Linux & Open Source - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Linux & Open Source


Red Hat Enterprise Linux 5: Some Assembly Required



 By: Jason Brooks
2007-04-09
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Linux & Open Source story.


  Table of Contents:
  1. Red Hat Enterprise Linux 5: Some Assembly Required
  2. ' Configuration Consternation '

Rate This Article:
Poor Best
Red Hat Enterprise Linux 5: Some Assembly Required - ' Configuration Consternation '
( Page 2 of 2 )

We would have liked, at least, to be able to take control of a remote RHEL 5 Xen host. Wed initially configured our Xen host server to be headless, with the intention of controlling it from a separate RHEL 5 installation, but we ended up installing a GUI on that machine to test the client.

Once we were past the connection screen, we could view information on running guest instances, as well as create new instances.

For paravirtualized gueststhe only sort of guest you may install on older hardware that lacks AMDs or Intels virtualization extensionswe had to point the management client at an FTP, HTTP or NFS (Network File System) share into which wed dumped all the files from RHEL 5s six installation CDs. Novells SLES 10 offers a utility that automates creating install sources, and wed have liked to see a similar time-saving utility in RHEL 5.

For fully virtualized guests, we could link our new guest instance to a CD image and install from there, which we found easier. We ran into a snag, however, as wed created our paravirtualized guest install source in the same directory where we were storing our installation images. Exploded install source and disk images must be in separate folders for those images to be accessible during installation.

Along with the install source, we could specify a kickstart configuration filekickstart is Red Hats scripted installation facility.

Resource Library:

After configuring our install source, the client asked us to assign our guest instance some storage, either an existing physical partition or an image file. The client didnt offer us any suggestions on where to store our image file, but the location does matter, as we learned when we booted up our instance.

RHEL 5s SELinux (Security Enhanced Linux) policy expects images to live in /var/lib/xen/images, and images stored elsewheresuch as oursrequire relabeling to avoid SELinux errors.

While this was a good opportunity to see RHEL 5s new SELinux Troubleshooter in action, it would have been helpful if RHELs virtualization manager had given us a heads up about this earlier. After configuring storage, the client asked us to set the startup and maximum memory allocations for our new instance and to configure the number of virtual CPUs to expose to our guest instance.

The client didnt offer us much in the way of network configuration optionsour instances defaulted to a single NIC in a bridged networking configuration. Other configurations meant hitting the command line, and the documentation, to sort things out.

We installed a fully virtualized instance of Microsofts Windows Server 2003 and at first could not boot beyond the initial blue installer screen. A bit of Web searching revealed that, when the Windows installer first loads, we had to hit the F5 key and select the Standard PC Hardware Abstraction Layer.

After that, the process proceeded normally for a while, but we werent out of the woods yet. When the Windows installer rebooted itselfa normal part of installationour instance didnt restart to continue the process.

Whats more, our half-installed Windows instance wasnt listed in RHEL 5s virtualization manager. We turned to RHEL 5s command-line virtualization control tool, virsh, and directed our machine to start our Windows instance. The instance started up, and we connected to it via VNC (virtual network computer) remote control software thats rolled into most Xen implementations.

Click here to read more about Red Hat Enterprise Linux 5.

We werent back in business yet, though, because the graphical client appeared to have assigned the Windows installation disk to our instance only temporarilywe had to edit its configuration file to reassign the Windows disk and then restart our instance to finish the process.

Lockdown capabilities

One of RHEL 5s most distinctive features is its support for SELinux, which bolsters the security of the Linux machines on which its deployed by meting out to applications and users only those rights explicitly granted by policy.

RHEL 5s default SELinux policy covers a limited set of system services, and we could enable or disable specific protections through RHELs security-level configuration tool, as well as step up to a separate, strict policy that covers everything on the system. New in RHEL 5 is an additional SELinux policy for implementing MLS (Multi-Level Security), which we did not test.

We did have a chance to use RHEL 5s handy troubleshooting tool for SELinux, which prompted us from the notification area in our system tray when an application we ran triggered an SELinux denial. This is how we straightened out the issues we encountered with appropriate storage locations for our Xen instances.

Advanced Technologies Analyst Jason Brooks can be reached at jason_brooks@ziffdavis.com.

Check out eWEEK.coms for the latest open-source news, reviews and analysis.





  Reader Comments: Red Hat Enterprise Linux 5: Some Assembly Required
>>> Be the FIRST to comment on this article!
 


