Difference between revisions of "rhce"

From WebHostingNeeds.com
Jump to: navigation, search
Line 194: Line 194:
  
 
#smbclient //ip/common -U natasha  (#smbclient //ip/<share name> -U natasha
 
#smbclient //ip/common -U natasha  (#smbclient //ip/<share name> -U natasha
 +
 +
* [[samba]]
  
 
</pre>
 
</pre>

Revision as of 07:21, 5 November 2013

Red Hat Certified Engineer Exam Questions

Before starting exam

#iptables -L
#iptables -F
#service iptables save
#service iptables restart
#chkconfig iptables on

1, Enable selinux as enforcing

# setup
firewall configuration - disabled
# getenforce
# lokkit --selinux=enforcing
init6
# cat /etc/sysconfig/system-config-firewall
# cat /etc/stsconfig/selinux


2, Enable IP forwarding on your virtual machine

Step-01:

Enable IP Forwarding permanently in your machine.
vi /etc/sysctl.conf            (sysctl configure parameters at run level)
change line number 7
net.ipv4.ip_forward=1
:wq

Step-02:

sysctl -p  

3. Configure FTP access on your system.
clients with in domain70.example.com should have anonymous FTP access to your machine.
clients outside domain70.example.com should Not have access to your FTP service.

Step-01:

#yum install vsftpd*
#service vsftpd restart
#yum install ftp

Step-02:

#ftp <ip here>
user:annonymous
password: enter

Step-03:

#vi /etc/hosts.deny
vsftpd: ALL EXCEPT IP/mask
:wq!

Step-04:

#service vsftpd restart
#chkconfig vsftpd on

If login problem

remove anonymous user from below files

#vi /etc/vsftpd/vsftpd.conf
#vi /etc/vsftpd/ftpusers
#vi /etc/vsftpd/user_list

4. Set cron service such that it can't be accessable by mike

Step-01:

#vi /etc/cron.deny
mike
:wq

Step-02:

#service crond restart
#chkconfig crond on
(to check - # grep mike /etc/passwd)

5. Configure ssh as follows natasha has remote access to your machine from with in domain70.example.com.
client within my133t.org should not have access to ssh on your system

Step-01:

#vi /etc/hosts.allow
sshd: 172.24.70.0/255.255.255.0
:wq
Step-02:

#vi /etc/hosts.deny
sshd:172.24.70.0/255.255.0.0
:wq!

Step-03:

#service sshd restart
#chkconfig sshd on
#service iptables restart
#chkconfig iptables on

6. Export your /archive directory via NFS to the example.com domain only.

or

Export Your /common directory via NFS to the domain70.example.com domain only. (linux to linux directory sharing)

Step-01:

#vi /etc/exports
/common 172.24.70.0/255.255.255.0(rw,sync)
:wq

Step-02:

#service nfs restart
#exportfs
#chkconfig nfs on

7.Share the /common directory via SMB
Your SMB server must be a member of STAFF workgroup
the share's name must common
The common share must be available to domain70.example.com clients only.
The common share must be browseable
natasha must have read access to the share authenticity with the password porstroll if necessary.

Step-01:

#yum install samba*

Step-02:

#vim /etc/samba/smb.conf
Go to 74th line
Workgroup=STAFF
Shift+G
copy last 7 lines using 7yy and p command
Remove ; from all lines and edit like

[common]  ( sharename
comment=public_staff
path=common         (path=<share name>
valid users=natasha ( add this line)
public=yes
browseable=yes 
Writable=no ( yes change to no)
Printable=no
:wq

Step-03:

#service smb restart

Step-04:

#smbpasswd -a natasha
New smbpassword:postroll

Step-05:

#vim /etc/hosts.deny
smb: ALL EXCEPT IP/netmask 
:wq!

Step-06:

#chchon -t samba_share_t /common        (/common or share directory)
#ls -dZ /common

Step-07:

#service smb restart
#chkconfig smb on

Step-08:

#smbclient //ip/common -U natasha  (#smbclient //ip/<share name> -U natasha

* [[samba]]

8 Implement a web server for the site http://serverx.example.com/ then perform the following steps:
Download ftp://nstructor.example.com/pub/rhce/station.html
Rename the download file to index.html
Copy this index.html to Document root of your web server
Do Not Make any modifications to the content of index.html

Step-01:

#yum install httpd
#service httpd restart

Step-02
:
#cd /var/www/html
#wget ftp://instructor.example.com/pub/rhce/station.html
mv station.html index.html

Step-03:

