one version of the install including installing and building up from scratch is here
http://www.ubuntugeek.com/step-by-step-ubuntu-12-04-precise-lamp-server-setup.html
this uses the text install of 12.04 LTS to install Lamp and open ssh configured.
install webmin using the instructions here
http://www.ubuntugeek.com/how-to-install-webmin-on-ubuntu-12-04-precise-server.html
instructions for setting up on a 12.04 system w/o apache, php or mysql, putting up those parts after the fact is explained on this set of pages
https://library.linode.com/lamp-guides/ubuntu-12.04-precise-pangolin#sph_install-mysql
installing various goodies, such as an extension to webmin to configure security is on the calpop site
http://calpop.com/blog.php
install splunk and ConfigServerFirewall
ConfigServerFirewall:
# wget http://configserver.com/free/csf.tgz
# tar xzvf csf.tgz
# cd csf
# tar xzvf csf.tgz
# cd csf
# ./install.sh
goto
the Webmin Modules page and install a new module from a local
directory. The module will be located at /etc/csf/csfwebmin.tgz. Splunk
dpkg install splunk*.deb
Next, start Splunk:
/opt/splunk/bin/splunk start
Now, enter http://your-server:8000 (where your-server is obviously the hostname or IP address of your box), and you'll enter the web interface. You might well poke around for a bit. After you've had your fill, and converted the license to the Free Edition (see the Splunk installation documentation for instructions on how to do this, by default, it runs as a 30 day trial of the paid version), log out again.
Whether you're managing one device or 1,000, Splunk (http://www.splunk.com/) is a useful product as it allows you to aggregate and search diagnostic information from a variety of systems. At CalPOP we use it as a central syslog server, allowing us to view the logs of our several hundred Cisco and Juniper switches and other infrastructure elements in one central place, search for specific events, and build reports and dashboards to track performance. If you're operating on a small scale, you can use the Free Edition of Splunk, which allows you to index up to 500 MB of data per day. The Free Edition will likely cover you until your environment reaches enterprise-scale (think hundreds or thousands of servers), at which time Splunk will be more than happy to take your money.
The Free Edition of Splunk has one irritating drawback, however: it lacks any form of built in user account management or authentication. We will (partially) address that shortcoming in the course of this tutorial.
First, download Splunk from their website, and upload it to the home directory your server. If you're running Ubuntu, which is what we use for our infrastructure within CalPOP, you can use a .deb package. There is also an .rpm for distros like CentOS and Fedora, and a tarball for everyone else. Once you've uploaded it, if you're on Ubuntu (and presumably Debian, although I've yet to try it on that much-venerated distribution), run this command:
No comments:
Post a Comment