Server: Unterschied zwischen den Versionen
Aus Wiki Freifunk-3Ländereck
(→IP-Adressen / Hostnames) |
(→IP-Adressen / Hostnames) |
||
| Zeile 5: | Zeile 5: | ||
!IPv6 | !IPv6 | ||
!Standort | !Standort | ||
| + | !Fingerprint | ||
!Kommentar | !Kommentar | ||
|- | |- | ||
| Zeile 17: | Zeile 18: | ||
| | | | ||
|1&1 Internet AG (DE) | |1&1 Internet AG (DE) | ||
| + | | | ||
|Gateway "Rheinfelden" von Rüdiger | |Gateway "Rheinfelden" von Rüdiger | ||
|- | |- | ||
| Zeile 23: | Zeile 25: | ||
|2a03:8460:1:2:109:: | |2a03:8460:1:2:109:: | ||
|masterssystems (Offenbach, DE) | |masterssystems (Offenbach, DE) | ||
| + | | | ||
|Gateway Freifunk Dreiländereck e.V. | |Gateway Freifunk Dreiländereck e.V. | ||
|- | |- | ||
| Zeile 29: | Zeile 32: | ||
| | | | ||
|XonServers (NL) | |XonServers (NL) | ||
| + | | | ||
|Gateway "Schopfheim" von Ben | |Gateway "Schopfheim" von Ben | ||
|- | |- | ||
| Zeile 35: | Zeile 39: | ||
|2a03:8460:1:2:1:13:: | |2a03:8460:1:2:1:13:: | ||
|masterssystems (Offenbach, DE) | |masterssystems (Offenbach, DE) | ||
| + | |1b:0f:3d:f5:2c:2f:2c:50:c5:9d:60:d3:e1:30:b0:43 | ||
|Applikationsserver Freifunk Dreiländereck e.V. | |Applikationsserver Freifunk Dreiländereck e.V. | ||
|- | |- | ||
| Zeile 42: | Zeile 47: | ||
|2a03:8460:1:2:2:13:: | |2a03:8460:1:2:2:13:: | ||
|masterssystems (Offenbach, DE) | |masterssystems (Offenbach, DE) | ||
| + | |de:3d:f5:96:f2:8c:46:4b:23:76:f8:c9:ab:e5:65:d8 | ||
|Applikationsserver Freifunk Dreiländereck e.V. | |Applikationsserver Freifunk Dreiländereck e.V. | ||
|} | |} | ||
Version vom 20. Juni 2015, 17:14 Uhr
Inhaltsverzeichnis
IP-Adressen / Hostnames
| Hostname | IPv4 | IPv6 | Standort | Fingerprint | Kommentar |
|---|---|---|---|---|---|
| gw1 | 5.45.110.180 | netcup GmbH (DE) | Gateway "Weil am Rhein" von Bernd | ||
| gw2 | 87.106.67.172 | 1&1 Internet AG (DE) | Gateway "Rheinfelden" von Rüdiger | ||
| gw3 | 185.89.196.109 | 2a03:8460:1:2:109:: | masterssystems (Offenbach, DE) | Gateway Freifunk Dreiländereck e.V. | |
| gw4 | 146.185.253.133 | XonServers (NL) | Gateway "Schopfheim" von Ben | ||
| node1 | 185.89.196.13 | 2a03:8460:1:2:1:13:: | masterssystems (Offenbach, DE) | 1b:0f:3d:f5:2c:2f:2c:50:c5:9d:60:d3:e1:30:b0:43 | Applikationsserver Freifunk Dreiländereck e.V. |
| node2 | 185.89.197.13 | 2a03:8460:1:2:2:13:: | masterssystems (Offenbach, DE) | de:3d:f5:96:f2:8c:46:4b:23:76:f8:c9:ab:e5:65:d8 | Applikationsserver Freifunk Dreiländereck e.V. |
Setup
Standard
identisch für alle FF3L-Server:
- Debian AMD64 Netinstall (7.8)
- Locale: EN_US.UTF8
- Partitionierung:
- vda1: 2 GB swap
- vda2: Rest ext4 /
- Setup Pakete:
- SSH Server
- Standard system utilities
- Pakete nachinstallieren:
- fail2ban
- htop
- iotop
- joe
- libpam_ldapd
- screen
- strace
- sudo
- Admin-User (lokal)
- admin:x:900:900::/home/admin:/bin/bash
- /etc/ssh/sshd_config
... PermitRootLogin no ... AuthorizedKeysCommand /usr/local/bin/ldap_keys.sh AuthorizedKeysCommandUser nobody ...
- LDAP
- URI: ldaps://apps.freifunk-3laendereck.de/
- nsswitch: aliases, group, passwd, shadow
Applikationsserver
- Setup-Profile:
- Web server
- SQL database
- DNS server
- Mail server
- SSH server
- Standard system utilities
- Pakete nachinstallieren:
- slapd
- ldap-account-manager
- apache2-mpm-itk
- /etc/default/slapd
... SLAPD_SERVICES="ldaps:/// ldapi:///" ...
- /etc/ldap/ldap.conf
BASE dc=freifunk-3laendereck,dc=net URI ldapi:/// ... TLS_REQCERT allow
- /etc/nslcd.conf
... uri ldapi:/// uri ldaps://192.168.13.2/ ... base dc=freifunk-3laendereck,dc=net ... rootpwmoddn cn=admin,dc=freifunk-3laendereck,dc=net ...
- /usr/share/pam-configs/mkhomedir
Name: Create home directory during login
Default: yes
Priority: 900
Session-Type: Additional
Session:
required pam_mkhomedir.so umask=0077 skel=/mnt/nfs/home/skel
