Technical OverviewTechnical Overview

RaQ 2

RaQ 2 HardwareRaQ 2 Hardware

“RaQ ‘em and stack ‘em”

Hardware SpecificationsHardware Specifications

• 10/100 Ethernet; single or dual• Ultra SCSI connector (RaQ 2+)• 30W max power• LED status lights; front and back• 1 RU form factor enables up to 40

units in a standard rack• Various RAM sizes (upgradeable)• Various hard drive configurations

LCD Panel

• Panel has “root”-level access

• Set IP number* (ifconfig)

• Set subnet mask (ifconfig)

• Set gateway (ifconfig)

• Can restart or shutdown system (shutdown)

*DHCP server can assign IP number

Software SpecificationsSoftware Specifications

“LINUX…Cobalt’s Way”

Software SpecificationsSoftware Specifications

• Cobalt LINUX ported from Red Hat LINUX• Kernel 2.0.34 (with Cobalt enhancements)• Apache 1.3.3

– Full module support (/etc/httpd/modules/)

• Bind 8.1.2 DNS server• Sendmail 8.9.3• Second generation Cobalt administration

interface; Customer requested changes

Additional FeaturesAdditional Features

• Significant Security improvements– PAM authentication (Plug-able Authentication

Modules)

– Winner of LINUX World’s Security Award (July 1999, San Jose)

• Enhanced DNS administration• Majordomo mail-list support

RaQ 2 Initial SetupRaQ 2 Initial Setup

The Welcome Screen and Setup Wizard

“Welcome”

•From ANY html browser access the RaQ 2 using the IP number (Windows, MacOS, LINUX, etc.)

Web Setup – Page 1/1

4 Entries:•Host•Domain•Primary DNS•Secondary DNS

Type password in twice - it doesnot echo on-screen

Network Time Protocol NTP(for atomic clocks sync)

Decide what services

RaQ 2 AdministrationRaQ 2 Administration

“Reducing work…”

Administrative Capabilities of Administrative Capabilities of the Site Userthe Site User

• Modify– Password– Email forwarding– Email vacation autoresponder

• Post data files to home directory• Post web content to home

directory via FTP• Backup / restore home directory

• All the capabilities of the site user, plus…• Create & delete users• Manage users’ settings

– Email aliases– Determine access rights and level of users

• Modify the web pages associated to site• View / download web log data• Perform site backup & restore• Post files to FTP site

Administrative Capabilities of the Site Administrator

Administrative Capabilities of the RaQ 2 Administrator

• All the abilities of the site administrator, plus…

• “root” access• Creates and delete sites• Determine service status for web, ftp, email,

shell• Manages email configuration• Creates / manages DNS • Performs maintenance

– Backup and restore– Update software– Monitoring system operation and status

RaQ 2 AdministrationRaQ 2 Administration

RaQ admin siteadm@dom1.com siteadm@dom2.com siteadm@dom3.com siteadm@dom4.com

user2@dom1.com

user4@dom1.com

user2@dom2.com

user5@dom3.com

user4@dom4.com

USERS ADMINISTRATE THEMSELVES•Modify password•Email forwarding & vacation autoresponder•Backup home directory•Restore home directory

Administration Hierarchy

Users manage themselves without disruption of others on the box

•All the capabilities of the site user, plus…•Create & delete users•Manage users’ settings

–Email aliases–Determine access rights and level of users

•Modify the web pages associated to site•View / download web log data•Perform site backup & restore•Post files to FTP site

Site administrators can only manage their domains, and not access or affect othersRaQ ADMINISTRATOR MANAGES IT ALL

•All the abilities of the site administrator, plus…•“root” access•Creates and delete sites•Determine service status for web, ftp, email, shell•Manages email configuration•Creates / manages DNS •Performs maintenance

–Backup and restore–Update software–Monitoring system operation and status

The Role of the RaQ adminThe Role of the RaQ admin

RaQ admin: RaQ 2 ServicesRaQ admin: RaQ 2 Services

EmailEmail FTPFTP TelnetTelnet

SNMPSNMP WebWeb DNSDNS

RaQ admin: EmailRaQ admin: Email

E-MailE-Mail

RaQ admin: Email ParametersRaQ admin: Email Parameters

• Use the Control Panel to allow e-mail for a domain (rather than a hostname).

