|
 |
ca266c |
<sect1 id="configuration-ppp-packages">
|
|
|
ca266c |
|
|
|
ca266c |
<title>Installing Required Packages</title>
|
|
|
ca266c |
|
|
|
ca266c |
<para>
|
|
|
33d9d1 |
Start with a minimal installation of &TC;;, bootup the
|
|
|
33d9d1 |
operating system, and login as root user. Later, install the
|
|
|
33d9d1 |
<quote>Dialup Networking Support</quote> group of packages
|
|
|
33d9d1 |
available in the [base] repository of &TC;;. The
|
|
|
33d9d1 |
installation of this group of packages is required both in
|
|
|
33d9d1 |
server and client computers. If you don't have this group of
|
|
|
33d9d1 |
packages installed in your computer, then you can do it as the
|
|
|
33d9d1 |
following command describes:
|
|
|
ca266c |
</para>
|
|
|
ca266c |
|
|
|
33d9d1 |
<screen>yum groupinstall "Dialup Networking Support"</screen>
|
|
|
ca266c |
|
|
|
ca266c |
<para>
|
|
|
ca266c |
Other packages might be required based on whether you are
|
|
|
ca266c |
configuring the computer to be a server or a client. The
|
|
|
ca266c |
implementation described in this chapter considers both a
|
|
|
ca266c |
server and client configuration so you can pick up the one
|
|
|
33d9d1 |
fitting your case.
|
|
|
ca266c |
</para>
|
|
|
ca266c |
|
|
|
ca266c |
<sect2 id="configurations-ppp-packages-server">
|
|
|
33d9d1 |
<title>Server Installation</title>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<sect3 id="configurations-ppp-packages-server-dns">
|
|
|
33d9d1 |
<title>Name Server</title>
|
|
|
ca266c |
<para>
|
|
|
33d9d1 |
The name server provides the software required to translate
|
|
|
33d9d1 |
domain names into IP address and IP addresses into domain
|
|
|
33d9d1 |
names. With this software you can rembember addresses like
|
|
|
0ff2e0 |
<ulink url="https://projects.centos.org/" /> instead of addresses like
|
|
|
33d9d1 |
<ulink url="https://192.168.0.1/" />. There are other
|
|
|
33d9d1 |
feautres (e.g., mail exchanger resolution, zone delegation,
|
|
|
33d9d1 |
etc.) provided by this software that aren't used in the
|
|
|
33d9d1 |
point-to-point configuration we describe in this chapter.
|
|
|
33d9d1 |
</para>
|
|
|
33d9d1 |
<para>
|
|
|
33d9d1 |
To install this software, run the following command:
|
|
|
33d9d1 |
</para>
|
|
|
33d9d1 |
<screen>yum install bind</screen>
|
|
|
33d9d1 |
<note>
|
|
|
33d9d1 |
<para>
|
|
|
33d9d1 |
There is a <package>bind-chroot</package> packages, however,
|
|
|
33d9d1 |
we aren't using it because SELinux is already enforced on the
|
|
|
33d9d1 |
&TC;; filesystem and it provides far more security than the
|
|
|
33d9d1 |
idea of <package>bind-chroot</package> package itself does.
|
|
|
33d9d1 |
</para>
|
|
|
33d9d1 |
</note>
|
|
|
33d9d1 |
</sect3>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<sect3 id="configurations-ppp-packages-server-mail">
|
|
|
33d9d1 |
<title>Mail Server</title>
|
|
|
33d9d1 |
<para>
|
|
|
33d9d1 |
The mail server provides the software required to let you
|
|
|
33d9d1 |
send/receive e-mail messages to/from others. The mail server
|
|
|
33d9d1 |
is splitted in three basic components: The Mail Transfer Agent
|
|
|
33d9d1 |
(<package>postfix</package>), The Mail Delivery Agent
|
|
|
33d9d1 |
(<package>Cyrus-Imapd</package>) and an intermediary daemon
|
|
|
33d9d1 |
named <systemitem class="daemon">saslauthd</systemitem> to
|
|
|
33d9d1 |
handle users' authentication. The mail transfer agent is the
|
|
|
33d9d1 |
program your e-mail client sends e-mail messages to. The mail
|
|
|
33d9d1 |
delivery agent, on the other hand, is the program your e-mail
|
|
|
33d9d1 |
client reads e-mail message from (i.e., this is the place
|
|
|
33d9d1 |
where your mailbox is stored in). The authentication daemon
|
|
|
33d9d1 |
is used by the mail delivery agent to authenticate user's
|
|
|
33d9d1 |
credentials (e.g., the information that let you access an
|
|
|
33d9d1 |
specific mailbox).
