Monday, August 17, 2015

RHCSA Notes (Work in Progress) RHEL 7 EX200

Wanted a place to store my RHCSA Notes.  This is from a test from the book:  "RHCSA & RHCE Red Hat Enterprise Linux 7: Training and Exam Preparation Guide (EX200 and EX300), Third Edition" http://amzn.to/1K2Yg14 (Kindle) / http://amzn.to/1WAsvl0 (Paperback).  I've been very happy with the book.

Q: Reset root password
A: Stop boot process
-edit line with vmlinz
-append init=/sysroot/bin/sh
-control+x to boot
-chroot /sysroot
-mount -o remount, rw /
-passwd
-touch /.autorelabel
-exit
-reboot

Q: Set specific IP
A: Edit /etc/sysconfic/network-scripts/ifcfg-xxx
-IPADDR=xxx.xxx.xxx.xxx
-PREFIX=xx
-GATEWAY=xxx.xxx.xxx.xxx
-DNS1=xxx.xxx.xxx.xxx
-onboot=yes
-BOOTPROTO=static
-edit /etc/sysconfig/network
-HOSTNAME=xxx
-GATEWAY=xxx.xxx.xxx.xxx
-edit /etc/resolv.conf
-DNS1=xxx.xxx.xxx.xxx
-systemctl disable NetworkManager
-systemctl stop NetworkManager
-systemctl restart network

Q: Set default boot target to multiuser
A: -systemctl get-default (shows current)
-systemctl set-default multi-user.target
-systemctl —t target (shows target)
-systemctl isolate multi-user.target (like init 5)

Q: Set SELinux to enforcing
A: -edit /etc/sysconfig/selinux
-SELINUX=enforcing

Q: search for “then” in /etc/profile and save results to /var/tmp/pattern.txt, no empty lines
A: grep then /etc/profile 2>/dev/null | tee -a /var/tmp/pattern.txt

Q: Modify the command prompt to be hostname, username, pwd
A: export PS1=“<$LOGNAME@$HOSTNAME:\$PWD>”

Q: Create users: barry, harry, larry, mary, gary w/ home directories in home
-Passwd: Temp123$
-Mary/Barry expire Dec 31 2017
-Larry/Gary 2nd group dba, create it not there

Q: Create a directory in mary’s home directory called testdir2 and set default ACLs on it so barry can read and write to that folder. 
A:  -First you need to give barry rx to mary’s home directory.  
-chmod -R 705 /home/mary
-setfacl -m d:u:barry:rw testdir2
-verify with getfacl testdir2
-su - barry
-cd /home/mary/testdir2
-Note: doesn’t work if you use setfacl-m u:barry:rw testdir2

Q: Setup yum repo using ftp
A: -yum install vsftpd
-systemctl enable vsftpd
-systemctl restart vsftpd
-mkdir /var/ftp/pub/rhel7
-cp /cd /var/ftp//pub/rhel7
-Create ftp.repo in /etc/yum.repo.d/
-[ftp] name=ftp repo baseurl=ftp://x.x.x.x/rhel7 
-Might have to change permissions on directory to 755 if it can’t be read
-Also test ftp by going to address in firefox

Q: Create a logical volume called linuxadm of size equal to 10 LEs in vgtest volume group (create vgtest with PE size 32MB) with mount point /mnt/ linuxadm and xfs file system structures. Create a file called linuxadmfile in the mount point. Set the file system to automatically mount at each system reboot.
A: -lsblk shows the current structure

Create group folder all new files must be created with set group
A: chmod g+s dir

Q: Create a logical volume called linuxadm of size equal to 10 LEs in vgtest volume group (create vgtest with PE size 32MB) with mount point /mnt/ linuxadm and xfs file system structures. Create a file called linuxadmfile in the mount point. Set the file system to automatically mount at each system reboot.

