linux standard operating environments
play

Linux Standard Operating Environments What is an SOE? SOE - - PDF document

Jun 14, 2023 •35 likes •835 views

Linux Standard Operating Environments What is an SOE? SOE - Standard Operating Environment Greatly reduces time to: deploy new hosts - because the best way to standardise is to automate. fix problems - because everything is built

  1. Linux Standard Operating Environments What is an SOE? • SOE - Standard Operating Environment • Greatly reduces time to: • deploy new hosts - because the best way to standardise is to automate. • fix problems - because everything is built the same way, everything is broken the same way. • maintain, update and patch hosts.

  2. What an SOE is not • A silver bullet - an SOE does not: • fix a broken environment (unless you replace it); • replace staff (may reduce staff if overstaffed); • replace documentation, planning/designing or testing; • automate service deployment... • though it can be a good starting point. What an SOE is not • A means of improving security... • though it is a good way to deploy default security. • Something you do not need until you have “x number of servers”. • A setup where you have every piece of software, required by all possible services, deployed on every server, even if they aren’t going to use it.

  3. Why would you want one • Time saving; • Improved documentation: • One shared document for the SOE; and • One for what makes a particular service unique. • Disaster Recovery; • Customer/Client confidence; and • Ability to offload to junior staff. And why you would not want one... • Your Server Farm is anarchy and no two systems are alike, they are all critical and no one understands them. • Job security. Neither of the above reasons is valid. You always need and want one.

  4. Components of an SOE • Base Operating System and approved add-ons; • A repository server is highly recommended; • Defined deployment method or process; • Centralised Configuration Management Tool; • Clear vision of what your SOE is / is not; • Standard Operating Procedures; and • Documentation. The Base Operating System • The OS of the production environment • This choice prefaces the OS for the development environment. • It makes no sense to run RHEL in production and develop on Ubuntu. • Use your SOE deployment for production and development.

  5. A Repository Server • Your first point of authority - if the package is not available here, it does not get installed (at least not on your production systems). • Needs a sane means of choosing and adding new packages. • Don’t end up mirroring six different versions of PHP . Deployment method • A means of installing the OS on your host that will bring it online to the point that it is: • usable; • secure; and • ready for the next step. • Should always be the same, e.g.: Kickstart.

  6. Deployment method • i.e. it will probably include: • network configuration; • base firewall and other security features; and • base configurations (daemons, installed packages, configuration files). Centralised Configuration Management • You may have more than one... provided they don’t conflict: • Kickstart with your custom scripts to do the basic deployment; • Puppet to customise and maintain the systems; • Specialised tools to manage special servers.

  7. Clear vision • What your SOE • is or is not; and • can or can not do. • You achieve this through: • documentation; • SOPs; and • explaining it to clients and co-workers. Monitoring • This should not be a part of your SOE. • You should already have it in place. • Installation and configuration should be part of deployment.

  8. Building a Repository Server Purpose Local mirror of all: • official distro packages; • approved for use add-on repositories; and • approved for use packages where the overall repository is not suitable.

  9. What it isn’t • A means of not paying for your OS licenses. • A means for others to not pay for their OS licenses. • Make sure you firewall it to only allow your authorised hosts in. Purpose (revisited) • The repository server: • is where the packages you use live; • does not need to be highly redundant; but • needs to be rebuildable quickly.

  10. Backup considerations • No need to be fully backed up, consider: • OS Vendor provided packages; vs • Expansion repositories (e.g.: EPEL) that might age out the software your service runs on. • Method of mirroring is more important: • document; and • version control configuration files. Source considerations • Red Hat provides every package they release from their repository. Thus you can get packages back. • EPEL provides (generally) the current version, and the one prior. After the packages have aged out, you will have great difficulty getting them back... • /var/cache/yum is not a solution. • keep a copy of every package (you might be using). • Keep all your local software releases.

