Tag: rhce

  • rhce

    Red Hat Certified Engineer Exam Questions

    Before starting exam

    #iptables -L
#iptables -F
#service iptables save
#service iptables restart
#chkconfig iptables on

    1. Enable selinux as enforcing

    # setup
firewall configuration - disabled
# getenforce
# lokkit --selinux=enforcing
init6
# cat /etc/sysconfig/system-config-firewall
# cat /etc/stsconfig/selinux

    2. Enable IP forwarding on your virtual machine

    Step-01:

Enable IP Forwarding permanently in your machine.
vi /etc/sysctl.conf            (sysctl configure parameters at run level)
change line number 7
net.ipv4.ip_forward=1
:wq

Step-02:

sysctl -p

    3. Configure FTP access on your system.

    clients with in domain70.example.com should have anonymous FTP access to your machine.
    clients outside domain70.example.com should Not have access to your FTP service.

    
Step-01:

#yum install vsftpd*
#service vsftpd restart
#yum install ftp

Step-02:

#ftp 
user:annonymous
password: enter

Step-03:

#vi /etc/hosts.deny
vsftpd: ALL EXCEPT IP/mask
:wq!

Step-04:

#service vsftpd restart
#chkconfig vsftpd on

If login problem

remove anonymous user from below files

#vi /etc/vsftpd/vsftpd.conf
#vi /etc/vsftpd/ftpusers
#vi /etc/vsftpd/user_list

    4. Set cron service such that it can’t be accessable by mike

    Step-01:

#vi /etc/cron.deny
mike
:wq

Step-02:

#service crond restart
#chkconfig crond on
(to check - # grep mike /etc/passwd)

    5. Configure ssh as follows

    natasha has remote access to your machine from with in domain70.example.com.
    client within my133t.org should not have access to ssh on your system

    
Step-01:

#vi /etc/hosts.allow
sshd: 172.24.70.0/255.255.255.0
:wq
Step-02:

#vi /etc/hosts.deny
sshd:172.24.70.0/255.255.0.0
:wq!

Step-03:

#service sshd restart
#chkconfig sshd on
#service iptables restart
#chkconfig iptables on

    6. Export your /archive directory via NFS to the example.com domain only.

    or

    Export Your /common directory via NFS to the domain70.example.com domain only. (linux to linux directory sharing)

    Step-01:

#vi /etc/exports
/common 172.24.70.0/255.255.255.0(rw,sync)
:wq

Step-02:

#service nfs restart
#exportfs
#chkconfig nfs on

    7.Share the /common directory via SMB
    Your SMB server must be a member of STAFF workgroup
    the share’s name must common
    The common share must be available to domain70.example.com clients only.
    The common share must be browseable
    natasha must have read access to the share authenticity with the password porstroll if necessary.

    
Step-01:

#yum install samba*

Step-02:

#vim /etc/samba/smb.conf
Go to 74th line
Workgroup=STAFF
Shift+G
copy last 7 lines using 7yy and p command
Remove ; from all lines and edit like

[common]  ( sharename
comment=public_staff
path=common         (path=
valid users=natasha ( add this line)
public=yes
browseable=yes 
Writable=no ( yes change to no)
Printable=no
:wq

Step-03:

#service smb restart

Step-04:

#smbpasswd -a natasha
New smbpassword:postroll

Step-05:

#vim /etc/hosts.deny
smb: ALL EXCEPT IP/netmask 
:wq!

Step-06:

#chcon -t samba_share_t /common        (/common or share directory)
#ls -dZ /common

Step-07:

#service smb restart
#chkconfig smb on

Step-08:

#smbclient //ip/common -U natasha  (#smbclient //ip/ -U natasha

    * [[samba]]

    8 Implement a web server for the site http://serverx.example.com/ then perform the following steps:
    Download ftp://nstructor.example.com/pub/rhce/station.html
    Rename the download file to index.html
    Copy this index.html to Document root of your web server
    Do Not Make any modifications to the content of index.html

    
Step-01:

#yum install httpd
#service httpd restart

Step-02
:
#cd /var/www/html
#wget ftp://instructor.example.com/pub/rhce/station.html
mv station.html index.html

Step-03:

