From Fedora Project Wiki

m
Line 1: Line 1:
==='''System Configuration and Management'''===
==='''System Configuration and Management'''===


    * Route IP traffic and create static routes
* Route IP traffic and create static routes




Line 18: Line 18:




    * Use iptables to implement packet filtering and configure network address translation (NAT)
* Use iptables to implement packet filtering and configure network address translation (NAT)




Line 34: Line 34:




    * Use /proc/sys and sysctl to modify and set kernel run-time parameters
* Use /proc/sys and sysctl to modify and set kernel run-time parameters




Line 50: Line 50:




    * Configure system to authenticate using Kerberos
* Configure system to authenticate using Kerberos




Line 67: Line 67:




    * Build a simple RPM that packages a single file
* Build a simple RPM that packages a single file




Line 84: Line 84:




    * Configure a system as an iSCSI initiator that persistently mounts an iSCSI target
* Configure a system as an iSCSI initiator that persistently mounts an iSCSI target




Line 100: Line 100:




    * Produce and deliver reports on system utilization (processor, memory, disk, and network)
* Produce and deliver reports on system utilization (processor, memory, disk, and network)




Line 116: Line 116:




    * Use shell scripting to automate system maintenance tasks
* Use shell scripting to automate system maintenance tasks




Line 132: Line 132:




    * Configure a system to log to a remote system
* Configure a system to log to a remote system




Line 149: Line 149:




    * Configure a system to accept logging from a remote system
* Configure a system to accept logging from a remote system




Line 173: Line 173:
==='''Network Services'''===
==='''Network Services'''===


    * Install the packages needed to provide the service
* Install the packages needed to provide the service




Line 191: Line 191:




    * Configure SELinux to support the service
* Configure SELinux to support the service




Line 208: Line 208:




    * Configure the service to start when the system is booted
* Configure the service to start when the system is booted




Line 225: Line 225:




    * Configure the service for basic operation


* Configure the service for basic operation




Line 242: Line 242:




    * Configure host-based and user-based security for the service
 
* Configure host-based and user-based security for the service




Line 260: Line 261:
===HTTP/HTTPS===
===HTTP/HTTPS===


    * Configure a virtual host
* Configure a virtual host




Line 275: Line 276:




    * Configure private directories
* Configure private directories




Line 292: Line 293:




    * Deploy a basic CGI application
* Deploy a basic CGI application




Line 308: Line 309:




    * Configure group-managed content
* Configure group-managed content




Line 328: Line 329:
==='''DNS'''===
==='''DNS'''===


    * Configure a caching-only name server
* Configure a caching-only name server




Line 349: Line 350:




    * Configure a caching-only name server to forward DNS queries
* Configure a caching-only name server to forward DNS queries
      
      


Line 368: Line 369:
==='''FTP'''===
==='''FTP'''===


    * Configure anonymous-only download
* Configure anonymous-only download




Line 388: Line 389:
==='''NFS'''===
==='''NFS'''===


    * Provide network shares to specific clients
* Provide network shares to specific clients




Line 405: Line 406:




    * Provide network shares suitable for group collaboration
* Provide network shares suitable for group collaboration




Line 425: Line 426:
==='''SMB'''===
==='''SMB'''===


    * Provide network shares to specific clients
* Provide network shares to specific clients




Line 442: Line 443:




    * Provide network shares suitable for group collaboration
* Provide network shares suitable for group collaboration




Line 461: Line 462:
==='''SMTP'''===
==='''SMTP'''===


    * Configure a mail transfer agent (MTA) to accept inbound email from other systems
* Configure a mail transfer agent (MTA) to accept inbound email from other systems




Line 478: Line 479:




    * Configure an MTA to forward (relay) email through a smart host
* Configure an MTA to forward (relay) email through a smart host




Line 496: Line 497:
==='''SSH'''===
==='''SSH'''===


    * Configure key-based authentication
* Configure key-based authentication




Line 514: Line 515:
==='''NTP'''===
==='''NTP'''===


    * Synchronize time using other NTP peers
* Synchronize time using other NTP peers





Revision as of 16:52, 7 February 2011

System Configuration and Management

  • Route IP traffic and create static routes









  • Use iptables to implement packet filtering and configure network address translation (NAT)








  • Use /proc/sys and sysctl to modify and set kernel run-time parameters








  • Configure system to authenticate using Kerberos









  • Build a simple RPM that packages a single file









  • Configure a system as an iSCSI initiator that persistently mounts an iSCSI target








  • Produce and deliver reports on system utilization (processor, memory, disk, and network)








  • Use shell scripting to automate system maintenance tasks








  • Configure a system to log to a remote system









  • Configure a system to accept logging from a remote system











Network Services

  • Install the packages needed to provide the service









  • Configure SELinux to support the service









  • Configure the service to start when the system is booted









  • Configure the service for basic operation









  • Configure host-based and user-based security for the service








HTTP/HTTPS

  • Configure a virtual host








  • Configure private directories









  • Deploy a basic CGI application








  • Configure group-managed content









DNS

  • Configure a caching-only name server











  • Configure a caching-only name server to forward DNS queries









FTP

  • Configure anonymous-only download









NFS

  • Provide network shares to specific clients









  • Provide network shares suitable for group collaboration









SMB

  • Provide network shares to specific clients









  • Provide network shares suitable for group collaboration









SMTP

  • Configure a mail transfer agent (MTA) to accept inbound email from other systems









  • Configure an MTA to forward (relay) email through a smart host








SSH

  • Configure key-based authentication








NTP

  • Synchronize time using other NTP peers