Académique Documents
Professionnel Documents
Culture Documents
Remove # from SUPATH and add path to set a PATH environment as follows:
SUPATH=/usr/sbin:/usr/bin:/usr/ccs/bin:/usr/sfw/bin:/usr/local/bin
:DNS INSTALLATION:
3> How to install daemontools
Installation
Create a /package directory:
mkdir -p /package
chmod 1755 /package
cd /package
gunzip daemontools-0.76.tar
tar -xpf daemontools-0.76.tar
rm daemontools-0.76.tar
cd admin/daemontools-0.76
package/install
vi /etc/inittab
replace
SV:123456:respawn:/command/svscanboot
with
Installation
Download the ucspi-tcp package. The latest published ucspi-tcp package is ucspi-
tcp-0.88.tar.gz.
gunzip ucspi-tcp-0.88.tar
tar -xf ucspi-tcp-0.88.tar
cd ucspi-tcp-0.88
make
1. Download the djbdns package. The latest published djbdns package is djbdns-
1.05.tar.gz.
gunzip djbdns-1.05.tar
tar -xf djbdns-1.05.tar
cd djbdns-1.05
The first line, modifying conf-cc, is necessary for some Linux systems, to work
around a Linux bug. It can be skipped under BSD, Solaris, and other systems that
comply with IEEE Std 1003.1-1990.
useradd dnscache
useradd dnslog
mkdir /etc/dnscache
./dnscache-conf dnscache dnslog /etc/dnscache 203.129.232.28
ln -s /etc/dnscache /service
sleep 5
./svstat /service/dnscache
touch /etc/dnscache/root/ip/203.129.232
useradd tinydns
useradd tinylog
./tinydns-conf tinydns tinylog /etc/tinydns 203.129.232.11
ln -s /etc/tinydns /service
sleep 5
./svstat /service/tinydns
changing ipaddress of :
vi /etc/dnscache/env/IP
vi /etc/tinydns/env/IP
svc -t /service/tinydns
svc -t /service/dnscache
To create the new interface, you need to create a file that matches the name found
in step 3 with :1 added to the end, such as /etc/hostname.hme0:1 or
/etc/hostname.le0:1. This new file should contain only the new DNS name.
cd /etc/rc2.d
vi S70virtual
add following line:
ifconfig hme0:1 203.129.232.11 up netmask 255.255.255.224
b) Changing IP address:
The following steps may be used to change the IP address of a Solaris system:
1. Change the host's IP in /etc/hosts for the change to take effect after reboot.
2. Change /etc/defaultrouter with the address of the host's new default gateway,
if applicable.
3. If you are using variable length subnet masks (VLSM), add the host's network
number and subnet mask to /etc/netmasks.
c) Configuring IP Filter
If the result is "1", you're all set. Zero means that IP forwarding is not
enabled. To enable it, delete the file /etc/notrouter, and possibly
/etc/defaultrouter too. Create an empty /etc/gateways file, and IP forwarding will
be enabled at the next reboot.
or manually set :
Create or vi /etc/ipf/ipf.conf
pass in quick proto tcp from any to any port = 22 keep state
pass in quick proto tcp from any to any port = 80 keep state
pass in quick proto tcp/udp from any to any port = 53 keep state
pass in quick proto icmp from any to any icmp-type 8 keep state
pass out quick from any to any keep state
block in quick all
Even if you're not going to create a NAT, you'll want one entry in ipnat.conf.
It's a proxy that makes FTP work. Otherwise you can only use passive FTP. Put the
following in /etc/ipf/ipnat.conf
Note that is needs your ethernet interface name, which on my machine is bge0. Use
ifconfig -a to find your name if you don't know it. This only handles clients who
want to use FTP. If you want incoming FTP to work, things get a lot more complex.
You'll need to see the full instructions
There's a utility "ipfstat" that will show you the current rules and how they are
working. See the man page for details.
Now you need to reboot your system so that the network interface can start
filtering.
sol10demo# /usr/sbin/reboot
After rebooting you should check that IPF has been started.
sol10demo# /bin/grep ipf /var/adm/messages
Sep 5 14:33:52 sol10demo ipf: [ID 774698 kern.info] IP Filter: v4.0.2, running.
setup the dns notify script as a cron job to run daily to update secondary dns
servers:
for e.g.:
20 00 * * * perl /usr/local/bin/dnsnotify.pl 154.193.203.in-addr.arpa
stpb.soft.net
Package installation:
cd /tmp
wget <PKG>
Download the findutils package from sunfreeware or a mirror,Make sure that you
have the most recent package, the one with the highest possible serial number.
for e.g. pkg is mysql-4.0.21-sol10-sparc-local.gz
gunzip<pkg.gz>
As root, go into the directory where you unpacked the package, and add it to your
system using the command
pkgadd -d <pkg><version>
Verify the installation of the package, listing the content of the /usr/local/bin
directory