|
|
422188 |
<sect1 id="configurations-dialup-server">
|
|
|
5cec14 |
|
|
|
35566a |
<title>The Server Computer</title>
|
|
|
35566a |
|
|
|
422188 |
<sect2 id="configurations-dialup-server-install">
|
|
|
422188 |
<title>Installing Server Computer</title>
|
|
|
35566a |
|
|
|
c0d2a2 |
<para>
|
|
|
c0d2a2 |
Start with a minimal installation of &TC;;, bootup the
|
|
|
c0d2a2 |
operating system, and login as root user.
|
|
|
c0d2a2 |
</para>
|
|
|
c0d2a2 |
|
|
|
c0d2a2 |
<sect3 id="configurations-dialup-server-install-ppp">
|
|
|
c0d2a2 |
<title>Ppp Server</title>
|
|
|
c0d2a2 |
<para>
|
|
|
c0d2a2 |
The ppp server provides the software required to establish and
|
|
|
c0d2a2 |
maintain a PPP link with another system and negociate Internet
|
|
|
c0d2a2 |
Protocol addresses for each end of the link.
|
|
|
c0d2a2 |
</para>
|
|
|
c0d2a2 |
|
|
|
c0d2a2 |
<screen>yum install ppp</screen>
|
|
|
c0d2a2 |
|
|
|
c0d2a2 |
</sect3>
|
|
|
c0d2a2 |
|
|
|
422188 |
<sect3 id="configurations-dialup-server-install-dns">
|
|
|
35566a |
<title>Name Server</title>
|
|
|
35566a |
<para>
|
|
|
35566a |
The name server provides the software required to translate
|
|
|
35566a |
domain names into IP address and IP addresses into domain
|
|
|
35566a |
names. With this software you can rembember addresses like
|
|
|
422188 |
<ulink url="https://server.example.com/" /> instead of
|
|
|
422188 |
addresses like <ulink url="https://192.168.0.1/" />. There
|
|
|
422188 |
are other feautres (e.g., mail exchanger resolution, zone
|
|
|
422188 |
delegation, etc.) provided by this software that aren't used
|
|
|
422188 |
in the point-to-point configuration we describe in this
|
|
|
422188 |
chapter.
|
|
|
35566a |
</para>
|
|
|
35566a |
<screen>yum install bind</screen>
|
|
|
35566a |
<note>
|
|
|
35566a |
<para>
|
|
|
35566a |
There is a <package>bind-chroot</package> packages, however,
|
|
|
35566a |
we aren't using it because SELinux is already enforced on the
|
|
|
35566a |
&TC;; filesystem and it provides far more security than the
|
|
|
35566a |
idea of <package>bind-chroot</package> package itself does.
|
|
|
35566a |
</para>
|
|
|
35566a |
</note>
|
|
|
35566a |
</sect3>
|
|
|
35566a |
|
|
|
422188 |
<sect3 id="configurations-dialup-server-install-mail">
|
|
|
35566a |
<title>Mail Server</title>
|
|
|
35566a |
<para>
|
|
|
35566a |
The mail server provides the software required to let you
|
|
|
35566a |
send/receive e-mail messages to/from others. The mail server
|
|
|
35566a |
is splitted in three basic components: The Mail Transfer Agent
|
|
|
35566a |
(<package>postfix</package>), The Mail Delivery Agent
|
|
|
35566a |
(<package>Cyrus-Imapd</package>) and an intermediary daemon
|
|
|
35566a |
named <systemitem class="daemon">saslauthd</systemitem> to
|
|
|
35566a |
handle users' authentication. The mail transfer agent is the
|
|
|
35566a |
program your e-mail client sends e-mail messages to. The mail
|
|
|
35566a |
delivery agent, on the other hand, is the program your e-mail
|
|
|
35566a |
client reads e-mail message from (i.e., this is the place
|
|
|
35566a |
where your mailbox is stored in). The authentication daemon
|
|
|
35566a |
is used by the mail delivery agent to authenticate user's
|
|
|
35566a |
credentials (e.g., the information that let you access an
|
|
|
35566a |
specific mailbox).
