SIMULATION
RHCE Test Configuration Instructions
Information for the two systems you will use in test is the following:
system1.group3.example.com: is one of the main sever. system2.group3.example.com: mainly used as a client.
Password for both of the two systems is atenorth
System's IP is provided by DHCP, you can regard it as normal, or you can reset to Static IP in accordance with the following requirements:
system1.group3.example.com: 172.24.3.5system2.group3.example.com: 172.24.3.10
The subnet mask is 255.255.255.0
Your system is a member of DNS domain group3.example.com. All systems in DNS domain group3.example.com are all in subnet 172.24.3.0/255.255.255.0, the same all systems in this subnet are also in group3.example.com, unless specialized, all network services required to be configured can be accessed by systems of domain group3.
host.group3.example.com provides a centralized authentication service domain GROUP3.EXAMPLE.COM, both system1 and system2 have already been pre-configured to be the client for this domain, this domain provides the following user account:
Firewall is enabled by default, you can turn it off when deemed appropriate, other settings about firewall may be in separate requirements.
Your system will be restarted before scoring, so please ensure that all modifications and service configurations you made still can be operated after the restart without manual intervention, virtual machine instances of all examinations must be able to enter the correct multi-user level after restart without manual assistance, it will be scored zero if the test using virtual machine system cannot be restarted or be properly restarted.
Corresponding distribution packages for the testing using operating system Red Hat Enterprise Linux version can be found in the following link: http://server1.group3.example.com/rhel
Part of the requirements include host security, ensure your host security limit does not prevent the request to allow the host and network, although you correctly configured the network service but would have to allow the host or network is blocked, this also does not score.
You will notice that some requirements which clearly do not allow services be accessed by service domain my133t.org, systems of this domain are in subnet 172.25.1.0/252.255.255.0, and systems of these subnets also belong to my 133t.org domain.
PS: Notice that some test questions may depend on other exam questions, for example, you might be asked to perform a series of restrictions on a user, but this user creation may be required in other questions. For convenient identification, each exam question has some radio buttons to help you identify which questions you have already completed or not completed. Certainly, you do not need to care these buttons if you don't need them.
Configure NFS service
Configure the NFS service on the system1, as required:
1.
Share the directory /public in read only way, just can be accessed by systems in domain11.example.com at the same time.
2.
Share the directory /protected in rad and write way, Kerberos security encryption required, you can use the key provided by the following URL: http://host.domain11.example.com/materials/nfs_server.keytab
3.
The directory /protected should contain the sub directory named project and the owner name is deepak;
4.
User deepak can access /protected/project in read and write ways
SIMULATION
RHCE Test Configuration Instructions
Information for the two systems you will use in test is the following:
system1.group3.example.com: is one of the main sever. system2.group3.example.com: mainly used as a client.
Password for both of the two systems is atenorth
System's IP is provided by DHCP, you can regard it as normal, or you can reset to Static IP in accordance with the following requirements:
system1.group3.example.com: 172.24.3.5system2.group3.example.com: 172.24.3.10
The subnet mask is 255.255.255.0
Your system is a member of DNS domain group3.example.com. All systems in DNS domain group3.example.com are all in subnet 172.24.3.0/255.255.255.0, the same all systems in this subnet are also in group3.example.com, unless specialized, all network services required to be configured can be accessed by systems of domain group3.
host.group3.example.com provides a centralized authentication service domain GROUP3.EXAMPLE.COM, both system1 and system2 have already been pre-configured to be the client for this domain, this domain provides the following user account: Firewall is enabled by default, you can turn it off when deemed appropriate, other settings about firewall may be in separate requirements.
Your system will be restarted before scoring, so please ensure that all modifications and service configurations you made still can be operated after the restart without manual intervention, virtual machine instances of all examinations must be able to enter the correct multi-user level after restart without manual assistance, it will be scored zero if the test using virtual machine system cannot be restarted or be properly restarted.
Corresponding distribution packages for the testing using operating system Red Hat Enterprise Linux version can be found in the following link: http://server1.group3.example.com/rhel
Part of the requirements include host security, ensure your host security limit does not prevent the request to allow the host and network, although you correctly configured the network service but would have to allow the host or network is blocked, this also does not score.
You will notice that some requirements which clearly do not allow services be accessed by service domain my133t.org, systems of this domain are in subnet 172.25.1.0/252.255.255.0, and systems of these subnets also belong to my 133t.org domain.
PS: Notice that some test questions may depend on other exam questions, for example, you might be asked to perform a series of restrictions on a user, but this user creation may be required in other questions. For convenient identification, each exam question has some radio buttons to help you identify which questions you have already completed or not completed. Certainly, you do not need to care these buttons if you don't need them.
Mount a NFS Share
Mount a NFS Share to system1.domain11.example.com on the system2, as required:
1.
