AmigaOne X1000 platform specific issues related to Linux only.
xeno74
Posts: 9385 Joined: Fri Mar 23, 2012 7:58 am
Post
by xeno74 » Tue Oct 19, 2021 2:31 pm
Desktop firewall for Void PPC Linux:
/etc/rc.loca l:
Code: Select all
# Default rc.local for void; add your custom commands here.
#
# This is run by runit in stage 2 before the services are executed
# (see /etc/runit/2).
iptables -t filter -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -t filter -A OUTPUT -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
iptables -t filter -A INPUT -i lo -j ACCEPT
iptables -P INPUT DROP
iptables -P OUTPUT DROP
iptables -P FORWARD DROP
xeno74
Posts: 9385 Joined: Fri Mar 23, 2012 7:58 am
Post
by xeno74 » Thu Oct 21, 2021 10:53 am
freeIPA:
Integrated security information management solution combining Linux (Fedora), 389 Directory Server, MIT Kerberos, NTP, DNS, Dogtag certificate system, SSSD and others.
xeno74
Posts: 9385 Joined: Fri Mar 23, 2012 7:58 am
Post
by xeno74 » Fri Oct 22, 2021 5:46 pm
freeIPA: ipa user-add:
xeno74
Posts: 9385 Joined: Fri Mar 23, 2012 7:58 am
Post
by xeno74 » Sat Oct 23, 2021 10:00 am
freeIPA authentication on Void PPC:
xeno74
Posts: 9385 Joined: Fri Mar 23, 2012 7:58 am
Post
by xeno74 » Sun Oct 24, 2021 6:39 pm
freeIPA client installation in a docker container:
Code: Select all
docker run --name freeipa-server2 --sysctl net.ipv6.conf.all.disable_ipv6=0 --hostname freeipa-server2.a-eon.tld --dns=192.168.178.21 -p 53:53/udp -p 53:53 -p 80:80 -p 443:443 -p 389:389 -p 636:636 -p 88:88 -p 464:464 -p 88:88/udp -p 464:464/udp -p 123:123/udp -v /Users/christian/freeipa-server-container-data:/data:Z freeipa/freeipa-server:centos-8
Code: Select all
ipa-client-install --no-ntp --no-nis --domain=a-eon.tld --realm=A-EON.TLD
Code: Select all
ipa-replica-install --setup-ca --setup-dns --no-forwarders
xeno74
Posts: 9385 Joined: Fri Mar 23, 2012 7:58 am
Post
by xeno74 » Sun Oct 24, 2021 10:34 pm
SSH login via IPA user:
xeno74
Posts: 9385 Joined: Fri Mar 23, 2012 7:58 am
Post
by xeno74 » Mon Oct 25, 2021 9:36 am
Manual network interface configuration on Fedora PPC64:
vi /etc/sysconfig/network-scripts/ifcfg-<network interface>
For example:
vi /etc/sysconfig/network-scripts/ifcfg-ens33
Code: Select all
DEVICE=ens33
BOOTPROTO=none
ONBOOT=yes
PREFIX=24
IPADDR=192.168.178.102
GATEWAY=192.168.178.1
DNS1=192.168.178.21
DNS2=192.168.178.1
If you want to disable ipv6 then add the following line to "
/etc/sysctl.conf ".
Code: Select all
net.ipv6.conf.ens33.disable_ipv6 = 1
Last edited by
xeno74 on Mon Oct 25, 2021 1:12 pm, edited 1 time in total.
xeno74
Posts: 9385 Joined: Fri Mar 23, 2012 7:58 am
Post
by xeno74 » Mon Oct 25, 2021 1:09 pm
freeIPA replication:
xeno74
Posts: 9385 Joined: Fri Mar 23, 2012 7:58 am
Post
by xeno74 » Tue Oct 26, 2021 2:07 pm
freeIPA replication part2:
xeno74
Posts: 9385 Joined: Fri Mar 23, 2012 7:58 am
Post
by xeno74 » Wed Oct 27, 2021 1:28 am
freeIPA client installation in a Rocky Linux docker container:
Create a container from the Rocky Linux image (deploy):
Code: Select all
docker run -it --name freeipa-server-rocky2 --sysctl net.ipv6.conf.all.disable_ipv6=0 --hostname freeipa-server-rocky2.a-eon.tld --dns=192.168.178.21 -p 53:53/udp -p 53:53 -p 80:80 -p 443:443 -p 389:389 -p 636:636 -p 88:88 -p 464:464 -p 88:88/udp -p 464:464/udp -p 123:123/udp -v /Users/christian/freeipa-server-container-data:/data:Z -d rockylinux/rockylinux
Access to the container:
Code: Select all
docker exec -it --user root freeipa-server-rocky2 /bin/bash
Code: Select all
ipa-client-install --no-ntp --no-nis
Stop the container:
docker ps -a and
docker stop ID (For example:
docker stop 4333350fd351 )
Start the container again:
Code: Select all
docker exec -it --user root freeipa-server-rocky2 /bin/bash