  11. CentOS 6 • Major difference to RHEL: • No licensing fees; • No MRepo patching - (needed for RHEL); • No support. • Potential development environment due to software / package compatibility with RHEL. • See http://www.centos.org/ MRepo • For RHEL6 mrepo needs to get a bunch of custom patches to work. • Software from: • http://dag.wieers.com/home-made/mrepo/ • http://packages.sw.be/mrepo/ • http://mirror.internode.on.net/pub/epel/6/ x86_64/repoview/mrepo.html • Patches from: • http://lists.rpmforge.net/pipermail/tools/2010- November/001800.html

  12. MRepo installation • Hook your host up to EPEL and install mrepo and its dependencies. • wget http://mirror.internode.on.net/pub/epel/6/x86_64/ epel-release-6-5.noarch.rpm • rpm -ivh epel-release-6-5.noarch.rpm • yum install mrepo -y • installs httpd and createrepo ; • lftp was not installed but was needed. • Configure httpd to start at boot. MRepo Configuration • /etc/mrepo.conf • /etc/mrepo.conf.d/ • /usr/share/doc/mrepo-0.8.7/dists/ contains examples for various distributions • Configured for CentOS 6 + EPEL...:

  13. Sample MRepo configuration file [CentOS6] name = CentOS $release ($arch) release = 6 arch = x86_64 metadata = repomd repoview ### ISO images iso = CentOS-6.2-x86_64-bin-DVD?.iso ### BASE Release # not needed, using ISO ### Additional repositories C6Updates = http://mirror.internode.on.net/pub/centos/6/updates/x86_64/ C6Extras = http://mirror.internode.on.net/pub/centos/6/extras/x86_64/ C6Plus = http://mirror.internode.on.net/pub/centos/6/centosplus/x86_64/ ### Custom repository for your own RPM packages epel-x86_64 = http://mirror.internode.on.net/pub/epel/6/x86_64 MRepo - ... continued • Copy ISO(s) to /var/mrepo/iso/ to save you downloading everything; • run `mrepo -ugvvv` ; • edit to enable /etc/cron.d/mrepo ; • ensure mrepo and httpd are configured to start on boot; and • that iptables will allow the incoming connections.

  14. iptables • the RHCE way: [root@c6repo dists]# iptables --list -n | grep 80 [root@c6repo dists]# iptables -A INPUT -m state --state NEW -m tcp -p tcp --source 192.168.1.0/24 --dport 80 -j ACCEPT [root@c6repo dists]# iptables --list -n | grep 80 ACCEPT tcp -- 192.168.1.0/24 0.0.0.0/0 state NEW tcp dpt:80 [root@c6repo dists]# • or just edit /etc/sysconfig/iptables reposync ... prep • install reposync (yum-utils); • get and install the puppetlabs repo release: [root@c6repo ~]# wget http://yum.puppetlabs.com/el/6/products/x86_64/puppetlabs- release-6-1.noarch.rpm -q [root@c6repo ~]# rpm -ivh puppetlabs-release-6-1.noarch.rpm warning: puppetlabs- release-6-1.noarch.rpm: Header V4 RSA/SHA1 Signature, key ID 4bd6ec30: NOKEY Preparing... ######################################## [100%] 1:puppetlabs-release ######################################## [100%] [root@c6repo ~]# rpm -ql puppetlabs-release-6-1 /etc/pki/rpm-gpg/RPM-GPG-KEY-puppetlabs /etc/yum.repos.d/puppetlabs.repo [root@c6repo ~]#