Mount the /public to the directory /mnt/nfsmount
2.
Mount the /protected to the directory /mnt/nfssecure, in a security way, key download from the following URL: http://host.domain11.example.com/materials/nfs_client.keytab
3.
User deepak can create files in /mnt/nfssecure/project
4.
These file systems automatically hang up when the system is started
SIMULATION
RHCE Test Configuration Instructions
Information for the two systems you will use in test is the following:
system1.group3.example.com: is one of the main sever. system2.group3.example.com: mainly used as a client. Password for both of the two systems is atenorth System's IP is provided by DHCP, you can regard it as normal, or you can reset to Static IP in accordance
with the following requirements:
system1.group3.example.com: 172.24.3.5system2.group3.example.com: 172.24.3.10
The subnet mask is 255.255.255.0
Your system is a member of DNS domain group3.example.com. All systems in DNS domain group3.example.com are all in subnet 172.24.3.0/255.255.255.0, the same all systems in this subnet are also in group3.example.com, unless specialized, all network services required to be configured can be accessed by systems of domain group3.
host.group3.example.com provides a centralized authentication service domain GROUP3.EXAMPLE.COM, both system1 and system2 have already been pre-configured to be the client
for this domain, this domain provides the following user account:
Firewall is enabled by default, you can turn it off when deemed appropriate, other settings about firewall may be in separate requirements.
Your system will be restarted before scoring, so please ensure that all modifications and service configurations you made still can be operated after the restart without manual intervention, virtual machine instances of all examinations must be able to enter the correct multi-user level after restart without manual assistance, it will be scored zero if the test using virtual machine system cannot be restarted or be properly restarted.
Corresponding distribution packages for the testing using operating system Red Hat Enterprise Linux version can be found in the following link: http://server1.group3.example.com/rhel
Part of the requirements include host security, ensure your host security limit does not prevent the request to allow the host and network, although you correctly configured the network service but would have to allow the host or network is blocked, this also does not score.
You will notice that some requirements which clearly do not allow services be accessed by service domain my133t.org, systems of this domain are in subnet 172.25.1.0/252.255.255.0, and systems of these subnets also belong to my 133t.org domain.
PS: Notice that some test questions may depend on other exam questions, for example, you might be asked to perform a series of restrictions on a user, but this user creation may be required in other questions. For convenient identification, each exam question has some radio buttons to help you identify which questions you have already completed or not completed. Certainly, you do not need to care these buttons if you don't need them.
Configure Security Web Service
Configure a TLS encryption for the site http://systeml.domain11.example.com, encrypt/, get a signed certificate from http://host.domain11.example.com/materials/system1.crt. Get the certificate key from http://host.domain11.example.com/materials/system1.key. Get the signature authorization information of the certificate from http://host.domain11.example.com/materials/domain11.crt
SIMULATION Connect to the email server and send email to admin, and it can be received by harry.
SIMULATION
You are working as an Administrator. There is a common data shared (/data) from 192.168.0.254 to all users in your local LAN. When user's system start, shared data should automatically mount on /common directory.
SIMULATION
There were two systems:
system1, main system on which most of the configuration take place
system2, some configuration here
Configure port forwarding.
Configure server X to forward traffic incoming on port 80/tcp from source network
172.25.X.0/255.255.255.0 to port on 5243/tcp.
SIMULATION
There were two systems:
system1, main system on which most of the configuration take place
system2, some configuration here
NFS server.
Configure serverX with the following requirements
Share the /nfsshare directory within the example.com domain clients only, share must be writable
Share the /nfssecure, enable krb5p security to secure access to the NFS share from URL http://
station.network0.example.com/pub/keytabs/serverX.keytab
Create a directory named as protected under /nfssecure
The exported directory should have read/write access from all subdomains of the example.com domain
Ensure the directory /nfssecure/protected should be owned by the user harry with read/write permission
SIMULATION
There were two systems: system1, main system on which most of the configuration take place
system2, some configuration here
Configure NFS mount.
Mount /nfsshare directory on desktopX under /public directory persistently at system boot time.
Mount /nfssecure/protected with krb5p secured share on desktopX beneath /secure/protected provided with keytab http://station.network0.example.com/pub/keytabs/desktopX.keytab
The user harry is able to write files on /secure directory
SIMULATION
There were two systems:
system1, main system on which most of the configuration take place
system2, some configuration here
iSCSI Initiator
The serverX.example.com provides an iscsi port (3260). Connect the disk with desktopX.example.com and configure filesystem with the following requirements.
Create 800 MB partition on iSCSI block device and assign the filesystem as xfs
Mount the volume under /mnt/initiator at the system boot time
The filesystem should contain the copy of http://station.network0.example.com/pub/iscsi.txt
The file should be owned by root with 0644 permission
NOTE: the content of the file should not be modified