 
 
>>> More Linux & Open Source Articles          >>> More By Jason Brooks
 


x}r㶲s\@♵M=ҔlcؖgRJEĘ"Hʗ䬟/Oo<xӅ|LIlݍFw?H9sur&56%3E]"I{#Hp,IfA)v@=4wݶ&N`P'~6 \L|N 2wx@vDZʒ)&ӰY |+[3}BF\3b ^Qk$ЁuK͂%}xv)t}(DIږy@6GǮJ;QL|r Q}RV2XVDP~DMǎ-~rFwNyPk`TxOFkNmWȓA 5i!l 1!osݿ!HݤNoޤ@d jlId:v`YTi 1܉\Ї;@ڮSVPj̲9o tG oc}uק&[! .$f >6?& QI'6qVR=/5<mP=N 扯 ~f[PePp9L+pzҐ{${Gϗ2 ó)H|]:1tp~F X(-t[;RH3}yp%#, G)L,Y`U`ImdƱ(|ǚrNgޜjuT7ohH2 f4 mp  a4[RFp \ Q#|`Ual&XJp?єyf4"=hi,A]d}N}W%M 1F|r+̤ `Q%-> ' 8S$Ju}3p@WmCrNVڒ1Sb}qO .Cu&N{sL~;~C8%gk, ]ezbc\7WZGT g~PJCU~X8ʕ85n!SGñA &s;,w~Ά(mNQ'}59'5b}4>'AGAtišwNP7hCҋL ~N;ݧHo]=&uno/JAbG@& chh5 ZTH"AЂN4T8nM`2Z9ܹ L& ZAV4c` VGPC!]7$>($@+>= t~[>lPszQN\Qo@Ǣ dSJJd$D!"5i]NP@Br: -4rrd+3~Cy##!bRNk '9Rt{B#̝CRQMfJ9b -xkbd6gF2KLYG0V-&D7rbL/GE7Mᙚ&Z1oY.+֨逦 2,X<`}=3ܲM҆%LlQ1Ԑ(~`9O|sy?&TĿ;nX$}׾ fV̚sN)A\^PL[n<̙qjS_a"tLeB#`:N{S~`=϶Y$tuK\u`漃d:Nk'hm7?>{@O,\nGhIO3_hy>epGҶ-o + hB=WsFAryͪX 49|ƓB73cfSVʜtUU&FniJ ~ jz%JwCݼ~hé;{q%%Aw-SMs\'~r-D֒e]Gy_Fo6ʞy4 uVJ{g@y# lK kZԕ>%/մE$$"Yu`m.EOb ҉0Z4:pȾZcAQ jrI) KJ0$VhVK&fMaK t@ r;4 pp2wbbˡBV3N`N#~6tN{zl2>v h*Gt 7u JmX,,qThj]Mmbf0 0q 0d}I:pJ]aY:- 'aOhK3WkZ"AdX(%UMpl"zd\8˰D\}cOas<yhR+r!স 'ֈiHU 1/]g CĕQa<~lN`n+ne!80# 5K=>>ĦTQ߀*7" Qڄu&r0T:㽭 cA;E . Zs g(DrIa TWk\`и٩7M&Tt a?"%1фڧ>ns3b*/7+ )\|;Ogz^*k :ѡUUR;(Z 8;*3Aq̛( Ktr@g}as`ћzř1ftYi 57A}f;݂/\r?0:?>b + '2FO%pa_Q>]Hk0 3de`Uyt$ dYo !h¹`Yԇ!.>Ծ)X-0`7ysڻm?Q\_9ͨ14V\8./-H)X l7fF^@4U֨T~iϻMߜ%mpH1)dR@F4D]v4qq r?z^?f,~PZ_6guśf^2U{YoƱ) c 5ˣe+ B+bIY^'nrX<,hse%s@J>Z^5-P[jZ2mMQ:LMuzw]մJ/( R*?.}x6Œ3(K?0MgL:賻_oT0ͮ2 \F+c !nxǿXuLzWASB912W͝⠑3"vuXcGyn`rO$М Oj*`eE#uya39nؠGuHR1Џ`;n=?l#x\Zu1#i}KU!ӔReΔ7)6괸CiC+Z2|}6e  8x @Yʊnw` xV֪y@3?B:%Vrz z,ћI1pU Nuw H侧j2:n3TʵRM()1C4rh2k., 71טs9t iz(rMd%3E쎸8DX<ybS葧{lK[ u־X8n'ZImGyc.mj&2~P+a gMٸUP%Ӵ%I? O} *Q-ˤӧO׺!oy!3.!7Wc usćMR#Zִ2Hw ضVU '̄B-ӄ>⺆br~VSXK@rvzJt22@BZFbNx| S n&c M T9 "_IC~Ui% e&AJ*˸6şc1ˏ{{=H _BP` &Ѧ0pmOOt@1E?^<Kfۤi.3>+Ey{<8'%m՞.I{y0cѱ^;.y01N > ?~KKxfqhïR>XXꞷ?thCl4Pj2a'A*$hd]1uܦ銗auN嵀޹s޾н/vzW49^ttxޥ(`FA;>~gq>*Ӿ=m48L6Mst{6V5C2 xΰ;`/'^ptm՘ n qdQ5hOٞ;+ ٿ Bb-.31ߐLV (ʁ-``VɈn9>czVB 0BƯE,e$Ke=2M|;ڜ(6F_ٿy{~YVST t6~OK0fAb+F+=ǭՓHlINn*|>p_mZ|=wRvG P2)Z!I[Ͱ< ݖ2q 9 2)Mz.