Difference between revisions of "Ziltoid"

From CSLabsWiki
Jump to: navigation, search
(Actually add things)
Line 12: Line 12:
 
| maintainer = [[User:cmr|Corey Richardson]], xperia64
 
| maintainer = [[User:cmr|Corey Richardson]], xperia64
 
| hostname = ziltoid.cslabs.clarkson.edu
 
| hostname = ziltoid.cslabs.clarkson.edu
| operating_system = Debian ?
+
| operating_system = Debian 8.3
| cpuspecs = ?
+
| interface1 = {{Network Interface | name=Clarkson Network | mac=0c:c4:7a:41:a7:bc | ip=128.153.145.2}}
| ramspecs = ?
+
| interface2 = {{Network Interface | name=Clarkson Network | mac=0c:c4:7a:41:a7:bd | ip=Not Applicable}}
 +
| cpuspecs = Intel Xeon CPU E3-1220 V2 @ 3.10GHz
 +
| ramspecs = 4 GB
 
}}
 
}}
  
Line 20: Line 22:
  
 
The IP address allocated for Ziltoid is 128.153.145.2, necessitated by the fact that OIT's router for our subnets already occupies 128.153.144.1 and 128.153.145.1.
 
The IP address allocated for Ziltoid is 128.153.145.2, necessitated by the fact that OIT's router for our subnets already occupies 128.153.144.1 and 128.153.145.1.
 +
 +
==Setup==
 +
Start with a base 8.3.0 Debian install, follow the [[How_to_add_Kerberos_to_a_Debian_Machine|Kerberos]] setup instructions, and perform the following modifications:
 +
 +
===Packages===
 +
The following should be uninstalled:
 +
    rdnssd nfs-client gcc-4.8-base ispell wamerican libthai-data
 +
    libgtk2.0-0 libthai0 mlocate laptop-detect sgml-base debian-faq reportbug libwww-robotrules-perl
 +
    aptitude m4 man-db texinfo file mutt os-prober sensible-utils installation-report install-info manpages
 +
The following should be installed:
 +
    tcpdump nmap lm-sensors bridge-utils iptables iptables-persistent traceroute
 +
 +
===Network Config===
 +
This is the current /etc/network/interfaces file:
 +
 +
    source /etc/network/interfaces.d/*
 +
    # The loopback network interface
 +
    auto lo
 +
    iface lo inet loopback
 +
    # To output switch
 +
    iface eth1 inet manual
 +
    # From input switch
 +
    iface eth3 inet manual
 +
    auto br0
 +
    iface br0 inet static
 +
        bridge_ports eth3 eth1
 +
        bridge_stp off
 +
            address 128.153.145.2
 +
            netmask 255.255.254.0
 +
            gateway 128.153.145.1
 +
            broadcast 128.153.145.255
 +
            dns-search cslabs.clarkson.edu
 +
            dns-nameservers 128.153.145.3

Revision as of 19:27, 28 March 2016

Ziltoid
IP Address(es): 128.153.145.2
Contact Person: Corey Richardson, xperia64
Last Update: None yet
Services: Various


Hostname: ziltoid.cslabs.clarkson.edu
Operating system: Debian 8.3
NIC 1: Clarkson Network
MAC: 0c:c4:7a:41:a7:bc
IP: 128.153.145.2
NIC 2: Clarkson Network
MAC: 0c:c4:7a:41:a7:bd
IP: Not Applicable
CPU: Intel Xeon CPU E3-1220 V2 @ 3.10GHz
RAM: 4 GB


Ziltoid is our latest ssh gateway box/firewall, following in the footsteps of (chronologically): Isengard, Mordor, Zuul and Zuko. But hopefully mostly Isengard.

The IP address allocated for Ziltoid is 128.153.145.2, necessitated by the fact that OIT's router for our subnets already occupies 128.153.144.1 and 128.153.145.1.

Setup

Start with a base 8.3.0 Debian install, follow the Kerberos setup instructions, and perform the following modifications:

Packages

The following should be uninstalled:

   rdnssd nfs-client gcc-4.8-base ispell wamerican libthai-data
   libgtk2.0-0 libthai0 mlocate laptop-detect sgml-base debian-faq reportbug libwww-robotrules-perl 
   aptitude m4 man-db texinfo file mutt os-prober sensible-utils installation-report install-info manpages

The following should be installed:

   tcpdump nmap lm-sensors bridge-utils iptables iptables-persistent traceroute

Network Config

This is the current /etc/network/interfaces file:

   source /etc/network/interfaces.d/*
   # The loopback network interface
   auto lo
   iface lo inet loopback
   # To output switch
   iface eth1 inet manual
   # From input switch
   iface eth3 inet manual
   auto br0
   iface br0 inet static
       bridge_ports eth3 eth1
       bridge_stp off
           address 128.153.145.2
           netmask 255.255.254.0
           gateway 128.153.145.1
           broadcast 128.153.145.255
           dns-search cslabs.clarkson.edu
           dns-nameservers 128.153.145.3