jump to navigation

Guyana Linux Users Group Snort installation July 7, 2009

Posted by daakeung in IT, Linux, Uncategorized.
Tags: , , , , , ,
add a comment

Every month now, GLUG meets up to discuss and share ideas.  Last GLUG meeting I volunteered to do an installation of SNORT on CENTOS and live demonstration.  It was a privilege to contribute to such a growing community in Guyana. Also Mike Harrison of Utiliflex took part to offer us his valuable experience and motivation.

Download: snort_installation_presentation

Advertisements

Quick guide how to Setup a linux dhcp server (Centos 5.2) July 3, 2009

Posted by daakeung in Uncategorized.
Tags: , ,
2 comments

Quick guide to setup a linux DHCP server on a 10.0.0.0/24 network, you can modify this to work with your own design.

[root@dhcp ~]# yum install dhcp

[root@dhcp ~]cp /usr/share/doc/dhcp-3.0.5/dhcpd.conf.sample /etc/dhcpd.conf
cp: overwrite `/etc/dhcpd.conf’? y
[root@dhcp ~]vi /etc/dhcpd.conf

ddns-update-style interim;
ignore client-updates;

subnet 10.0.0.0 netmask 255.255.255.0 {

# — default gateway
option routers                  10.0.0.1;
option subnet-mask              255.255.255.0;

#option nis-domain               “akeung.com”;
option domain-name              “akeung.com”;
option domain-name-servers      10.0.0.25;

option time-offset              -18000; # Eastern Standard Time
#       option ntp-servers              192.168.1.1;
#       option netbios-name-servers     192.168.1.1;
# — Selects point-to-point node (default is hybrid). Don’t change this unless
# — you understand Netbios very well
#       option netbios-node-type 2;

range dynamic-bootp 10.0.0.2 10.0.0.254;
default-lease-time 21600;
max-lease-time 43200;

# we want the nameserver to appear at a fixed address
#        host ns {
#                next-server marvin.redhat.com;
#                hardware ethernet 12:34:56:78:AB:CD;
#                fixed-address 207.175.42.254;
#        }
}

Then esc, press

:wq

To start the service :

service dhcpd start

To enable it at bootup :

chkconfig dhcpd on

You can locate the leases at :

/var/lib/dhcpd/dhcpd.leases

Also, if a reservation is needed. Simply add the following to /etc/dhcpd.conf

host daakeung {
option host-name “daakeung.akeung.com”;
hardware ethernet 00:00:00:00:00:00;      #<—-Replace with Client’s MAC address
fixed-address 10.0.0.7;
}

Seizing all FSMO roles (FLEXIBLE SINGLE MASTER OPERATIONS) June 13, 2009

Posted by daakeung in Uncategorized.
Tags: , , , , , , ,
add a comment
ntdsutil: roles
fsmo maintenance: connections
server connections: connect to mcg-exch.macorpgy.com
Error 80070057 parsing input – illegal syntax?
server connections: connect to server mcg-exch.macorpgy.com
Binding to mcg-exch.macorpgy.com …
Connected to mcg-exch.macorpgy.com using credentials of locally logged on user.
server connections: q
fsmo maintenance: seize
Error 80070057 parsing input – illegal syntax?
fsmo maintenance: seize ?
Error 80070057 parsing input – illegal syntax?
fsmo maintenance: helpIf you

If you need to seize roles from a failed server, you can do so by :

Opening run, type cmd then ntdsutil.

ntdsutil: roles
fsmo maintenance: connections
server connections: connect to dc1.akeung.com
Binding to dc1.akeung.com … Connected to dc1.akeung.com using credentials of locally logged on user.
server connections: q

fsmo maintenance: help

Seize domain naming master    – Overwrite domain role on connected server

Seize infrastructure master   – Overwrite infrastructure role on connected server

Seize PDC                     – Overwrite PDC role on connected server

Seize RID master              – Overwrite RID role on connected server

Seize schema master           – Overwrite schema role on connected server

Select operation target       – Select sites, servers, domains, roles and naming contexts

Transfer domain naming master – Make connected server the domain naming master

Transfer infrastructure master – Make connected server the infrastructure master

Transfer PDC                  – Make connected server the PDC

Transfer RID master           – Make connected server the RID master

Transfer schema master        – Make connected server the schema master

—————————————————————————————————————————

This is the interesting part, to seize the roles to the connected server, issue the commands as follows:

fsmo maintenance:  seize schema master

fsmo maintenance:  Seize PDC

fsmo maintenance:  Seize RID master

fsmo maintenance:  Seize domain naming master

fsmo maintenance:  Seize infrastructure master


A prompt will confirm the change you will be making to active directory.  Please only use role seizure as a last resort when you cannot “TRANFER” a role.

Using CISCO IOS AUX port to access the console port on another device (reverse telnet) May 16, 2009

Posted by daakeung in Uncategorized.
Tags: , , ,
4 comments

Setup a loopback interface:

int lo 1
ip address 10.1.1.1 255.255.255.255

line aux 0
transport input telnet
speed 9600

To access the aux interface, you telnet to the loopback address on port 2000+line#

for example:

sh line
Tty Typ     Tx/Rx    A Modem  Roty AccO AccI   Uses   Noise  Overruns   Int
0 CTY              –    –      –    –    –      0       0     0/0       –
I    1 TTY              – inout     –    –    –      0       0     0/0       –
5 AUX   9600/9600  – inout     –    –    –      0       0     0/0       –
*    6 VTY              –    –      –    –    –     78       0     0/0       –
7 VTY              –    –      –    –    –      2       0     0/0       –
8 VTY              –    –      –    –    –      0       0     0/0       –
9 VTY              –    –      –    –    –      0       0     0/0       –
10 VTY              –    –      –    –    –      0       0     0/0       –

telnet 10.1.1.1 2005

***UPDATED***

VMWARE ESX Command Line Guide March 13, 2009

Posted by daakeung in Uncategorized, Virtualization, Vmware ESX.
Tags: , , ,
add a comment

I came across this useful list of command line tutorials for various ESX configuration and diagnostic utilities.

http://www.b2v.co.uk/b2vguide2vmware.htm