|
|
|
33d9d1 |
</para>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<para>
|
|
|
33d9d1 |
To install this software, run the following command:
|
|
|
33d9d1 |
</para>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<screen>yum install postfix cyrus-imapd cyrus-sasl</screen>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<para>
|
|
|
33d9d1 |
By default, the <application>sendmail</application>
|
|
|
33d9d1 |
program is used as mail transfer agent, not postfix. For the
|
|
|
33d9d1 |
sake of that point-to-point configuration we are implementing,
|
|
|
33d9d1 |
I decided to use postfix instead as default mail transfer
|
|
|
33d9d1 |
agent, not sendmail. To effectively achieve this decition, it
|
|
|
33d9d1 |
is required to use the <command>alternatives</command>
|
|
|
33d9d1 |
command, as it shown below:
|
|
|
33d9d1 |
</para>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<screen>alternatives --config mta</screen>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<para>
|
|
|
33d9d1 |
This command will present you a menu to chose between
|
|
|
33d9d1 |
available mail transfer agents, so it is there where you
|
|
|
33d9d1 |
choose to use posfix as default option. Now that you've
|
|
|
33d9d1 |
changed postfix the default mail transfer agent, you can
|
|
|
33d9d1 |
saftly remove the sendmail package to avoid unused software
|
|
|
33d9d1 |
to remain inside the computer. To do this, you can run the
|
|
|
33d9d1 |
following command:
|
|
|
ca266c |
</para>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<screen>yum remove sendmail</screen>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<para>
|
|
|
33d9d1 |
In addition to mail server specific packages, we also provide
|
|
|
33d9d1 |
mailing list support. Mailing lists provide e-mail addresses
|
|
|
33d9d1 |
that users registered inside the ISP can write to. When you
|
|
|
33d9d1 |
sed an e-mail to a mailing list, your message is distributed to
|
|
|
33d9d1 |
all members of that list. In order for this to happen, people
|
|
|
33d9d1 |
registered inside ISP need to subscribe themselves into that
|
|
|
33d9d1 |
mailing list they want to receive messages from. The
|
|
|
33d9d1 |
subscription of mailinglist will be available through a secured
|
|
|
33d9d1 |
web application in the following url:
|
|
|
33d9d1 |
</para>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<itemizedlist>
|
|
|
33d9d1 |
<listitem>
|
|
|
33d9d1 |
<para>
|
|
|
0ff2e0 |
<ulink url="https://projects.centos.org/lists/" />
|
|
|
33d9d1 |
</para>
|
|
|
33d9d1 |
</listitem>
|
|
|
33d9d1 |
</itemizedlist>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<para>
|
|
|
33d9d1 |
To install the mailing list software, run the following
|
|
|
33d9d1 |
command:
|
|
|
33d9d1 |
</para>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<screen>yum install mailman</screen>
|
|
|
33d9d1 |
</sect3>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<sect3 id="configurations-ppp-packages-server-web">
|
|
|
33d9d1 |
<title>Web Server</title>
|
|
|
33d9d1 |
<para>
|
|
|
33d9d1 |
The web server provides the software required to support web
|
|
|
33d9d1 |
interfaces like those one previously mention to register new
|
|
|
33d9d1 |
users inside the ISP and subscribe mailing lists. The web
|
|
|
33d9d1 |
server provided in this configuration will accept requests
|
|
|
33d9d1 |
both unencrypted and encrypted.
|
|
|
33d9d1 |
</para>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<screen>yum install httpd mod_ssl crypto-utils</screen>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<para>
|
|
|
33d9d1 |
In addition to mailing lists support, the web server will
|
|
|
33d9d1 |
provide access to Subversion. Subvesion provides a way to
|
|
|
33d9d1 |
manage files through version control. The main purpose of
|
|
|
33d9d1 |
providing Subversion support here is sharing the version of
|
|
|
33d9d1 |
&TCAR; I've been working on. To install Subversion software,
|
|
|
33d9d1 |
run the following command: </para>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<screen>yum install subversion mod_dav_svn</screen>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
</sect3>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<sect3 id="configurations-ppp-packages-server-ldap">
|
|
|
33d9d1 |
<title>Directory Server</title>
|
|
|
33d9d1 |
<para>
|
|
|
33d9d1 |
The directory server provides the software required to unify
|
|
|
33d9d1 |
user information. This server is access by other server
|
|
|
33d9d1 |
whenever user information is required. You, as end user, can
|
|
|
33d9d1 |
also use this server from your workstation to retrive a list
|
|
|
33d9d1 |
of all users registered in the ISP. This list can be retrived
|
|
|
33d9d1 |
by the web interface the ISP provides, or any application your
|
|
|
33d9d1 |
workstation provide (e.g., most e-mail clients provide a way
|
|
|
33d9d1 |
to configure LDAP servers to build address book from it.).
|
|
|
33d9d1 |
</para>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<para>
|
|
|
33d9d1 |
To install the directory server sofware, run the following
|
|
|
33d9d1 |
command:
|
|
|
33d9d1 |
</para>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<screen>yum openldap-servers python-ldap</screen>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
</sect3>
|
|
|
ca266c |
</sect2>
|
|
|
ca266c |
|
|
|
ca266c |
<sect2 id="configurations-ppp-packages-client">
|
|
|
33d9d1 |
<title>Client Installation</title>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<para>
|
|
|
33d9d1 |
...
|
|
|
33d9d1 |
</para>
|
|
|
33d9d1 |
|
|
|
33d9d1 |
<variablelist>
|
|
|
33d9d1 |
<varlistentry>
|
|
|
33d9d1 |
<term><package>...</package></term>
|
|
|
33d9d1 |
<listitem>
|
|
|
ca266c |
<para>
|
|
|
ca266c |
...
|
|
|
ca266c |
</para>
|
|
|
33d9d1 |
</listitem>
|
|
|
33d9d1 |
</varlistentry>
|
|
|
33d9d1 |
</variablelist>
|
|
|
ca266c |
</sect2>
|
|
|
ca266c |
|
|
|
ca266c |
</sect1>
|