|
|
|
35566a |
</para>
|
|
|
35566a |
|
|
|
35566a |
<screen>yum install postfix cyrus-imapd cyrus-sasl</screen>
|
|
|
35566a |
|
|
|
35566a |
<para>
|
|
|
35566a |
By default, the <application>sendmail</application>
|
|
|
35566a |
program is used as mail transfer agent, not postfix. For the
|
|
|
35566a |
sake of that point-to-point configuration we are implementing,
|
|
|
35566a |
I decided to use postfix instead as default mail transfer
|
|
|
35566a |
agent, not sendmail. To effectively achieve this decition, it
|
|
|
35566a |
is required to use the <command>alternatives</command>
|
|
|
35566a |
command, as it shown below:
|
|
|
35566a |
</para>
|
|
|
35566a |
|
|
|
35566a |
<screen>alternatives --config mta</screen>
|
|
|
5cec14 |
|
|
|
5cec14 |
<para>
|
|
|
35566a |
This command will present you a menu to chose between
|
|
|
35566a |
available mail transfer agents, so it is there where you
|
|
|
35566a |
choose to use posfix as default option. Now that you've
|
|
|
35566a |
changed postfix the default mail transfer agent, you can
|
|
|
35566a |
saftly remove the sendmail package to avoid unused software
|
|
|
35566a |
to remain inside the computer. To do this, you can run the
|
|
|
35566a |
following command:
|
|
|
5cec14 |
</para>
|
|
|
5cec14 |
|
|
|
35566a |
<screen>yum remove sendmail</screen>
|
|
|
35566a |
|
|
|
35566a |
<para>
|
|
|
35566a |
In addition to mail server specific packages, we also provide
|
|
|
35566a |
mailing list support. Mailing lists provide e-mail addresses
|
|
|
35566a |
that users registered inside the ISP can write to. When you
|
|
|
35566a |
sed an e-mail to a mailing list, your message is distributed to
|
|
|
35566a |
all members of that list. In order for this to happen, people
|
|
|
35566a |
registered inside ISP need to subscribe themselves into that
|
|
|
35566a |
mailing list they want to receive messages from. The
|
|
|
35566a |
subscription of mailinglist will be available through a secured
|
|
|
35566a |
web application in the following url:
|
|
|
35566a |
</para>
|
|
|
35566a |
|
|
|
35566a |
<itemizedlist>
|
|
|
35566a |
<listitem>
|
|
|
35566a |
<para>
|
|
|
422188 |
<ulink url="https://server.example.com/lists/" />
|
|
|
35566a |
</para>
|
|
|
35566a |
</listitem>
|
|
|
35566a |
</itemizedlist>
|
|
|
35566a |
|
|
|
35566a |
<screen>yum install mailman</screen>
|
|
|
35566a |
</sect3>
|
|
|
35566a |
|
|
|
422188 |
<sect3 id="configurations-dialup-server-install-web">
|
|
|
35566a |
<title>Web Server</title>
|
|
|
35566a |
<para>
|
|
|
35566a |
The web server provides the software required to support web
|
|
|
35566a |
interfaces like those one previously mention to register new
|
|
|
35566a |
users inside the ISP and subscribe mailing lists. The web
|
|
|
35566a |
server provided in this configuration will accept requests
|
|
|
35566a |
both unencrypted and encrypted.
|
|
|
35566a |
</para>
|
|
|
35566a |
|
|
|
35566a |
<screen>yum install httpd mod_ssl crypto-utils</screen>
|
|
|
35566a |
|
|
|
35566a |
<para>
|
|
|
35566a |
In addition to mailing lists support, the web server will
|
|
|
35566a |
provide access to Subversion. Subvesion provides a way to
|
|
|
35566a |
manage files through version control. The main purpose of
|
|
|
35566a |
providing Subversion support here is sharing the version of
|
|
|
c0d2a2 |
&TCAR; I've been working on.
|
|
|
c0d2a2 |
</para>
|
|
|
35566a |
|
|
|
35566a |
<screen>yum install subversion mod_dav_svn</screen>
|
|
|
35566a |
|
|
|
35566a |
</sect3>
|
|
|
35566a |
|
|
|
422188 |
<sect3 id="configurations-dialup-server-install-ldap">
|
|
|
422188 |
|
|
|
35566a |
<title>Directory Server</title>
|
|
|
422188 |
|
|
|
35566a |
<para>
|
|
|
35566a |
The directory server provides the software required to unify
|
|
|
35566a |
user information. This server is access by other server
|
|
|
35566a |
whenever user information is required. You, as end user, can
|
|
|
35566a |
also use this server from your workstation to retrive a list
|
|
|
35566a |
of all users registered in the ISP. This list can be retrived
|
|
|
35566a |
by the web interface the ISP provides, or any application your
|
|
|
35566a |
workstation provide (e.g., most e-mail clients provide a way
|
|
|
35566a |
to configure LDAP servers to build address book from it.).
|
|
|
35566a |
</para>
|
|
|
35566a |
|
|
|
35566a |
<screen>yum openldap-servers python-ldap</screen>
|
|
|
35566a |
|
|
|
35566a |
</sect3>
|
|
|
35566a |
</sect2>
|
|
|
35566a |
|
|
|
422188 |
<sect2 id="configurations-dialup-server-config">
|
|
|
422188 |
<title>Configuring Server Computer</title>
|
|
|
422188 |
<para>
|
|
|
422188 |
...
|
|
|
422188 |
</para>
|
|
|
422188 |
</sect2>
|
|
|
422188 |
|
|
|
5cec14 |
</sect1>
|