Book Image

Learning RHEL Networking

By : Andrew Mallett, Adam Miller
Book Image

Learning RHEL Networking

By: Andrew Mallett, Adam Miller

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Learning RHEL Networking
Andrew Mallett | Adam Miller
Jun, 2015 | 216 pages
No titles found
Table of Contents (18 chapters)
Learning RHEL Networking
Learning RHEL Networking
Credits
Credits
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Introducing Enterprise Linux 7
Introducing Enterprise Linux 7
Red Hat Enterprise Linux
CentOS
Fedora
Determining your distribution and version
Summary
2
Configuring Network Settings
Configuring Network Settings
Elevating privileges
Using ip and hostnamectl
Introduction to the Red Hat NetworkManager
Interacting with the NetworkManager using the Control Center
Adding a new profile with the Control Center
Interacting with the NetworkManager using nmtui
Extreme interaction with NetworkManager using nmcli
Summary
3
Configuring Key Network Services
Configuring Key Network Services
Domain Name System
Configuring a DHCP server
Configuring time services on RHEL 7
Implementing e-mail delivery on RHEL 7
Summary
4
Implementing iSCSI SANs
Implementing iSCSI SANs
The iSCSI target (server)
Managing logical volumes with LVM
Installing the targetd service and targetcli tools
Managing iSCSI targets with targetcli
Creating iSCSI targets
Working with the iSCSI Initiator
Summary
5
Implementing btrfs
Implementing btrfs
Overview of btrfs
Overview of the lab environment
Installing btrfs
Creating the btrfs filesystem
The Copy-On-Write technology
Resizing btrfs filesystems
Adding devices to the btrfs filesystem
Balancing the btrfs filesystem
Mounting multidisk btrfs volumes from /etc/fstab
Using btrfs snapshots
Optimizing btrfs for solid state drives
Managing snapshots with snapper
Summary
6
File Sharing with NFS
File Sharing with NFS
An overview of NFS
Overview of the lab environment
The NFS server configuration
Using exportfs to create temporary exports
Hosting NFSv4 behind a firewall
Hosting NFSv3 behind a firewall
Auto-mounting NFS with autofs
Summary
7
Implementing Windows Shares with Samba 4
Implementing Windows Shares with Samba 4
An overview of Samba and Samba services
An overview of the lab environment
Configuring time and DNS
Managing Samba services
The Samba client on RHEL 7
Configuring file shares in Samba
Troubleshooting Samba
Summary
8
Integrating RHEL 7 into Microsoft Active Directory Domains
Integrating RHEL 7 into Microsoft Active Directory Domains
Overview of identity management
An overview of the lab environment
Preparing to join an Active Directory domain
Using realm to manage domain enrolment
Logging on to RHEL 7 using Active Directory credentials
User and group management with adcli
Delegating Active Directory accounts with sudo
Leaving a domain
Understanding Active Directory as an identity provider for sssd
Summary
9
Deploying the Apache HTTPD Server
Deploying the Apache HTTPD Server
Configuring the httpd service
Controlling the Apache web service
Loading modules
Virtual servers
Automating virtual hosts
Summary
10
Securing the System with SELinux
Securing the System with SELinux
What is SELinux
Understanding SELinux
Working with the targeted policy type
SELinux tools
Troubleshooting SELinux
Summary
11
Network Security with firewalld
Network Security with firewalld
The firewall status
Routing
Zone management
Source management
Firewall rules using services
Firewall rules using ports
Masquerading and Network Address Translation
Using rich rules
Implementing direct rules
Summary
Index
Index

Understanding SELinux

Let's start pulling the covers off SELinux and discover a little more about what makes these controls work, starting with SELinux modes.

Modes

To begin with, we will discuss three modes that we can run with SELinux. These modes are illustrated for you in the following figure:

The disabled mode

When SELinux is disabled, SELinux is not used and the objects are NOT labeled. In the disabled mode, we rely solely on the original DAC. If we later need to enable SELinux, the boot process is lengthened because all the objects need to be relabeled again. Disabling SELinux completely like this is probably not a good idea, but should it be required, it can be set in the /etc/selinux/config file by changing the following line:

SELINUX=disabled

One reason this is not a great idea is that a reboot is required for this to take effect. As mentioned before, files need to be relabeled if SELinux is enabled later. We can force a relabel if all filesystem objects are running by running the...

Previous Section
End of Section 3
Next Section