A: fidsk /device
n for new partition
t for the new type which is 8e
w to write the partition
either reboot or type part probe

lsblk
pvcreate /dev/***
pvs
when creating volume group set the extent size
vgcreate -s 8m vgname /dev/*** (Sets the physical extents)
lvcreate -l 8 (lowercase l sets extents)
lvcreate -L 10M (capital L sets in MB/GB)
Full Command:
lvcreate -l —name lv_name vg_name
mkfs.filesystem /dev/mount point

Q: Add swap 50MB
lvcreate -L 50M lv_swap vgtest
lvdisplay
mkswap /dev/vgtest/lv_swap
swapon /dev/vgtest/lv_swap
swapon -s

*to show all UUID run blkid
*find specific UUID blkid “lvm path”

Q: increase size by 45MB
A: lvresize -L+45M -r /dev/mapper/name

Q: change the hostname to rhcsa
A: hostnamectl set-hostname rhcsa

—Test2——
Q: Create a user account called jerry with UID 2929 and shell /bin/ tcsh. Create a user account called terry without login access. Create another user account called mary with all the default values. Set their passwords to Temp123 $.
A:  useradd -u 2929 -s /bin/tcsh jerry
-useradd terry -s /bin/false
-useradd mary
-passwd jerry; passwd terry; passwd mary

Q: Create a file called testfile as user jerry in his home directory and give user mary read and execute rights, and user terry no permissions at all. Make sure that existing rights on the file are unaltered.
A: cd /home/jerry/
-chmod o+rx /home/jerry/
-setfacl -m u:mary:rw testfile
-setfacl -m u:terry:--- testfile
-su - mary 
-more /home/jerry/testfile

Q: Create a directory called /testdir1 as root and configure it for collaboration among members of the admins group. Create the group with members jerry and terry.
A: mkdir -p /testdir1
-groupadd admins
-usermod -g admins jerry
-usermod -g admins terry
-chgrp admins /testdir1/
-chmod g+ws /testdir1/

Q: Set permissions on /linuxadm so that all files created underneath get the membership of the parent group.
A: chmod g+s /linuxadm

Q:Create a logical volume lvol1 of size 100MB in vg02 volume group with mount point /mnt/ lvol1 and ext4 file system structures. Create a file called lvolfile in the mount point.
A: fidsk /device
-n for new partition
-t for the new type which is 8e
-w to write the partition
-either reboot or type part probe

-pvcreate /dev/sda3
-vgcreate vg02 /dev/sda3
-lvcreate --name lvol1 -L 100M vg02
-mkfs.ext4 /dev/vg02/lvol1
-mkdir -p /mnt/lvol1
-vim /etc/fstab
/dev/vg02/lvol1 /mnt/lvol1 ext4 defaults 0 0
-mount -a
-touch /mnt/lvol1/lvolfile

Q: Create a swap logical volume called swapvol1 of size equal to 12 LEs in vg02 volume group, and activate it persistently.s
A: -lvcreate -l 12 --name swapvol1 vg02
-mkswap /dev/vg02/swapvol1
-swapon /dev/vg02/swapvol1
-vim /etc/fstab
/dev/vg02/swapvol1 swap swap defaults 0 0

Q: Search for all files in the entire directory structure that have been modified in the past 30 days and save their copies in /var/ tmp/ modfiles.txt.
A: find / -mtime 0 | tee -a /var/tmp/modifies.txt
A: find / -mtime 0 > /var/tmp/modifies.txt

Q: If you wanted to copy the files in stead of just save their location
A:  find / -mtime 0 -exec cp '{}' /destfolder/ \;

Q: Change the default base home directory for new users to /usr.
A: - vim /etc/default/useradd
-change HOME= to /usr

Q: Enable cron access for user jerry and deny for user terry.
A: -Add terry to /etc/cron.deny

Q: Set up a cron job as user mary to display the output of the /usr/ local directory at 15: 35 every day.
A: -vim /etc/crontab
-35 15 * * * mary ls -la /usr/local

Q: Upgrade the kernel to a higher version and set it as the default boot kernel. The existing kernel and its configuration must remain intact. 
A: -wget “download path”
-rpm -ivh “package”

Q: Configure the system as an NTP client of server hv2 
A: -vim /etc/ntp.conf
-make sure service it enabled and started

Q: Set up a FTP yum repository in the /var/ ftp/ pub/ rhel7 directory on hv2, and configure a repo on rhcsa2.
A:  - [FTP]
name=FTP Yum

gpgcheck=0

Monday, May 25, 2015

When uploading, Google Drive stops the internet from working

Weird thing is that Google Drive kills my internet when I add a new file to be uploaded.  And when I say kills it, I mean I get nothing to load.  If I kill Google Drive, the internet comes back.  I was able to get both to work by changing the upload setting.  Under preferences you can set the upload/download speed.  I tried 1000 KB but it still didn't work. I set it to 500 KB and it finally worked.  I know how internet and uploading to Google Drive.