  15. reposync ... configure • copy (or move) repo file to end in reposync • trim to suit your needs: [root@c6repo yum.repos.d]# cat /etc/yum.repos.d/puppetlabs.reposync [puppetlabs-products] name=Puppet Labs Products 6 - $basearch baseurl=http://yum.puppetlabs.com/el/6/products/$basearch gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-puppetlabs enabled=1 gpgcheck=1 [puppetlabs-deps] name=Puppet Labs Dependencies 6 - $basearch baseurl=http://yum.puppetlabs.com/el/6/dependencies/$basearch gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-puppetlabs enabled=1 gpgcheck=1 [root@c6repo yum.repos.d]# reposync ... sync • create a parent directory to sync to; and • sync the repositories: [root@c6repo yum.repos.d]# mkdir /var/www/mrepo/puppetlabs [root@c6repo yum.repos.d]# reposync -c ./puppetlabs.reposync -p /var/www/mrepo/ puppetlabs -a x86_64 -r puppetlabs-products ; reposync -c ./puppetlabs.reposync - p /var/www/mrepo/puppetlabs -a x86_64 -r puppetlabs-deps puppetlabs-products | 1.9 kB 00:00 puppetlabs-products/primary_db | 30 kB 00:00 [puppetlabs-products: 1 of 58 ] Downloading facter-1.6.2-1.el6.noarch.rpm facter-1.6.2-1.el6.noarch.rpm | 66 kB 00:00 [puppetlabs-products: 2 of 58 ] Downloading facter-1.6.0-1.el6.noarch.rpm facter-1.6.0-1.el6.noarch.rpm | 61 kB 00:00 ... snip ... [puppetlabs-deps: 12 of 12 ] Downloading tanukiwrapper-3.5.9-1.el6.x86_64.rpm tanukiwrapper-3.5.9-1.el6.x86_64.rpm | 260 kB 00:02 [root@c6repo yum.repos.d]#

Recommend

Linux Standard Operating Environments Thursday, 9 June 2011 What is an SOE? SOE - Standard

Linux Standard Operating Environments Thursday, 9 June 2011 What is an SOE? SOE - Standard

Linux Standard Operating Environments Thursday, 9 June 2011 What is an SOE? SOE - Standard Operating Environment Greatly reduces time to: deploy new hosts - because the best way to standardise is to automate. fix problems -

2.2k views • 161 slides
RITlug Week 2: Intro to Desktop Environments What exactly is Linux anyway? Generally when

RITlug Week 2: Intro to Desktop Environments What exactly is Linux anyway? Generally when

RITlug Week 2: Intro to Desktop Environments What exactly is Linux anyway? Generally when someone refers to Linux - they are really referring to a specific Linux distribution Linux itself is only an operating system kernel. A bridge between

775 views • 19 slides
What is GNU/Linux? GNU/Linux is a free operating system Other operating systems:

What is GNU/Linux? GNU/Linux is a free operating system Other operating systems:

What is GNU/Linux? GNU/Linux is a free operating system Other operating systems: Microsoft windows Apple Mac OS X Sun Solaris FreeBSD/OpenBSD AIX And many more..... GNU/Linux history GNU project started by

330 views • 9 slides
Introduction to Linux Fundamentals of Computer Science Outline Operating Systems Linux

Introduction to Linux Fundamentals of Computer Science Outline Operating Systems Linux

Introduction to Linux Fundamentals of Computer Science Outline Operating Systems Linux History Linux Architecture Logging in to Linux Command Format Linux Filesystem Directory and File Commands Wildcard Characters

686 views • 19 slides
Unit 10 Linux Operating System 2 Linux Based on the Unix operating system Developed as

Unit 10 Linux Operating System 2 Linux Based on the Unix operating system Developed as

1 Unit 10 Linux Operating System 2 Linux Based on the Unix operating system Developed as an open-source ("free") alternative by Linux Torvalds and several others starting in 1991 Originally only for Intel based processors

785 views • 16 slides
Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client

Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client

Linux Kung Fu Introduction What is Linux? Why Linux? What is the difference between a client and a server? What is Linux? Linux generally refers to a group of Unix-like free and open-source operating system distributions that use the Linux

562 views • 53 slides
Non-Standard Sample Environments Martin A. Schroer SAXS group Non-standard sample environments

Non-Standard Sample Environments Martin A. Schroer SAXS group Non-standard sample environments

