Scribd Logo
Carica

Benvenuto in Scribd!

  • Practica de Laboratorio 1 Grupo 6

    Caricato da

    Richard Vivanco
    50 visualizzazioni10 pagine
    router

    Copyright

    © © All Rights Reserved

    Formati disponibili

    DOCX, PDF, TXT o leggi online da Scribd

    Hai trovato utile questo documento?

    Questo contenuto è inappropriato?

    Segnala questo documento
    router

    Copyright:

    © All Rights Reserved
    Scarica in formato DOCX, PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    50 visualizzazioni10 pagine

    Practica de Laboratorio 1 Grupo 6

    Caricato da

    Richard Vivanco
    router

    Copyright:

    © All Rights Reserved
    Scarica in formato DOCX, PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    di 10

    ADMINISTRACIN DE SERVICIOS DE RED BAJO LINUX

    Prctica de laboratorio 1 Grupo 6

    Instalacin y configuracin de servicios


    Correo y Proxy
    Sergio Andres Basurto Cedeno
    Richard M. Vivanco Granda
    Christian Antonio Franco Cabezas
    Richard R. Ruales Merchan

    [Cite el origen aqu.]

    15 DE OCTUBRE DEL 2017


    Instalacin, configuracin y operacin del servidor de correo

    [estudiante@localhost ~]$ sudo root


    [root@localhost estudiante]# yum -y install sendmail
    Instalado:
    sendmail.x86_64 0:8.14.7-4.el7
    procmail.x86_64 0:3.22-35.el7
    Listo!
    [root@localhost estudiante]# yum install sendmail-cf -y

    Instalado:
    sendmail-cf.noarch 0:8.14.7-4.el7
    Listo!

    [root@localhost estudiante]# yum install dovecot


    Instalado:
    dovecot.x86_64 1:2.2.10-7.el7
    Listo!

    [root@localhost estudiante]# yum -y install m4


    Instalado:
    m4.x86_64 0:1.4.16-10.el7
    Listo!

    [root@localhost estudiante]# cd /etc/mail/


    [root@localhost mail]# vi sendmail.mc
    DAEMON_OPTIONS(`Port=smtp, Name=MTA')dnl
    dnl FEATURE(`accept_unresolvable_domains')dn
    dnl # For this to work your OpenSSL certificates must be configured.
    dnl #
    MAILER(smtp)dnl
    MAILER(procmail)dnl

    [root@localhost mail]# m4 sendmail.mc > sendmail.cf


    [root@localhost mail]#

    [root@localhost mail]# service sendmail start


    Redirecting to /bin/systemctl start sendmail.service

    [root@localhost dovecot]# vi dovecot.conf


    # Protocols we want to be serving.
    protocols = imap pop3 lmtp

    [root@localhost dovecot]# service dovecot start


    Redirecting to /bin/systemctl start dovecot.service

    [root@localhost dovecot]# service dovecot start


    Redirecting to /bin/systemctl start dovecot.service

    [root@localhost dovecot]# netstat -nl


    Active Internet connections (only servers)
    Proto Recv-Q Send-Q Local Address Foreign Address State
    tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:40096 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:995 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:143 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN
    [root@localhost estudiante]# cd /etc/dovecot
    [root@localhost dovecot]# yum -y install telnet
    Instalado:
    telnet.x86_64 1:0.17-60.el7

    [root@localhost dovecot]# telnet 10.0.2.15 110


    Trying 10.0.2.15...
    Connected to 10.0.2.15.

    telnet> quit
    Connection closed.
    [root@localhost dovecot]# telnet 10.0.2.15 25
    Trying 10.0.2.15...
    Connected to 10.0.2.15.
    telnet> quit
    Connection closed.

    [root@localhost dovecot]# nano /etc/mail/local-host-names


    # local-host-names - include all aliases for your machine here.
    10.0.2.15
    mail.linux.com

    [root@localhost default]# useradd -g mail acollaguazo


    [root@localhost default]# passwd acollaguazo
    Cambiando la contrasea del usuario acollaguazo.
    Nueva contrasea:
    CONTRASEA INCORRECTA: La contrasea no supera la verificacin de diccionario -
    No contiene suficientes caracteres DIFERENTES.
    Vuelva a escribir la nueva contrasea:
    passwd: todos los smbolos de autenticacin se actualizaron con xito.