Saturday, May 23, 2015

Atlantic Broadband settings POP and IMAP

For some reason POP is the only thing listed on their website:

There are 3 ways to configure your email. 

1. The easiest way is to use webmail at: www.atlanticbb.net. There is no configuration required. 
2. If you would like to use an email client instead of webmail, Atlantic Broadband recommends Outlook Express, which comes installed on most PC’s, Mac Mail or Microsoft Entourage. If you have a PC you can use our Install Wizard at start.atlanticbb.net to automatically configure Outlook Express, or you can use the directions below. 
3. If you are an advanced user and would like to configure your own email client, use the following server addresses:

Incoming: pop.atlanticbb.net
Outgoing: smtp.atlanticbb.net

For Windows
1. Open Outlook Express.
2. Click TOOLS, ACCOUNTS from the menu.
3. Click on the MAIL tab, then click on ADD and select MAIL.
4. Fill in your name as you would like it to appear in the “From” notation on emails you send. Click NEXT.
5. Make sure that I ALREADY HAVE AN EMAIL ADDRESS I'D LIKE TO USE is selected. Enter your full email address and click NEXT.
6. Provide the email server names. Choose POP3 for the server. For Incoming Mail, type “pop.atlanticbb.net”. For Outgoing Mail, type “smtp.atlanticbb.net.” Select box next to “Password authentication for the outgoing server.” Click NEXT.
7. In the ACCOUNT NAME BOX, enter your uer name (all of the characters to the left of the @ sign in your email address).
8. In the password box, enter your password. You might want to check the REMEMBER PASSWORD BOX so that you don’t have to re-enter your password each time you use your email. Click NEXT.
9. Click FINISH.

For MAC
1. In the MAC Mail Top Toolbar click MAIL, then click PREFERENCES.
2. In the box that appears, click on ACCOUNTS, then click on the + symbol that appears in the lower left corner.
3. Type in your full name, email address, and password, then click CONTINUE.
4. In the Incoming Mail Server menu, type in the following values:

For account type choose: POP
Description: pop.atlanticbb.net
Incoming Mail Server: pop.atlanticbb.net
Username: (your email address without the @atlanticbb.net, this is usually automatically filled in if email address was provided above)
Password: (your email account password)

5. Click CONTINUE.
6. In the Outgoing Mail server menu, please type in the following values:

Description: smtp.atlanticbb.net
Outgoing Mail Server: smtp.atlanticbb.net
Do not check the "Use Authentication" box

7. Click CONTINUE. 
8. In the Account Summary menu, review to be sure all information is correct, then click CREATE. You have now set up your email to work with Macintosh Mail.

Now for IMAP, which isn't listed any where, but Outlook finds it:

Incoming Mail server: mail.atlanticbb.net
Outgoing SMTP: mail.atlanticbb.net

Under More Settings -> Outgoing Server -> My outgoing SMTP requires authentication -> Check  Use same settings as my incoming mail server.

Under Advanced Tab ->

Incoming Port is 993 and uses SSL
Outgoing Port 587 and uses TLS

Confirmed working with Windows 7 & Outlook 2013

Tuesday, May 19, 2015

Canon Vixia HF S 10 turns on to black screen with rattle inside

I bought a new battery and the camera was working fine before using this new battery. Fully charged it should work fine. Took the battery out and just plugged it into the wall... same problem. It sounded like something was rattling inside the camera. I noticed the lens wasn't closed. It was stuck.

I found this YouTube video (Linkand it didn't help but the comments did. Someone suggested holding power and function. I did that but nothing happened. I ejected the battery and turned it back on and it worked. Another suggestion was tapping the battery since the cover was stuck.  Hope this works for you like it worked for me. 

Tuesday, May 5, 2015

You have not chosen to trust "Entrust Certification Authority - L1C", the issuer of the server's security certificate.

Just randomly my Mac started giving me this error.  No matter how I connected to a Citrix Desktop, I got this weird error.  I looked at all the certificates in the browser and I looked at the certificates in the Keychain Access.  No where could I find "Entrust Certification Authority - L1C".

Well here is how I fixed it.

