Gentoo Archives: gentoo-dev

From: Brave Cobra <bravecobra@×××××××.be>
To: gentoo-dev@g.o
Subject: Re: [gentoo-dev] Setting up a server with Gentoo
Date: Mon, 23 Dec 2002 02:59:44
Message-Id: 1040612230.10989.70.camel@zeus.olympus
In Reply to: Re: [gentoo-dev] Setting up a server with Gentoo by Troy Dack
1 On Mon, 2002-12-23 at 02:11, Troy Dack wrote:
2
3 > Brave Cobra wrote:
4 > > Hi,
5 > >
6 > > I've been writing article on setting up a server using Gentoo 1.4 for a
7 > > windows Network. Basically it covers setting up DHCP, DNS, SAMBA, Apache
8 > > and MySQL. Some other servers, like sendmail, CVS, OpenSSL Apache server
9 > > and Squid will be included in the future.
10 >
11 > Please pick something other than sendmail, especially if you are
12 > targeting it at new comers. Postfix + procmail is a nice combo
13 > (IMNSHO), others are qmail and courier (I use courier-imap too).
14 >
15 > > The prelimenary article can be found at
16 > > http://www.bravecobra.com/docs/setupserver.html
17 > > That article is subject to change of course.
18 > > However, before I publish it to the Wide Internet world, I would like
19 > > some of you Gentoo experts to read it through and let me know whether I
20 > > told something wrong or how I could explain something better to the
21 > > newbies. Yes, it's intend to be a newbie guide.
22 > > Any further help is much appreciated.
23 >
24 > I notice that you are advocating dnsmasq because it is not as resource
25 > intensive as BIND. I'm running bind on a P200 with apache-2.0 and a
26 > heap of other crap, it does just fine.
27 >
28 > The other advantage that you have with bind9 is the ability to do
29 > dynamic dns updates on your local zone files when dhcp hands out a new
30 > lease. This makes plug and network for you local lan really easy. Any
31 > windows clients get a hostname based on the machine name, and it is
32 > resolvable by other machines in the network.
33 >
34 > If you want some sample zone and named.conf files let me know.
35 >
36 > WRT the firewall, you say that your router does most of it for you.
37 > Apart from the netfilter docs, point people to a freshmeat search for
38 > iptables firewall scripts (there are hepas of them), I'll also plug one
39 > that I have massaged from another script:
40 > http://linux.tkdack.com/module.php?mod=firewall
41 >
42 > With your mail server setup make sure that you include some sort of imap
43 > server (and note the differences between mbox & maildir and which
44 > servers use which). On a local lan it is really pointless having to pop
45 > mail from the server. Another option (if the clients are going to be
46 > Linux) is to have the home directories exported via nfs and the mail
47 > storage be in the home dir, then the linux users can access their mail
48 > with traditional clients and point the client at their home dir. I
49 > don't know of any Windows programs that can do this, so they still need
50 > a retrieval method.
51 >
52 > Thanks for the Samba<->WinXP tip, I'll have to give it a try, I've been
53 > trying to get WinXP to auth with my samba box for a while :)
54 >
55 > The proxy-config.pac file is a nice inclusion.
56 >
57 > Don't forget some comments regarding log files, setting up of sysklogd
58 > (or your prefered log daemon), rotation of log files and regular
59 > checking on log files.
60
61 Hi,
62
63 tnx for reading the article.
64
65 I choose for dnsmasq since it was very easy to setup and should cover
66 most of the home LAN's, but the choice of BIND should be there for the
67 more adventurious.
68 I'd love to get some sample files for BIND to be included in the
69 article. Maybe with an example for dynamic dns updates. I know there are
70 several people looking for that (read migrating from Windows NT server
71 to Linux). If you could provide me with an example?
72
73 And example firewall script should be included I know. Could you provide
74 me with one that takes cares of the installed servers? I'm not too good
75 at that part. That's why I bought a router ;). That would make my
76 article complete. Still have to cover the OpenSSL part of Apache(or
77 maybe that's too far fetched) and sshd.
78
79 As for the mail server, I guess I'd be going for Postfix then. I hope I
80 won't forget to have both Windows and Linux clients on the network. The
81 server should be able to work with both. I think I can cover that part
82 myself. But covering multiple mailservers could be interesting. Although
83 I don't have experience with most of them.
84
85 Does somebody have more suggestions one what to include into this guide?
86
87 Brave Cobra
88 Email : bravecobra@×××××××.be
89 Website : http://www.bravecobra.com

Attachments

File name MIME type
smiley-4.png image/png