Linux

When working with Linux, you need to be aware of the fact that there are a number of different file types used by the file system. This is another area where the Linux file system differs significantly from the Windows file system. With a Windows file system you basically have two entry types in the file system:

  • Directories
  • Files

Granted, you can have normal files, hidden files, shortcut files, word processing files, executable files, and so on. However, these are all simple variations of the basic file when working with Windows.
With Linux, however, there are a variety of different file types used by the file system. These include the file types shown in Table

File Type Description
Regular files These files are similar to those used by the file systems of other operating systems—for example, executable files, OpenOffice.org files, images, text configuration files, etc.
Links These files are pointers that point to other files in the file system.
FIFOs FIFO stands for First In First Out. These are special files used to move data from one running process on the system to another. A FIFO file is basically a queue where the first chunk of data added to the queue is the first chunk of data removed from the queue. Data can only move in one direction through a FIFO.
Sockets Sockets are similar to FIFOs in that they are used to transfer information between sockets. With a socket, however, data can move bi-directionally.

Some of the Configuration Files in /etc Directory that you should remember

File Function
/etc/fstab Lists the partitions and file systems that will be automatically mounted when the system boots.
/etc/group Contains local group definitions.
/etc/grub.conf Contains configuration parameters for the GRUB bootloader (assuming it’s being used on the system).
/etc/hosts Contains a list of hostname-to-IP address mappings the system can use to resolve hostnames.
/etc/inittab Contains configuration parameters for the init process.
/etc/init.d/ A subdirectory that contains startup scripts for services installed on the system. On a Fedora or Red Hat system, these are located in /etc/rc.d/init.d.
/etc/modules.conf Contains configuration parameters for your kernel modules.
/etc/passwd Contains your system user accounts.
/etc/shadow Contains encrypted passwords for your user accounts.
/etc/X11/ Contains configuration files for X Windows.

RHCE and RHCT Exam Preparation Guide


Study Points for the RHCE Exam

  • use standard command line tools (e.g., ls, cp, mv, rm, tail, cat, etc.) to create, remove, view, and investigate files and directories
  • use grep, sed, and awk to process text streams and files
  • use a terminal-based text editor, such as vim or nano, to modify text files
  • use input/output redirection
  • understand basic principles of TCP/IP networking, including IP addresses, netmasks, and gateways for IPv4 and IPv6
  • use su to switch user accounts
  • use passwd to set passwords
  • use tar, gzip, and bzip2
  • configure an email client on Red Hat Enterprise Linux
  • use text and/or graphical browser to access HTTP/HTTPS URLs
  • use lftp to access FTP URLs

RHCT skills

Troubleshooting and System Maintenance

RHCTs should be able to:

  • boot systems into different run levels for troubleshooting and system maintenance
  • diagnose and correct misconfigured networking
  • diagnose and correct hostname resolution problems
  • configure the X Window System and a desktop environment
  • add new partitions, filesystems, and swap to existing systems
  • use standard command-line tools to analyze problems and configure system

Installation and Configuration

RHCTs must be able to:

  • perform network OS installation
  • implement a custom partitioning scheme
  • configure printing
  • configure the scheduling of tasks using cron and at
  • attach system to a network directory service, such as NIS or LDAP
  • configure autofs
  • add and manage users, groups, quotas, and File Access Control Lists
  • configure filesystem permissions for collaboration
  • install and update packages using rpm
  • properly update the kernel package
  • configure the system to update/install packages from remote repositories using yum or pup
  • modify the system bootloader
  • implement software RAID at install-time and run-time
  • use /proc/sys and sysctl to modify and set kernel run-time parameters
  • use scripting to automate system maintenance tasks
  • configure NTP for time synchronization with a higher-stratum server

RHCE skills

Troubleshooting and System Maintenance

RHCEs must demonstrate the RHCT skills listed above, and should be able to:

  • use the rescue environment provided by first installation CD
  • diagnose and correct boot failures arising from bootloader, module, and filesystem errors
  • diagnose and correct problems with network services (see Installation and Configuration below for a list of these services)
  • add, remove, and resize logical volumes
  • diagnose and correct networking services problems where SELinux contexts are interfering with proper operation.