Non-Standard Sample Environments Martin A. Schroer SAXS group Non-standard sample environments options at P12 Disclaimer Might not work for all samples Might not make sense for all samples You will likely need more sample

455 views • 27 slides
CS 377: Operating Systems Linux Case Study Outline Linux History Design Principles A

CS 377: Operating Systems Linux Case Study Outline Linux History Design Principles A

CS 377: Operating Systems Linux Case Study Outline Linux History Design Principles A review of what youve System Overview learned, and how it Process Scheduling applies to a real Memory Management operating system File

245 views • 13 slides
Introduction to Linux Francisco Salavert Torres February 29th, 2016 1 What is GNU/Linux?

Introduction to Linux Francisco Salavert Torres February 29th, 2016 1 What is GNU/Linux?

Introduction to Linux Francisco Salavert Torres February 29th, 2016 1 What is GNU/Linux? GNU/Linux to simplify Linux, is a free Operating System (OS). By Operating System, we mean the suite of programs and libraries which

662 views • 27 slides
SUSE Linux Enterprise 197 197 The Operating System Challenge Do you need an Enterprise

SUSE Linux Enterprise 197 197 The Operating System Challenge Do you need an Enterprise

SUSE Linux Enterprise 197 197 The Operating System Challenge Do you need an Enterprise Operating System? Linux is free as long as your time is worth nothing. - Jay Ashford Buy support and services, not software Extensive

982 views • 49 slides
Introduction to Linux Aline Abler Aline Abler Linux, whats that? The pieces of a Linux

Introduction to Linux Aline Abler Aline Abler Linux, whats that? The pieces of a Linux

Linux, whats that? The pieces of a Linux system Linux Concepts Distributions Desktop environments Switching to Linux Epilogue Introduction to Linux Aline Abler Aline Abler Linux, whats that? The pieces of a Linux system Linux

767 views • 57 slides
Linux for the Frugal HAM Linux: A computer operating system like Windows or IOS (Mac/Apple)

Linux for the Frugal HAM Linux: A computer operating system like Windows or IOS (Mac/Apple)

Linux for the Frugal HAM Linux: A computer operating system like Windows or IOS (Mac/Apple) Frugal: Nicer word for cheap HAM: Us! Why Linux ? Because were frugal and HAMs Frugal? Yeah. I havent bought a new computer except a

414 views • 13 slides
CS 423 Operating System Design: Introduction to Linux Kernel Programming (MP1 Q&A)

CS 423 Operating System Design: Introduction to Linux Kernel Programming (MP1 Q&A)

CS 423 Operating System Design: Introduction to Linux Kernel Programming (MP1 Q&A) Alberto Alvarez CS423: Operating Systems Design MP1 Goals Get yourself familiar with Linux kernel programming Learn to use the kernels linked

451 views • 32 slides
Linux Overview Amir Hossein Payberah payberah@gmail.com 1 Agenda Linux Overview Linux

Linux Overview Amir Hossein Payberah payberah@gmail.com 1 Agenda Linux Overview Linux

Linux Overview Amir Hossein Payberah payberah@gmail.com 1 Agenda Linux Overview Linux Distributions Linux vs Windows Linux Architecture Linux Security 2 What is Linux? Similar Operating System To Microsoft Windows, Sun

1.11k views • 55 slides
Introduction to Linux Command Line Interface Family of Unix-like Operating Systems Source:

Introduction to Linux Command Line Interface Family of Unix-like Operating Systems Source:

Introduction to Linux Command Line Interface Family of Unix-like Operating Systems Source: http://en.wikipedia.org/w/index.php?title=File:Unix_history-simple.svg&page=1; Creative Commons GNU/Linux and Distributions Linux kernel: the core

476 views • 5 slides
Operating Systems Real-Time POSIX TinyOS Standard of UNIX Real-time POSIX

