|
| Today is Wed January 07 2009 | Print | NLS | IP: 38.103.63.56 | Contact
Welcome to Linux Networking Tips!
A Supported Business Linux Server Configuration
-
Make it easy to utilize Linux
networking and security
-
Promote secure practices with
broadband routers
-
LAMP - Linux Apache MySQL PHP server configuration
-
Limiting server access to authorized
users over the Internet
-
Allowing server access to the public
over the Internet
-
Windows networking file and printer shares,
user security
-
SSH secure access to Linux server over the Internet
-
Hiding and securing the SSH port to prevent attacks
-
Dynamic IP address HTTP redirect mechanism
-
Set up PHP applications like Drupal and phpMyAdmin
Network Scenario
Assumptions
It is assumed there is a PC
on the local area network that can be
loaded with Linux, a broadband router,
and a high speed Internet connection.
The server will reside on the local
area network (LAN) and rules must be
set up in the router in order to allow
any access to the server from the
Internet. This is often referred to
as port forwarding or virtual servers
by the router set up screen.
Linux can be obtained and installed easily
-
Obtain Linux Preloaded Hard Drive from Tracy Labs
-
Download Linux CD images via BitTorrent
and install
-
Buy the install CD's on-line
-
Local technical support can easily
do an install
-
Just follow the Tracy Labs Quick Install notes
A KVM switch can be used to share a
monitor and keyboard with another
system saving desk space and making
it easy to place the CPU in a secure
office area.
Goals
The goal is to set up a secure Linux
server on the LAN that authenticates
users for Windows file and print
shares, and provides a robust LAMP
database and web server to run PHP
applications like phpMyAdmin and
drupal in a browser.
We also look at letting users access
the server over the Internet with SSH
and how to protect the SSH port from
automated attacks. This can support
remote office users, road warriors,
and remote technical support.
The web server can be made available
over the Internet either requiring
users to login or for public access.
The issue of how to reach a server
on a dynamic IP address Internet
connection is discussed. Two
approaches for reaching a server
on a dynamic IP address are covered.
Scripts to automate a nightly backup
of user data to a second hard drive
are discussed along with Linux user
basics.
General Networking Concepts
The topics discussed in this series
involve general purpose networking and
should apply regardless of the brand
of router, Internet connection, or
Linux distribution.
Most often we use Belkin, Linksys,
and Netopia routers with either
AT&T ADSL or Time Warner Road
Runner cable modem.
All Linux examples will use Slackware
11.0 which should be representative
of most Linux and UNIX based systems.
File locations and directory names
may differ but the concepts are
fairly generic.
Secure Practices Encouraged
While security is not the focus of
these articles, the notion of secure
practices is strongly encouraged and
is a motive for the series. This
also means protecting the data and
the server.
Take Advantage Of PHP / MySQL Applications
We discuss how to install phpMyAdmin
and Drupal which are two useful PHP
programs for working with MySQL.
FADE and X_DEF are two database PHP
programs from Tracy Labs that provide
access to work with database tables.
A single table access model is provided
by FADE (Find Add Delete Edit). The
x_def program works with a master and
detail relationship between two tables.
|