#vi /etc/httpd/conf/httpd.conf
:set nu
990
remove * and add IP
Virtual host: ip:80
(ifconfig and take ip)
1003 rd line
copy 7 line 7 yy
remove # from all line

document root  /var/www/html
server name serverx.example.com

:wq

Step-04:
#service httpd restart
#chkconfig httpd on

9. Extend the web server include
site http://wwwwX.example.com
Document root /var/www/virtual
Download ftp://instructor.example.com/pub/rhce/www.html and rename to index.html
ensure natasha is able to create content in /var/www/virtual provided by server1.domain70.example.com

Step-01:

#service httpd start

Step-02:

#cd /var/www/
#mkdir virtual
#cd virtual
#wget ftp......
#mv www.html index.html

Step-03:

#vi /etc/httpd/conf/httpd.conf
:set nu 1003
copy 7yy and P

remove # from all line

<VirtualHost <add ip here>:80>
Document root /var/www/virtual
Servername wwwwX.example.com
:wq!

Step-04:

#service httpd restart
#chkconfig httpd on

Step-05:

#setfacl -m u:natasha:rwx /var/www/virtual

10. Create a directory limited on your document root
download ftp://instructor.example.com/pub/rhce/station.html
rename the downloaded file to index.html
copy this index.html file the limited directry
Make it such that the content of limit can be accessable to the local users only.

Step-01:

#cd /var/www/html
#mkdir /limited
#cd limited

Step-02:

#wget ftp://instructor.example.com/pub/rhce/station.html
#mv station.html index.html

Step-03:

#vi /etc/httpd/conf/httpd.conf
1003rd line before closing </virtualhost> type the following

Step-04:

<Directory /var/www/html/limited>
allow,deny
Allow from IP
</Directory
</virtualhost>
:wq!

Step-05:

#service httpd restart
#chkconfig httpd on


11. Export your /archive directory via NFS to the example.com domain only.

Export Your /common directory via NFS to the domain70.example.com domain only.
(linux to linux directory sharing)

Step-01:

#vi /etc/exports
#/common 172.24.70.0/255.255.255.0(rw,sync)
:wq

Step-02:

#service nfs restart
#exportfs
#chkconfig nfs on

12. configure SMTP mail service according to the following requirements

Your mail server should accept mail from remote hosts mail delivered paula should spool into default mail spool for paula, /var/spool/paula

Step-01:
#Yum install postfix*
#chkconfig postfix on
#service postfix restart

Step-02:

#vi /etc/postfix/main.cf
#remove # from 113 th line
#place # on the 116th line

Step-03:

#service postfix restart

13. Configure an email alias for your MTA such that mail set to admin is received by the local user harry


Step-01:

#vi /etc/aliases
admin:harry
:wq

Step-02:

#newaliases

14.Using iscsi, discover and mount a device shared by host.domain70.example.com
create an iscsi storage device of 1100 MB size
Download ftp://server1.domain70.example.com/pub/iscsi.txt
and copy it to the iscsi device Mount the device permanently under /mnt/data as ext4 file system

Step-01:

#iscsiadm -m discovery -t st -p hostname
copy the iqn number line
#iscsiadm -m node <iqn number here> -p hostname
#iscsiadm -m node <iqn number here> -p hostname -l
(if -p error - try with -P)

Step-02:

#fdisk -l
n
p
default
default +1100M
p
w

Step-03:

#partprobe -s /dev/sda                (higher size than  provided, then only we can create partition)

Step-04:

#mkfs.ext4 /dev/sda1
#mkdir /mnt/data

Step-05:

For Permanently Mount:

#vi /etc/fstab
/dev/sda1 /mnt/data ext4 default 0 0
:wq!
#mount -a

Step-06:

#cd /mnt/data
#wget ftp://server1.domain70.example.com/pub/iscsi.txt

15. Configure kernel such that kernstack value is 1 . kernel line should display the edited string in /proc/cmdline

Step-01:

#vi /etc/grub.conf
go to the end of kernel line ,after word quiet, put a space and type kernstack=1
:wq!

Step-02:

reboot
#cat /proc/cmdline

16. Write a script /root/bar.sh such that when we execute /root/bar.sh python it displays perl and when we execute /root/bar.sh perl displays python.
And when we type some other charactoer, /root/bar.sh Perl/Python is directed to stdeer

#vi /root/bar.sh

if [ "$a == "Python" ]
then
echo "Perl"
elif [ "$a == "Perl" ]
then
echo "Python'
else
echo "/root/bar.sh /Python/Perl" >> stdeer
if
:wq!
/root/bar.sh
Perl

chmod 755 /root/bar.sh
# /root/bar.sh
dgfdg
#vi /stdeer
Python/Perl


redhat