LINUX200 - Linux System Administration (RH133)
Intended for students already comfortable with working in the Linux/Unix environment, this in-depth course helps students acquire the variety of skills needed to set up and maintain Linux computers. The class concentrates on the popular Red Hat Enterprise Linux distribution, and covers subjects ranging from initial installation of Linux to day-to-day administrative tasks such as management of user accounts and disk space, and even imparting the trouble-shooting skills future system administrators will need to cope with unexpected behavior.
Individuals wishing to take this class should already have a solid grounding in Unix concepts. Fundamentals such as an understanding of the Linux filesystem, process management, and the ability to manipulate and edit files is considered a must and will not be covered in class. An understanding of network concepts, and the TCP/IP protocol suite is helpful.
PRE-INSTALLATION CONSIDERATIONS
Pre-Installation Considerations
Hardware Compatibility
Multi-OS Booting
Partition Considerations
Partition Planning
Filesystem Considerations
Journaled Filesystems
INSTALLING RHEL5/FC6
Installation Choices
Starting Installations from CD/DVD or USB
Installing From a Network Server
Installing From a Local Hard Drive
Install Program Interface
Installation Diagnostics
Language Selection
Keyboard Configuration
Automatic Partitioning
Partitioning with Disk Druid
Installing a Boot Loader
Network Configuration
Time Zone Configuration
root Password Configuration
Package Group Selection
Installing Packages
Install Finished
Firstboot
Firstboot Firewall Configuration
Firstboot SELinux Configuration
Firstboot Kernel Crash Dump Configuration
Firstboot Date and Time Configuration
Firstboot Authentication Configuration
Lab Tasks
Linux Installation
PC HARDWARE & LINUX
Detecting New Hardware Manually
Configuring New Hardware with Kudzu
PC System Hardware
SCSI Devices
Serial Ports
USB Devices and Configuration
Linux Device Files
Configuring New Hardware
Kernel Modules
Handling Module Dependencies
Configuring the Kernel via /proc/
Kernel Hardware Info - /sys/
/sys/ Structure
Lab Tasks
PC Hardware and Linux
POST-INSTALL SYSTEM CONFIGURATION
System Configuration Files
Configuration Utilities
Managing System Time
Managing Network-Wide Time
Continual Time Sync with NTP
Configuring NTP Clients
Managing Software
RPM Features, Architecture, and Package Files
Working With RPMs
Querying and Verifying with RPM
Updating the Kernel RPM
Intro to Package Management
Using the YUM command
Configuring YUM
YUM Repositories
Popular Yum Repositories
Common UNIX Printing System
Printing Subsystems
Defining a Printer
Kickstart
Creating and Using Kickstart files
Lab Tasks
NTP Client Configuration
Post-Install Configuration
YUM
Creating a Custom RPM Repository
Configuring Print Queues
Printer Configuration with system-config-printer
Automating Installation with Kickstart
BOOT PROCESS AND SYSV INIT
Booting Linux on PCs
GRUB Configuration
Kernel Boot Parameters
/sbin/init
System Init Styles
Linux Runlevels
/etc/inittab
/etc/rc.sysinit
/etc/init.d/ and rc#.d/
rc
Typical SysV Init Script
The /etc/rc.local File
Managing Daemons
Controlling Service Startup
Shutdown and Reboot
Lab Tasks
Boot Process
GRUB Command Line
Basic GRUB Security
USER/GROUP ADMINISTRATION AND NFS
User / Group Concepts
User Private Group Scheme
User Administration
Modifying Accounts
Group Administration
Password Aging
Default User Files
Controlling Logins
PAM, PAM Services, and PAM Control Statements
su and Wheel
sudo
Manual DS Client Configuration
RHEL/FC Graphical DS Client Configuration
File Sharing via NFS
NFSv4
NFS Server Configuration and Clients
Implementing NFSv4
Automounting Filesystems
Lab Tasks
User and Group Administration
User Private Groups
Using autofs
Configure NIS Authentication
Using autofs for Home Directories
Using LDAP for Centralized User Accounts
NFS Server Configuration
FILESYSTEM ADMINISTRATION
Partition Tables
File System Creation
Mounting File Systems
Filesystem Maintenance
Persistent Block Devices
udev
Resizing Filesystems
File Deletion and Undeletion
Swap
Disk Usage
Configuring Disk Quotas
Setting Quotas
Viewing and Monitoring Quotas
