Versions Compared

Old Version 7

changes.mady.by.user jtel Support

Saved on

compared with

New Version 8

changes.mady.by.user jtel Support

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Sv translation
languageen

Status
colourYellow
titleIN PROGRESS

Notes

We no longer support DRBD on the base file system. We always install with LVM for maintenance purposes.

Create the Store for DRBD

It is recommended to create the STORE machine without the disk for the storage being mounted by the installation routines. 

Creation Steps (BOTH NODES)

... TODO ...

Prepare Mount Point

The data should be mounted to the directory /srv/jtel/shared.

The following commands prepare for this:

Translations Ignore


Code Block
languagebash
mkdir /srv/jtel
mkdir /srv/jtel/shared 
chown -R jtel:jtel /srv/jtel


Install ELrepo and DRBD

Code Block
languagebash
dnf -y install https://www.elrepo.
. TODO ...
org/elrepo-release-8.el8.elrepo.noarch.rpm
rpm --import https://www.elrepo.org/RPM-GPG-KEY-elrepo.org
dnf -y install drbd90-utils kmod-drbd90

Install and Configure Access to STORE

Install Samba (BOTH NODES)

These commands install the samba server and client and lsof.

Translations Ignore


Code Block
dnf -y install samba samba-client lsof


Configure Samba

The following creates a samba configuration file with a minimum configuration.

Translations Ignore


Code Block
# SMB Conf
cat <<EOFF > /etc/samba/smb.conf
[global]
    workgroup = JTEL
    security = user
    passdb backend = tdbsam
    min protocol = SMB3
[shared]
    comment = jtel ACD Shared Directory
    public = no
    read only = no
    writable = yes
    locking = yes
    path = /srv/jtel/shared
    create mask = 0644
    directory mask = 0755
    force user = jtel
    force group = jtel
    acl allow execute always = True
EOFF


Setup SeLinux and the Firewall

The following command sets up selinux for the smb service and opens the necessary ports in the firewall:


Translations Ignore


Code Block
setsebool -P samba_enable_home_dirs=on samba_export_all_rw=on use_samba_home_dirs=on use_nfs_home_dirs=on
firewall-cmd --zone=public --add-port=445/tcp --add-port=139/tcp --add-port=138/udp --add-port=137/udp --permanent
firewall-cmd --reload


Manually link /home/jtel/shared

Link the /home/jtel/shared folder. 

Translations Ignore


Code Block
ln -s /srv/jtel/shared /home/jtel/shared


Setup Access to the Samba Server

jtel User Access

The following command creates the smb credentials for the jtel user.

Status
colourRed
titleCaution Password

Translations Ignore


Code Block
printf '<password>\n<password>\n' | smbpasswd -a -s jtel


Further User Access

If necessary, add further users to samba - replacing password with the actual password for the user. Here, for example, the windows administrator user:

Status
colourRed
titleCaution Password

Translations Ignore


Code Block
useradd -m Administrator
printf '<password>\n<password>\n' | smbpasswd -a -s Administrator


TODO ...




...