    [root@localhost default]# mail -v acollaguazo


    Subject: Trabajo autonomo 2 Instalacion y configuracion de servicios de red
    .
    EOT
    acollaguazo... Connecting to [127.0.0.1] via relay...
    220 localhost.localdomain ESMTP Sendmail 8.14.7/8.14.7; Fri, 13 Oct 2017 12:40:47 -
    0500
    >>> EHLO localhost.localdomain
    250-localhost.localdomain Hello localhost [127.0.0.1], pleased to meet you
    250-ENHANCEDSTATUSCODES
    250-PIPELINING
    250-8BITMIME
    250-SIZE
    250-DSN
    250-ETRN
    250-AUTH GSSAPI DIGEST-MD5 CRAM-MD5
    250-DELIVERBY
    250 HELP
    >>> MAIL From:<estudiante@localhost.localdomain> SIZE=359
    AUTH=estudiante@localhost.localdomain
    250 2.1.0 <estudiante@localhost.localdomain>... Sender ok
    >>> RCPT To:<acollaguazo@localhost.localdomain>
    >>> DATA
    250 2.1.5 <acollaguazo@localhost.localdomain>... Recipient ok
    354 Enter mail, end with "." on a line by itself
    >>> .
    250 2.0.0 v4CGplpn019576 Message accepted for delivery
    acollaguazo... Sent (v4CGplpn019576 Message accepted for delivery)
    Closing connection to [127.0.0.1]
    >>> QUIT
    221 2.0.0 localhost.localdomain closing connection

    [root@localhost default]# mail -u acollaguazo


    Heirloom Mail version 12.5 7/5/10. Type ? for help.
    "/var/mail/acollaguazo": 1 message 1 new
    >N 1 Estudiante Fri Oct 13 12:41 21/965 "Trabajo autonomo 2 "

    El contenido es el acceso y permiso que tiene un fichero

    Adriana
    adita x 1000 1000 /home/slice /bin/bash
    Collaguazo
    Interprete
    Nombre Ruta de la
    Contrasea ID de ID de Informacin de
    de la carpeta
    encriptada usuario(UID) grupo(GID) del usuario comando
    cuenta personal
    shell

    Contiene informacin de las contraseas de los usuarios


    $6$w4BF5FuC$Vx6mli6nBpLizwkcj1n
    7sQpDLk0gWzbU.hkuk/RxJn0wbmB9
    acollaguazo vqSYSjJJ 0 99999 7
    fWaNGvoeNmVZYx9XMF.rPfgEPUCjE
    0
    Mnimo
    Mximo Nmero de
    nmero de
    nmero de das de aviso
    das que el
    Nombre de das que el al usuario
    Contrasea encriptada usuario
    usuario usuario puede para que
    puede
    tener la misma cambie
    cambiar la
    contrasea contrasea
    contrasea
    Contiene informacin de los grupos, y una lista de usuarios que pertenecen al
    grupo
    mail x 12 postfix
    Nombre del Contrasea ID de Usuarios que pertenecen al
    grupo encriptada grupo(GID) grupo

    Repositorio donde se almacenan los correos que todava no son ledos


    May 10
    -rw-rw---- 1 acollaguazo mail 0 acollaguazo
    13:31
    Permisos del Fecha de Nombre
    Enlace Propietario Grupo Tamao
    mensaje mensaje mensaje

    Los archivos de configuracin dovecot y sendmail

    Instalacin, configuracin y operacin del servidor proxy

    [root@localhost rimavig]# yum -y install squid


    Instalado:
    squid.x86_64 7:3.5.20-2.el7_3.3

    libecap.x86_64 0:1.0.0-1.el7
    perl-Compress-Raw-Bzip2.x86_64 0:2.061-3.el7
    perl-Compress-Raw-Zlib.x86_64 1:2.061-4.el7
    perl-DBI.x86_64 0:1.627-4.el7
    perl-Digest.noarch 0:1.17-245.el7
    perl-Digest-MD5.x86_64 0:2.52-3.el7
    perl-IO-Compress.noarch 0:2.061-2.el7
    perl-Net-Daemon.noarch 0:0.48-5.el7
    perl-PlRPC.noarch 0:0.2020-14.el7
    squid-migration-script.x86_64 7:3.5.20-2.el7_3.3
    Listo!