Installation and Configuration

RHCEs must demonstrate the RHCT-level skills listed above, and they must be capable of configuring the following network services:

  • HTTP/HTTPS
  • SMB
  • NFS
  • FTP
  • Web proxy
  • SMTP
  • IMAP, IMAPS, and POP3
  • SSH
  • DNS (caching name server, slave name server)
  • NTP

For each of these services, RHCEs must be able to:

  • install the packages needed to provide the service
  • configure SELinux to support the service
  • configure the service to start when the system is booted
  • configure the service for basic operation
  • Configure host-based and user-based security for the service

RHCEs must also be able to:

  • configure hands-free installation using Kickstart
  • implement logical volumes at install-time
  • use iptables to implement packet filtering and/or NAT
  • use PAM to implement user-level restrictions

Based on this RHCE guide we have created step by step guide of RHCE exam. By our RHCE guide you can get your RHCE certificates. We have managed various practical example and suggest you to go through all these.

RHCE EXAMS INFORMATIONS


RHCE exam assesses the candidates ability to do the following:

* Install and configure Red Hat Linux
* Configure file systems and networking
* Configure X, the graphical user interface used on Unix and Linux systems
* Configure basic security
* Configure network services
* Perform routine maintenance
* Perform diagnostics and troubleshooting

Because Red Hat regularly updates its Linux distribution, RHCE certification is not valid indefinitely. However, according to Red Hat policy, RHCE certification remains valid for at least one year.

RHCE Courses and Exam

as part of its RHCE program, Red Hat offers several courses designed to prepare candidates for the RHCE exam. Candidates must take course RH302, which is the exam itself. However, candidates can take none, some, or all of the other courses.
This section describes the RHCE courses offered by Red Hat, as well as the RH302 exam.

RH033: Introduction to Red Hat Linux I, II

RH033 is a four-day course intended for users who have no previous Unix or Linux experience. Students should, however, have previous experience with a computer, including use of a mouse and graphical user interface. Upon completion of the course, the student should be able to use and customize the GNOME desktop and be able to use the Linux command shell.

RH133: Red Hat Linux System Admin I, II

RH133 is a four-day course intended for users who are familiar with Red Hat Linux. Before taking this course, students should complete RH033 or possess equivalent experience. Upon completion of the course, students should be able to install and configure Red Hat Linux, X, and various network services and clients, such as DHCP, NIS, NFS, and Samba. Students should also be able to perform basic troubleshooting and rebuild the Linux kernel from source code.

RH253: Red Hat Linux Networking and Security Admin

RH253 is a four-day course intended for Unix or Linux system administrators. Before taking this course, students should complete RH133 or possess equivalent experience. Upon completion of the course, students should be able to install and configure network services such as Apache, DHCP, DNS, FTP, Samba, NFS, sendmail, and IMAP4/POP3 mail. Students should also be able to establish and administor a security policy that includes such elements as password security, kernel security, public/private key encryption, Kerberos, secure shell, and firewalls.

RH300: RHCE

RH300 is a five-day course that includes RH302, the RHCE exam, as an integral part of the course. Before taking this course, students should complete RH253 or possess equivalent experience and have experience as a Unix or Linux system or network administrator. The course consists of four days of instruction, and the fifth day is devoted to the RHCE exam. Upon completion of the course, students should be prepared to manage a Red Hat Linux system that offers common TCP/IP services, such as FTP and HTTP. The course includes eight units of instruction, each of which has one or more hands-on labs associated with the following topics:

* Hardware and Installation (x86 Architecture)
* Configuration and Administration
* Alternate Installation Methods
* Kernel Services and Configuration
* Standard Networking Services
* X Window System
* User and Host Security
* Routers, Firewalls, Clusters, and Troubleshooting

RH302: RHCE Exam

Though styled by Red Hat as a course, RH302 is not a course in the ordinary sense of the word. Instead, RH302 is the RHCE exam, which has duration of one day. RH302 is the only course that RHCE candidates must take. The exam consists of the following three closed-book components:

1. Diagnosis and troubleshooting lab (2 1/2 hours)
2. Installation and configuration lab (2 1/2 hours)
3. Multiple choice exam (1 hour)

Effective May 1, 2009, the RHCE exam is a single section lasting 3.5 hours. Previously, it had been two sections lasting a combined 5.5 hours. The content has be consolidated and reorganized into a single section in which time is used more efficiently. The RHCE exam consists of RHCT components (essentially the RHCT exam) plus RHCE-specific components. It is possible to earn RHCT in an RHCE exam if one has met the RHCT requirements but not the RHCE ones.