#vi /etc/httpd/conf/httpd.conf
:set nu
990
remove * and add IP
Virtual host: ip:80
(ifconfig and take ip)
1003 rd line
copy 7 line 7 yy
remove # from all line

document root  /var/www/html
server name serverx.example.com

:wq

Step-04:
#service httpd restart
#chkconfig httpd on

    9. Extend the web server include
    site http://wwwwX.example.com
    Document root /var/www/virtual
    Download ftp://instructor.example.com/pub/rhce/www.html and rename to index.html
    ensure natasha is able to create content in /var/www/virtual provided by server1.domain70.example.com

    Step-01:

#service httpd start

Step-02:

#cd /var/www/
#mkdir virtual
#cd virtual
#wget ftp......
#mv www.html index.html

Step-03:

#vi /etc/httpd/conf/httpd.conf
:set nu 1003
copy 7yy and P

remove # from all line

:80>
Document root /var/www/virtual
Servername wwwwX.example.com
:wq!

Step-04:

#service httpd restart
#chkconfig httpd on

Step-05:

#setfacl -m u:natasha:rwx /var/www/virtual

    10. Create a directory limited on your document root
    download ftp://instructor.example.com/pub/rhce/station.html
    rename the downloaded file to index.html
    copy this index.html file the limited directry
    Make it such that the content of limit can be accessable to the local users only.

    
Step-01:

#cd /var/www/html
#mkdir /limited
#cd limited

Step-02:

#wget ftp://instructor.example.com/pub/rhce/station.html
#mv station.html index.html

Step-03:

#vi /etc/httpd/conf/httpd.conf
1003rd line before closing  type the following

Step-04:


allow,deny
Allow from IP

:wq!

Step-05:

#service httpd restart
#chkconfig httpd on

    11. Export your /archive directory via NFS to the example.com domain only.

    Export Your /common directory via NFS to the domain70.example.com domain only.
    (linux to linux directory sharing)

    Step-01:

#vi /etc/exports
#/common 172.24.70.0/255.255.255.0(rw,sync)
:wq

Step-02:

#service nfs restart
#exportfs
#chkconfig nfs on

    12. configure SMTP mail service according to the following requirements

    Your mail server should accept mail from remote hosts mail delivered paula should spool into default mail spool for paula, /var/spool/paula

    Step-01:
#Yum install postfix*
#chkconfig postfix on
#service postfix restart

Step-02:

#vi /etc/postfix/main.cf
#remove # from 113 th line
#place # on the 116th line

Step-03:

#service postfix restart

    13. Configure an email alias for your MTA such that mail set to admin is received by the local user harry

    Step-01:

#vi /etc/aliases
admin:harry
:wq

Step-02:

#newaliases

    14.Using iscsi, discover and mount a device shared by host.domain70.example.com
    create an iscsi storage device of 1100 MB size
    Download ftp://server1.domain70.example.com/pub/iscsi.txt
    and copy it to the iscsi device
    Mount the device permanently under /mnt/data as ext4 file system

    Step-01:

#iscsiadm -m discovery -t st -p hostname
copy the iqn number line
#iscsiadm -m node  -p hostname
#iscsiadm -m node  -p hostname -l
(if -p error - try with -P)

Step-02:

#fdisk -l
n
p
default
default +1100M
p
w

Step-03:

#partprobe -s /dev/sda                (higher size than  provided, then only we can create partition)

Step-04:

#mkfs.ext4 /dev/sda1
#mkdir /mnt/data

Step-05:

For Permanently Mount:

#vi /etc/fstab
/dev/sda1 /mnt/data ext4 default 0 0
:wq!
#mount -a

Step-06:

#cd /mnt/data
#wget ftp://server1.domain70.example.com/pub/iscsi.txt

    15. Configure kernel such that kernstack value is 1 . kernel line should display the edited string in /proc/cmdline

    Step-01:

#vi /etc/grub.conf
go to the end of kernel line ,after word quiet, put a space and type kernstack=1
:wq!

Step-02:

reboot
#cat /proc/cmdline

    16. Write a script /root/bar.sh such that when we execute /root/bar.sh python it displays perl and when we execute /root/bar.sh perl displays python.
    And when we type some other charactoer, /root/bar.sh Perl/Python is directed to stdeer

    #vi /root/bar.sh

if [ "$a == "Python" ]
then
echo "Perl"
elif [ "$a == "Perl" ]
then
echo "Python'
else
echo "/root/bar.sh /Python/Perl" >> stdeer
if
:wq!
/root/bar.sh
Perl

chmod 755 /root/bar.sh
# /root/bar.sh
dgfdg
#vi /stdeer
Python/Perl