    [root@localhost rimavig]# cd /etc/squid


    [root@localhost squid]# nano squid.conf
    # Squid normally listens to port 3128
    http_port 3128 transparent
    # Example rule allowing access from your local networks.
    # Adapt to list your (internal) IP networks from where browsing
    # should be allowed
    acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
    acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
    acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
    # Example rule allowing access from your local networks.
    # Adapt localnet in the ACL section to list your (internal) IP networks
    # from where browsing should be allowed
    http_access allow localnet

    [root@localhost squid]# service squid start


    Redirecting to /bin/systemctl start squid.service
    [root@localhost squid]# service squid status
    Redirecting to /bin/systemctl status squid.service
    squid.service - Squid caching proxy
    Loaded: loaded (/usr/lib/systemd/system/squid.service; disabled; vendor preset: disabled)
    Active: active (running) since dom 2017-10-14 00:20:11 ECT; 1min 3s ago
    Process: 4199 ExecStart=/usr/sbin/squid $SQUID_OPTS -f $SQUID_CONF (code=exited,
    status=0/SUCCESS)
    Process: 4191 ExecStartPre=/usr/libexec/squid/cache_swap.sh (code=exited,
    status=0/SUCCESS)
    Main PID: 4201 (squid)
    CGroup: /system.slice/squid.service
    4201 /usr/sbin/squid -f /etc/squid/squid.conf
    4205 (squid-1) -f /etc/squid/squid.conf
    4208 (logfile-daemon) /var/log/squid/access.log
    4209 (unlinkd)

    oct 14 00:20:10 localhost.localdomain systemd[1]: Starting Squid caching prox...


    oct 14 00:20:11 localhost.localdomain cache_swap.sh[4191]: init_cache_dir /va...
    oct 14 00:20:11 localhost.localdomain squid[4199]: 2017/10/14 00:20:11| WARNI...
    oct 14 00:20:11 localhost.localdomain squid[4199]: 2017/10/14 00:20:11| WARNI...
    oct 14 00:20:11 localhost.localdomain squid[4199]: 2017/10/14 00:20:11| WARNI...
    oct 14 00:20:11 localhost.localdomain systemd[1]: Started Squid caching proxy.
    oct 14 00:20:11 localhost.localdomain squid[4201]: Squid Parent: will start 1...
    oct 14 00:20:11 localhost.localdomain squid[4201]: Squid Parent: (squid-1) pr...
    Hint: Some lines were ellipsized, use -l to show in full.

    [root@localhost squid]# squid -z


    2017/10/14 00:24:16| WARNING: (A) '192.168.1.0/24' is a subnetwork of (B)
    '192.168.0.0/16'
    2017/10/14 00:24:16| WARNING: because of this '192.168.1.0/24' is ignored to keep splay
    tree searching predictable
    2017/10/14 00:24:16| WARNING: You should probably remove '192.168.1.0/24' from the
    ACL named 'localnet'
    2017/10/14 00:24:16| Squid is already running! Process ID 4205
    [root@localhost squid]# netstat -nl
    Active Internet connections (only servers)
    Proto Recv-Q Send-Q Local Address Foreign Address State
    tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN
    tcp 0 0 192.168.122.1:53 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN
    tcp 0 0 127.0.0.1:631 0.0.0.0:* LISTEN
    tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN
    tcp6 0 0 :::111 :::* LISTEN
    tcp6 0 0 :::22 :::* LISTEN

    Conclusiones:

    El servidor de correo consta esencialmente de 2 partes una para enviar y otra para
    recibir nosotros usamos el dovecot y el sendmail
    Cuando hacemos cambios en un servidor debemos reiniciarlo para que los cambios
    surjan efecto
    El servidor proxy filtra el trafico de nuestra navegacin

    Potrebbero piacerti anche