RaQ admin: RaQ 2 ServicesRaQ admin: RaQ 2 Services

SNMPSNMP

RaQ admin: SNMP RaQ admin: SNMP ParametersParameters

• Support for Public & R/W Communities• Includes Linux specific MIB information

– Reports each IP interface– Current System Load– Load average over 1, 5 & 15 minutes – CPU type

RaQ admin: RaQ 2 ServicesRaQ admin: RaQ 2 Services

DNSDNS

RaQ admin: DNS ParametersRaQ admin: DNS Parameters

• Enhanced interface provides support for A, CNAME, MX & PTR records

Only one domaindisplays at a time

RaQ admin: Adding DNS RaQ admin: Adding DNS RecordsRecords

Authoritative and Alias Records

RaQ admin: DNS: MX & RaQ admin: DNS: MX & Reverse DNSReverse DNS

Each IP address should have just one Reverse record

Net Mask is RFC 2317 compliant to support small (<255) network ranges

A domain can have multiple precedence Mail Exchange records

RaQ admin: DNS: Secondary RaQ admin: DNS: Secondary DNSDNS

Many NIC’s (esp. Europe) now require two NS records to be populated before they will register a domain. They will check your Primary Server to verify that the domain is being served.

RaQ admin: RaQ 2 ServicesRaQ admin: RaQ 2 Services

Web Server (Apache)Web Server (Apache)

RaQ admin: RaQ admin: Server Hosting Management

Note:Note: Access to this screen is restricted to the RaQ admin Access to this screen is restricted to the RaQ admin

Virtual Site List, Virtual Site List, which is basically which is basically httpd.confhttpd.conf

Click on Add Virtual Site, to Click on Add Virtual Site, to add a siteadd a site

RaQ admin: Add Virtual SiteRaQ admin: Add Virtual Site

This box auto-modifies mail parameters and has Apache work well integrated with Sendmail

Decide whether a site has shell accounts, cgi, SSI, Frontpage extensions

Anonymous FTP configuration

Enter IP number, hostname, domain name…

The Site adminThe Site admin

• All the capabilities of the site user, plus…• Create & delete users• Manage users’ settings

– Email aliases– Determine access rights and level of users

• Modify the web pages• View / download web log data• Perform site backup & restore• Post files to FTP site

Site admin

The The GreenGreen Screen Screen

Site admin: Add/Delete usersSite admin: Add/Delete users

Once you create a site, you should populate it with users and at least 1 Site Admin.

Site admin: Add usersSite admin: Add users

OptionsTelnet Access (shell account) Leave this off for POP / E-mail only

Promote / demote Site Admin

Enable FrontPage if the RaQ admin has enabled it for the site

Set E-mail Aliases

Site admin: USite admin: Users List

Standard User tool set

Site AdminTelnet Access

Modify userE-mail settings

Delete User

Site admin: Add Mailing List Site admin: Add Mailing List (majordomo)(majordomo)

• Site admins can create mail lists with multiple recipients locally or externally

Site admin: Site admin: Settings (v. RaQ admin)

RaQ admin can set all valuesSite admin gets an information but can’t make changes

Site admin: FTP SettingsSite admin: FTP Settings

• Anonymous FTP Configuration

The number of simultaneoususers puts a cap on FTP

related system load

Site admin: Disk UsageSite admin: Disk Usage

• Disk Usage: cool feature

Reporting is done by site & user

Site admin: Web UsageSite admin: Web Usage

• Web Usage:

The reporting engine is based on Analog

You can download log data for processing on a PC

Site admin: BackupSite admin: Backup

• The RaQ 2 supports several backup strategies– Full Backup– Incremental Backup

For RaQ admin: The list of all users on the RaQFor Site admin: The list of all users on the site

For RaQ admin: A list of all hosted sites.

For site admin: the owned site

Incremental / Full Backup

Site admin: RestoreSite admin: Restore

• There are several ways to restore files– Full restore– Incremental restore

• supports selective restore of individual files

User Self AdministrationUser Self Administration

User Self Administration

• Profile Settings

FrontPage ExtensionsFrontPage Extensions

• Features:– FrontPage97/98/2000 compatibility – Most Secure Implementation - never runs as root– Fully abstracted through the User Interface - no

telnet access is necessary– For security reasons, we do not use Microsoft’s

web based “Admin Tools”

CGI / Programming SupportCGI / Programming Support

• Shell / Perl / C scripts can be run in site or user directories

• Server Side Includes (SSI) can be enabled through the UI

• PHP 3.0.7 with backend database hooks to mySQL or postgreSQL

3rd Party Applications3rd Party Applications

• Databases– MySQL– PostgreSQL

• Java - Kaffe 1.2 from Transvirtual• egcs C/C++ compiler

• Kai Kuck C++ preprocessor