dv1 installation

• Installation, see Booting over the network. Customized package selection, everything deselected except base utilities.
• Log in for the first time
• Create swap file:

 # dd if=/dev/zero of=/swapfile1 bs=1024 count=262144
 # mkswap /swapfile1
 # swapon /swapfile1
 # chmod 640 /swapfile

• Add following line to /etc/fstab:

 /swapfile1 swap swap defaults 0 0

• Install kernel-xen, install group Virtualization.
• Install sudo, xauth.
• Turn off selinux in /etc/selinux/config
• Set a static IP dom dom0, since the xen kernel doesn't like to bring up eth0 through dhcp
• Create image for domU's through virt-manager; this hangs after answering two questions; copied tree locally and set up local httpd. Doesn't work and neither does ftp work. New approach is kickstart:

 system-config-kickstart  noarch     2.6.19.1-1.el5   base              985 k
 Installing for dependencies:
 comps-extras            noarch     11.1-1.1.el5.centos  base               46 k
 notify-python           x86_64     0.1.0-3.fc6      base               13 k
 pirut                   noarch     1.2.10-1.el5.centos.1  base              246 k
 pykickstart             noarch     0.43-1.el5       base              127 k
 system-config-language  noarch     1.1.18-1.el5     base               68 k

• Created minimal config, succeeded in creating image through ftp
• Run yum update, and add exclude=kernel* to /etc/yum.conf
• Check whether correct kernel is configured in /boot/grub/menu.lst, then reboot
• On domU www2, networking doesn't work. Form of interfaces on dom0: vif<domid>.<vifid> where the domid can be checked with xm list. Reconfigured network to static IP, restarted domU, works.
• Test booting with either disk decoupled. Works after installing GRUB on 2nd disk.
• Made /dev/md0 for /boot, /dev/md1 with 5G for the dom0, the rest of the disk /dev/md2 and LVM'ed.
• Straight copy of an LVM device to another works.
• After rebooting, RAID /dev/md2 gone. Had to assemble it:

 # mdadm -A /dev/md2 /dev/sda3 /dev/sdb3

• Add extra configuration line to /etc/mdadm.conf, hoping that this helps.

Todo:

• Boot with laptop and serial cable
• Make SMART disk status readout for Zabbix
• Check out logwatch
• Set up tripwire
• How important is the UUID and the MAC address settings in Xen config files?
• Installing SVN on www1
• How does VNC function with the virt-manager utility?
• Lock down sshd
• Remove server keys from image, set IP address, change MAC address, shut down and remove superfluous services
• Set hostname and static IP on www2.
• Install s/w on www2.
• Lock down dom0
• Copy www2 to ns1.
• See how kernel can be adjusted and recompiled
• See whether the Dell management software works, see http://lists.us.dell.com/faq
• Can we enable access to SMS?
• Check the TLS stuff
• See how CentOS works security-wise