Difference between revisions of "Nextelco:Application Server"
(→System installation) |
(→System installation) |
||
| Line 17: | Line 17: | ||
*2 -> 8 GB swap | *2 -> 8 GB swap | ||
*3 -> Rest / | *3 -> Rest / | ||
| + | The configuration of RAID1 has been done according to this web page [http://www.iprobot.net/linux-tutorial/how-to-setup-software-raid-in-debian-ubuntu/ RAID on debian.] | ||
| + | After Debian installation it is important to set up GRUB on both hard drives. To do that this is the command that has been used: | ||
| + | #dpkg-reconfigure -plow grub-pc | ||
It is convenient to install a SSH server in order to access the server remotely for any reason. These are the steps followed to install the SSH server: | It is convenient to install a SSH server in order to access the server remotely for any reason. These are the steps followed to install the SSH server: | ||
<ol> | <ol> | ||
| − | <li></li> | + | <li>Install openssh-server together with blacklisted RSA and DSA keys</li> |
| + | #openssh-server openssh-blacklist openssh-blacklist-extra | ||
| + | <li>Additionally, it is convenient to set up shared keys based log in.</li> | ||
| + | <ol> | ||
| + | <li>Generate in the local machine a RSA key pair.</li> | ||
| + | $ssh-keygen -t rsa | ||
| + | <li>Copy on the server the generated public key.</li> | ||
| + | $scp path_to_RSA_key username@server:/home/username/.ssh/authorized_keys | ||
| + | <li>Edit openssh-server configuration</li> | ||
| + | #vi /etc/ssh/sshd_config | ||
| + | -- change | ||
| + | #AuthorizedKeysFile %h/.ssh/authorized_keys | ||
| + | -- to | ||
| + | AuthorizedKeysFile %h/.ssh/authorized_keys | ||
| + | -- change: | ||
| + | #PasswordAuthentication yes | ||
| + | -- to | ||
| + | PasswordAuthentication no | ||
| + | -- change | ||
| + | PermitRootLogin yes | ||
| + | -- to | ||
| + | PermitRootLogin no | ||
| + | <li>Restart sshd server</li> | ||
| + | #invoke-rc.d ssh restart | ||
| + | </ol> | ||
| + | <li>In order to access the server through SSH this is the necessary command.</li> | ||
| + | $ssh -i path_to_id_rsa(private) username@server | ||
</ol> | </ol> | ||
Return to [[Nextelco:Technology|Technology]] page. | Return to [[Nextelco:Technology|Technology]] page. | ||
Revision as of 18:26, 3 June 2014
Application Server
The application server is a combination of different services which are necessary for the management of user accounts and devices which provide connectivity to end-users. This are the services offered by the application server:
- AAA server: provides end-users and devices Authentication, Authorization and Accounting.
- Billing server:
- DHCP server: provides different range IP addresses depending on the requesting device.
- DNS server: provides easy to remember names for devices which compose the service network. Specially interesting for device management and maintenance.
- Management server: composed by Network Management System (NMS) for Radio Access Network (RAN) and RCMS for Base Station (BS) view and configuration.
- Maintenance server: different and necessary services for network maintenance such as TFTP, SYSLOG, Time service (NTP), Speed test and File sharing.
The Application Server could be one or a combination of several physical servers. Each server could hold just one machine or a combination of different virtual machines. This will be decided depending on physical servers availability as well as their resources.
System installation
The application server is based on Debian GNU/Linux 7.5 (wheezy) distribution. Due to fact that the server has two equal hard drives, during Debian installation software based RAID1 has been set up. These are the partitions:
- 1 -> 100MB /boot
- 2 -> 8 GB swap
- 3 -> Rest /
The configuration of RAID1 has been done according to this web page RAID on debian. After Debian installation it is important to set up GRUB on both hard drives. To do that this is the command that has been used:
#dpkg-reconfigure -plow grub-pc
It is convenient to install a SSH server in order to access the server remotely for any reason. These are the steps followed to install the SSH server:
- Install openssh-server together with blacklisted RSA and DSA keys
- Additionally, it is convenient to set up shared keys based log in.
- Generate in the local machine a RSA key pair.
- Copy on the server the generated public key.
- Edit openssh-server configuration
- Restart sshd server
- In order to access the server through SSH this is the necessary command.
#openssh-server openssh-blacklist openssh-blacklist-extra
$ssh-keygen -t rsa
$scp path_to_RSA_key username@server:/home/username/.ssh/authorized_keys
#vi /etc/ssh/sshd_config -- change #AuthorizedKeysFile %h/.ssh/authorized_keys -- to AuthorizedKeysFile %h/.ssh/authorized_keys -- change: #PasswordAuthentication yes -- to PasswordAuthentication no -- change PermitRootLogin yes -- to PermitRootLogin no
#invoke-rc.d ssh restart
$ssh -i path_to_id_rsa(private) username@server
Return to Technology page.