Operating Systems Real-Time POSIX TinyOS Standard of UNIX Real-time POSIX

Operating Systems Real-Time POSIX TinyOS Standard of UNIX Real-time POSIX Supported by many operating systems Real-time schedulability analysis Variants of UNIX Linux Many commercial RTOS, e.g., VxWorks

545 views • 5 slides
Linux Kung Fu Stephen James UBNetDef, Spring 2017 Introduction What is Linux? What is the

Linux Kung Fu Stephen James UBNetDef, Spring 2017 Introduction What is Linux? What is the

Linux Kung Fu Stephen James UBNetDef, Spring 2017 Introduction What is Linux? What is the difference between a client and a server? What is Linux? Linux generally refers to a group of Unix-like free and open-source operating system

607 views • 48 slides
Mostafa Z. Ali Mostafa Z. Ali mzali@just.edu.jo 1 1 The Linux Utilities Linux did not

Mostafa Z. Ali Mostafa Z. Ali mzali@just.edu.jo 1 1 The Linux Utilities Linux did not

Fall 2009 Lecture 5 Operating Systems: Configuration & Use CIS345 The Linux Utilities Mostafa Z. Ali Mostafa Z. Ali mzali@just.edu.jo 1 1 The Linux Utilities Linux did not have a GUI. It ran on character based terminals only,

1.16k views • 70 slides
Cray Operating System and I/O Road Map Charlie Carroll Cray Operating Systems Focus Performance

Cray Operating System and I/O Road Map Charlie Carroll Cray Operating Systems Focus Performance

Cray Operating System and I/O Road Map Charlie Carroll Cray Operating Systems Focus Performance Maximize compute cycles delivered to applications while also providing necessary services Lightweight kernel on compute node Standard Linux

282 views • 17 slides
CS 423 Operating System Design: Introduction to Linux Kernel Programming (MP1 Q&A)

CS 423 Operating System Design: Introduction to Linux Kernel Programming (MP1 Q&A)

CS 423 Operating System Design: Introduction to Linux Kernel Programming (MP1 Q&A) Professor Adam Bates Fall 2018 CS423: Operating Systems Design Goals for Today Learning Objectives: Talk about the relevant skills required in

1.15k views • 33 slides
DMA API Performance and Contention on IOMMU Enabled Environments Thadeu Cascardo

DMA API Performance and Contention on IOMMU Enabled Environments Thadeu Cascardo

DMA API Performance and Contention on IOMMU Enabled Environments Thadeu Cascardo <cascardo@linux.vnet.ibm.com> Linux is a registered trademark of Linus Torvalds. Disclaimer There is some bias towards PPC64. Please, help me

569 views • 23 slides
BPF Turning Linux into a Microservices-aware Operating System About the Speaker Thomas Graf

BPF Turning Linux into a Microservices-aware Operating System About the Speaker Thomas Graf

BPF Turning Linux into a Microservices-aware Operating System About the Speaker Thomas Graf Linux kernel developer for ~15 years working on networking and security Helped write one of the biggest monoliths ever Worked on many

520 views • 27 slides
Operating in the worlds harshest and most dangerous environments. Who We Are Extreme

Operating in the worlds harshest and most dangerous environments. Who We Are Extreme

Operating in the worlds harshest and most dangerous environments. Who We Are Extreme Temperature Altitude Humidity Condensation Salt Fog Shock & Vibration Explosive Decompression 2 Our Purpose We do what we do, not because we love

578 views • 28 slides
real-time with Linux real-time with Linux 06.02.2019 Lukas Pirl, Daniel Richter, and Andreas

real-time with Linux real-time with Linux 06.02.2019 Lukas Pirl, Daniel Richter, and Andreas

real-time with Linux real-time with Linux 06.02.2019 Lukas Pirl, Daniel Richter, and Andreas Polze lecture on embedded operating systems Operating Systems & Middleware Group Hasso Plattner Institute at the University of Potsdam, Germany

861 views • 57 slides

More recommend