The components are not always presented in the same sequence. The course instructor, who acts as the exam proctor, will determine the sequence and announce it early in the day. The three components are equally weighted at 100 points each. The minimum passing score is 240 points, or 80 percent. However, a candidate must score at least 50 points (50 percent) on each exam component to pass the exam. Red Hat advises candidates of their exam scores by e-mail within 10 business days of taking the exam.

Practice

Because the RHCE exam is performance-based, it's crucial that you have, or develop, experience in working with Unix or Linux and related network services. This step by step guide is focus to get your RHCE certification by present practical exercises.
These exercises can be time-consuming, and you may feel that they’re unnecessary. However, unless you have extensive practical experience, you should perform every exercise. Often, exercises will lead you to discover subtle points not evident merely from reading the exercise. If your practical experience with Unix and Linux is small, you should construct and perform your own additional exercises. The RHCE exam tests for the equivalent of about two years of experience with Linux and networking. With diligent effort, you can accumulate that experience in a matter of weeks. However, doing so will require that you skimp nowhere.

May 4, 2010

Install & Configure Squid Proxy Server on RHEL 580

Sure Squid server is a popular open source GPLd proxy and web cache. It has a variety of uses, from speeding up a web server by caching repeated requests, to caching web, name server query , and other network lookups for a group of people sharing network resources. It is primarily designed to run on Linux / Unix-like systems. Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests. Squid consists of a main server program squid, a Domain Name System lookup program (dnsserver), a program for retrieving FTP data (ftpget), and some management and client tools.

Commands:

Install Squid on CentOS / RHEL 5
# yum install squid

Output:

Loading "installonlyn" plugin

Setting up Install Process

Setting up repositories

Reading repository metadata in from local files

Parsing package install arguments

Resolving Dependencies

--> Populating transaction set with selected packages. Please wait.

---> Package squid.i386 7:2.6.STABLE6-4.el5 set to be updated

--> Running transaction check

Dependencies Resolved

=============================================================================

Package Arch Version Repository Size

=============================================================================

Installing:

squid i386 7:2.6.STABLE6-4.el5 updates 1.2 M

Transaction Summary

=============================================================================

Install 1 Package(s)

Update 0 Package(s)

Remove 0 Package(s)

Total download size: 1.2 M

Is this ok [y/N]: y

Downloading Packages:

Running Transaction Test

Finished Transaction Test

Transaction Test Succeeded

Running Transaction

Installing: squid ######################### [1/1]

Installed: squid.i386 7:2.6.STABLE6-4.el5

Complete!

Squid Basic Configuration
Squid configuration file located at /etc/squid/squid.conf. Open file using a text editor:

# vi /etc/squid/squid.conf

At least you need to define ACL (access control list) to work with squid. The defaults port is TCP 3128. Following example ACL allowing access from your local networks 192.168.1.0/24 and 192.168.2.0/24. Make sure you adapt to list your internal IP networks from where browsing should be allowed:

acl our_networks src 192.168.1.0/24 192.168.2.0/24

http_access allow our_networks

Save and close the file. Start squid proxy server:

# chkconfig squid on

# /etc/init.d/squid start

Output:

init_cache_dir /var/spool/squid... Starting squid: . [ OK ]

Verify port 3128 is open:

# netstat -tulpn | grep 3128

Output:

tcp 0 0 0.0.0.0:3128 0.0.0.0:* LISTEN 20653/(squid)

Open TCP port 3128

Finally make sure iptables is allowing to access squid proxy server. Just open /etc/sysconfig/iptables file:

# vi /etc/sysconfig/iptables

Append configuration:

-A RH-Firewall-1-INPUT -m state --state NEW,ESTABLISHED,RELATED -m tcp -p tcp --dport 3128 -j ACCEPT

Restart iptables based firewall:

# /etc/init.d/iptables restart

Output:

Flushing firewall rules: [ OK ]

Setting chains to policy ACCEPT: filter [ OK ]

Unloading iptables modules: [ OK ]

Applying iptables firewall rules: [ OK ]

Loading additional iptables modules: ip_conntrack_netbios_n [ OK ]

Client configuration

Open a webbrowser > Tools > Internet option > Network settings > and setup Squid server IP address and port # 3128.