Here is how you would do it for a Windows Server (Link)

Here is how to fix it on OS X:

First download the cert here (Full Site)

Next open Keychain Access (Macintosh HD -> Applications -> Utilities - > Keychain Access)

Next click the lock up in the top left and enter your password

Next click file import, navigate to where you saved the certificate above, mine was called entrust_l1c.cer, and click the certificate.

Make sure at the bottom the Destination Keychain is selected to System, now click Open.

You will be prompted to type your password again one more time.

At this point, I tried it again and no more error.


Versions:
OS X 10.10.3
Firefox 37.0.2
Citrix Viewer 11.8.2

Monday, April 13, 2015

How to Build a Yum Repository in CentOS

First we need to run:

yum install createrepo (if installing from the cd, you might get a gpg error, type y and hit enter)

Next,

yum install vsftpd

service vsftpd start

*If running iptables, you will have to allow it through the firewall

Create the directory: /var/ftp/pub/yum/*OSName*/*RELEASE*/*PATCH*/base/*ARCH*

examples:

/var/ftp/pub/yum/centos/6/6/base/i386
/var/ftp/pub/yum/centos/6/6/base/x86_64
/var/ftp/pub/yum/RHEL/7/1/base/x86_64

mkdir -p /var/ftp/pub/yum/centos/6/6/base/x86_64

cp -ar /*CDMOUNTPOINT*/Packages/* /var/ftp/pub/yum/centos/6/6/base/x86_64
cp /*CDMOUNTPOINT*/repodata/*comps*.xml /opt/yum/rhel6.3/repodata/comps.xml

cd /var/ftp/pub/yum/centos/6/6/base/x86_64
createrepo -v .

vim /etc/yum.reposb.d/custom.repo
[name]
name=Centos $releasever Base Updates 6.6
baseurl=ftp://*ip-of-the-computer*/pub/centos/6/6/base/x86_64
yum clean all
yum repolist

Your repo should now be listed

Couple of Notes:
SELinux and the firewall was turned off while doing this

Note:  Some systems may require you to run yum-arch /var/ftp/pub/yum/centos

Tested In: CentOS 4.3, CentOS 6.6 (just change version numbers above to match your version of the OS)

Saturday, February 21, 2015

How do I see who I have registered to my Google Apps Reseller account

First go to admin.google.com

Next login with your resellers account which should be like username@reseller.domain.com

Once you are logged in, on the right side you will see a link that says reseller tools.  Click that.

At this point it takes you to the customer enrollment page.  To see what you have already registered clicked at the top Customer Registration.

Friday, February 6, 2015

Can't Delete Printer

I couldn't delete a printer and when I tried it would give me this message:  "This operation has been cancelled due to restrictions in effect on this computer. Please contact your system administrator."

I checked security settings, tried opening print queue, etc and when trying to open these it would tell me: "This printer has been deleted or removed".

Wait WHAT?

I ended up finding something about showing hidden devices in device manager.  I ended up not having to show hidden devices.  I just went to Device Manager -> Print Queues.  I just right clicked it and deleted it.  It finally worked.

Source: Link

OS: Windows 8.1 Pro

Wednesday, December 3, 2014

Setting up KVM in Centos 6.5 with Bridged Networking

NOTE:  This is all assuming your computer supports virtualization.  If you aren't sure run this command as root -> more /proc/cpuinfo | grep vmx  If it returns anything, it should work assuming it is turned on in the bios.

The first thing you need to do is install the KVM Packages

sudo yum install @Virt*
sudo yum install kvm*
sudo yum install libvirt* 

Next you will want to restart the libvertd

sudo service libvertd restart

Now check to make sure its set to start on boot

sudo chkconfig --list | grep libvirtd

if it is not run the following

sudo chkconfig libvrtd on

At this point the KVM should be installed and working.

To run the GUI manager type:

sudo virt-manager

If you are having trouble with connecting to the qemu then run the following:

lsmod | grep kvm

If this doesn't return a value there is an issue.  Double check that your bios has VT enabled.

Now if you want each VM to act as if they are their own entity on the network with their own IP we need to change some things.  I will say this.... I was on a machine with NIS configured and was doing all these changes while my user and once the network is broken, you as the user become unknown when the NIS server can't be reached.  Do all the following as root.