Filesystem Attributes
File Access Control Lists
Manipulating, Viewing, and Backing Up FACLs
Backup Hardware
Tape Libraries
Backup Software and Examples
Lab Tasks
Hot Adding Swap
Setting User Quotas
Using tar and cpio for Backups
Using rsync and ssh for Backups
Using dump and restore for Backups
Creating CD Images for Backups
Using Filesystem ACLs
LVM & RAID
Logical Volume Management
Implementing LVM
Creating Logical Volumes
Manipulating VGs & LVs
Advanced LVM Concepts
RHEL/FC Graphical LVM Admin Tool
RAID Concepts
The mdadm Command
mdadm RAID Implementation
RAID Monitoring/Control
Lab Tasks
Creating and Managing a RAID-5 Array
Creating and Managing LVM Volumes
TASK AUTOMATION & PROCESS ACCOUNTING
Automating Tasks
at/batch
at Access Control
cron
crontab Format
The crontab Command
/etc/cron.*/ Directories
anacron
Viewing and Managing Processes
Tuning Process Scheduling
System Logging
/etc/syslog.conf
Log Management
Log Anomaly Detector
Process Accounting
Enabling Process Accounting
Setting Resource Limits via ulimit
Resource Limits with pam_limits.so Module
System Status - Memory, I/O, and CPU
sar
Lab Tasks
Creating and Managing User Cron Jobs
Adding System cron Jobs
Using BSD Process Accounting
Setting Limits with the pam_limits Modules
CLIENT NETWORKING
IPv4 Fundamentals
TCP/IP Fundamentals
Linux Network Interfaces
Ethernet Hardware Tools
Runtime configuration change
Configuring Routing Tables
ARP
Advanced Configuration
Starting and Stopping Interfaces
Virtual Interfaces
Enabling IPv6
Interface Bonding
802.1q VLANS
Network Profiles and ifup with
IP Stack Configuration
DNS Clients
Network Services via DHCP
DHCP Clients
Configuring a DHCP server
Configuration Tools
Network Diagnostics
Lab Tasks
Basic Client Networking
Virtual Interfaces
Configuring Ipv6
THE X WINDOW SYSTEM
The X Window System
X Modularity
X.Org Drivers
Configuring X Manually
system-config-display
Xorg and Fonts
The X Font Server
Installing Fonts for Modern Applications and Legacy Applications
The X11 Protocol and Display Names
Display Managers and Graphical Login
Starting X Apps Automatically
X Access Control
Remote X Access (historical/insecure and modern/secure approach)
XDMCP
Alternative Remote Graphical Protocols
Specialized X Servers
Lab Tasks
Remote X with XDMCP
Configure a VNC Server
Launching X Apps Automatically
Secure X
SECURITY CONCEPTS
Security Concepts
Tightening Default Security
Staying Current
Security Advisories
SELinux Security Framework
Choosing an SELinux Policy
SELinux Commands and Booleans
Graphical SELinux Policy Tools
Xinetd and Xinetd Features
TCP Wrappers
The /etc/hosts.allow & /etc/hosts.deny Files
/etc/hosts.{allow,deny} Shortcuts
Advanced TCP Wrappers
Basic Firewall Activation
Netfilter: Stateful Packet Filter Firewall
Netfilter Concepts
Using the iptables Command
Netfilter Rule Syntax
Targets
Common match_specs
Stateless Firewall Example
Connection Tracking
Stateful Firewall Example
Lab Tasks
Securing xinetd Services
Enforcing Security Policy with xinetd
Securing Services with TCP Wrappers
Securing Services with Netfilter
LINUX KERNEL COMPILATION
Why Compile?
Getting Kernel Source
Preparing to Compile
Configuring the Kernel
Kernel Compile Options
Documentation
Distribution Specific Kernel Extensions
Compiling the Kernel
Compile and Install Modules
Installing the Kernel
Tips and Tricks
Lab Tasks
Linux Kernel 2.6 Driver Compilation
Linux Kernel 2.6 Compilation
XEN VIRTUALIZATION
Virtualization
Virtualization Technologies
What is Xen?
Xen Architecture, Deployment Options and Considerations
Workstation/Server Xen Deployment
Xen Server Farms
Storage Options for Xen Farms
Xen Networking
Live Migration of Xen Virtual Servers
xend Configuration
Guest Config Files
Red Hat Xen Tools
Lab Tasks
Installing Xen
Creating a Bootstrapped Xen Guest
TROUBLESHOOTING
Basic Troubleshooting
Gathering Information
Information from df, mount, and Log Files
Information Regarding Network Settings
Information from ps, chkconfig, dmesg, w, and netstat
Useful Debugging Aids
Common Problems
Incorrect File Permissions
Inability to Boot
Corrupt Filesystems
Typos in Configuration Files
Disks Full?
Runaway Processes
Shared Libraries
Rescue Environment
Lab Tasks
Recovering Damaged MBR
Troubleshooting Practice