Locate your ethernet config file in /etc/sysconfig/network-scripts/

Lets back it up first

cp /etc/sysconfig/network-scripts/ifcfg-eth0 /etc/sysconfig/network-scripts/ifcfg-eth0.bak

Open up the ifcfg file and this is all I have in mine.

DEVICE="eth0"
HWADDR=XX:XX:XX:XX:XX:XX
ONBOOT=yes
BRIDGE=br0
NM_CONTROLLED=no

The hwaddr is probably already there so don't change the value.  Also the bridge name is what I called the next file so it can be whatever as long as the two match.

Lets create a new file

vim /etc/sysconfig/network-scripts/ifcfg-br0

DEVICE="br0"
TYPE=Bridge
DELAY=0
ONBOOT="yes"
BOOTPROTO=static
IPADDR=X.X.X.X
NETWMASK=X.X.X.X
GATEWAY=X.X.X.X
DNS1=X.X.X.X
DNS2=X.X.X.X
DOMAIN=test.local
PEERNDS="yes"
NM_CONTROLLED="no"

Like I mentioned the DEVICE name must match the BRIDGE name above.

Now run:

service network restart

To show if the bridge is up and working run

brctl show

If you are running iptables we need to add some new rules to it

iptables -I FORWARD -m physdev --physdev-is-bridged -j ACCEPT
service iptables save
service iptables restart

Next we need to add some kernel settings.  Open /etc/sysctl.conf

Add the following:

net.bridge.bridge-nf-call-ip6tables = 0
net.bridge.bridge-nf-call-iptables = 0
net.bridge.bridge-nf-call-arptables = 0

Close and save. Run the following to verify they were added.

sysctl -p /etc/sysctl.conf
service libvirtd reload

I had issues with NetworkManager so I turned it off

chkconfig NetworkManager off

Now reboot and run virt-manager to start building your VM.

SourceLink Link Link

Thursday, November 27, 2014

Hackintosh Asus Rampage Formula (UPDATED: 10.10.1 Yosemite)

Asus Rampage Formula

Nvidia 6800GT

Audio: SupremeFX II (Chipset:AD1988B)
Source:  Link  Link  Link

http://lifehacker.com/5841604/the-always-up+to+date-guide-to-building-a-hackintosh

Go to http://www.tonymacx86.com/. It is the place for everything.

Network Driver I found here

Download driver and put in /Extra/Extensions

Reboot and go into Network Preferences and it will say it found a new network device.

10.8
boot with flags:  PCIRootUID=0

How to install:  Link

10.9
boot with flags:  GraphicsEnabler=Yes -v

Took a couple of minutes but eventually booted.

How to install:  Link

After install was complete rebooted off USB selected the Mavericks Install Drive and booted with the flags again GraphicsEnabler=Yes -v

To get the network drivers to work was a little bit more tricky.  I first needed to download this utility.  It's called KW.zipI downloaded it to a USB drive and copied it over.  Unzipped the file and ran Kext Wizard.  Then click Installation -> Browse and then select the drive you downloaded from the above link.  The destination is important because it seems like the only way this will work is if you put it in System/Library/Extensions.  If you don't do it correctly, it will keep popping up with error messages.  This utility does it the right way.  Reboot and open Network Preferences.  It will say it found two interfaces.  For what ever reason it was saying that neither was connected.  I removed both by hitting the minus sign and readded en1.  I have the cable plugged into port 2 on the pack which is the top ethernet port.

10.10
So getting Yosemite has been tricky.  The previous versions seemed to go easier.  I finally got this working.  I couldn't get Unibeast to work perfectly so I tried Clover and that was even a bigger disaster.  Multibeast and Unibeast must have been updated since the first time I tried it.
Here is what I did:

Boot Flags: GraphicsEnabler=Yes

Multibeast Selected:
  • EasyBeast
  • Bootloaders
    • Chimera v4.0.1
  • Customize
    • Basic Boot Options
    • GraphicsEnabler=Yes
    • Hibernate Mode - Desktop
    • Kext Dev Mode
    • Use KernelCache
    • Verbose Boot
Everything worked except Audio and network.  I got 1/2 working.

Networking:
  • Found this thread (Link) and it lists this driver kext (Link)
  • I had trouble with previous kexts but I got it to work using this utility (Link)
NOTE: I installed 10.10.1 and I lost networking so it looks like every time there is an upgrade, you'll have to reload networking.




ShareThis