+|Lik'iZVӼ6X(4%4TҎŒOCYF*d7' ҿl_lpPpoS6 P{a뺱y|Rp`;2à{>&AB|HynÌ#:*VZZFZv*'?hb& x`ċ(>9-b}~Rm4j+ttY؍NjFڰqE2UdpsX6 }am0G>i+W7gGԧd~s$CJ֋x>eb{fVH.Bxhnk㬈N]20- akE]݃ .b wt]\&\ uZn В`Q'Cr$܄e^0QJPi뉲WMBäU &8A.k95YpQ Cȧ4p'@NZ~JsD{%<7A$L")2kk )ھVWC46KI@:c_zM)R?el<:Nn 5jR#C'n@mlB=Vom}+JJe9j 5aFf* qoyx :P/L0TiMz6ȴ%TR7RJoڮ{#1:zJ1FKm_hbiKŔIף^oMR6R *WԦ)Rޅ$*CX|dϨZȯ׎Y$Θcz)V<ݸ߬߬߬߬㭲ZўoMgWKPWR?^ u 0_Q ޿O⼄%ݐ|>+Y5=:37&u'hZjRRk׿ kjҵ>gVTT@ѐM{h o&`jfXVGIqfR=<_{V̽K楲`n,[^/X|c6`T6 d%hh֢ F gՒF(Ǧp4cqX2􁔹o܍ݤ*X*1'%=5.Fn έkoHjS/X{]ڋKۨ]xЧ%Ac d?_Nܓَatb%6Y.#;'g(Gd !4~LMݍo5n[*si M[O?ƞT7>ků œ:hV_?=XN7 d!;OoI'R^0`~PAfXtvD)L#S{T[Y3T0k`꤭ 7v6JʫuL]PMQhcJ;*b5p|] jqd<8߈'ɤQ?(q +Zg[W@9}\n_v?-bUňk)G>ş{𦧚Z/Gq  ^b,]L5,X9:È>+v2C[ яTmS_,C7\5sîK(aVVUĠdFiAh!Fv;Kb+VQ;F$ch+rj9&EV2j=="¿ R$R+pWCAE&Lj>}A%fןRףQ}Ό"F$xr"*]sNjJC]͹N?P. ]Z˽XjuV%d{VH=ܚ&OE($+3H>PS^}MgUH*4$x8K1 =HsrWS#z^EGLϫ&dďr="v c`.*.қQ㉡37:US Ñ;77ƔNF]T؀SzXf 07wdvA&Ь~6ӿ4,L <B΀TaUw}jh "`6ijUwZhE=4g!C@ZהV/eVnhk o;&|z`ł"^l;Rʥz5m.֠; tDLdO}K[RJP`o27.$ r|jI_o6zf%A=}X@ @ 0s{EMF^[5XlDe10ډ]w&ݭT2ݽ,Hxϕ::h~1~b:F碷GA +KN,4.^ayo+ZK8+. bO)Xp,h Qqb7b~mWгj#d#jϊ;btf W17ZvN[#{1w[F|1Eo3PIH+PSKC7<6K$Adȇ5T?Oe~f#nZ]}{GКZGwOt(J wsݲYD!;]:oɀ^P>EN :ћWZ-]1Gw_ 6aVfGZq)G(>=Infi4F&3?abgLN!s_ _ݰ,VI myd72[ $}ZĮ,H1'?a@\:A窏i嵅DGWAۑ?%MG owjL!/@vq^ sa<\tqH];@~?Mᇸ:LXP4pB7FsE_i(% L^䐟ÈGs[=XEDϴ c 41GH[1~gMN:s XҚ:e kE$7׷HJ 1-9cH'<͈))#oɘVG>Xj֏X {3sاX,/}! dC#rx4Q:&.H o$H)iPhP؞S?OM)Qs3apnc .h`̃2Eܹezw?Gyan2?yM:50G3+f)u9r:jeO gH=j2]ں9Pq.3$LjGg+cBG4_ DPiȈ@`!$Bc|EWo֔J%R ~*%>gޕa)jVR! /? ( ;Ule"ݜ -Mɕ@*ZA͂Șq[ZGT€X\SݹXh//>BtHa{9.awǦmZ϶Gݪ9G'݋UbPh?5s9?O?ZB{3݋th7? 9!3fyCs~s{99<@9yyCȣ9rO!4'sH?I ȟ^|ȗK9寀~r7ȡ/@_sK}'ߧ]Cu^:u^C9_]_zy9|־ą메aNz:̡JE^S^:,.Nr#Ϫ [z22RϜW~>'{'sg#Q8]a\銳-5nkǤZt yԾW( V`ʼ5(^xPHYE"chd4o$.2d*}d:-WWvl+eX.*ܢm:qKXE9 8{c_%ӚXn3/r<D$4k[cHO}ʂ\ZK[<8 gv(d{zU4sn ] x[K( %>  CG09nsKkz>s%bxvY늮̌j7m(9q}2Sop١Oh] O +WYn- aP8 }U?f6gB *H}6l谏|,'[*{f`ͼT@N$pF;RK$C^̓{O1lEL=#jpO_BGm`'ߙ?#MR#ZִZjVU 'Wd6##)t>eDdU:.UF\,Ig /($@%X̷7x#xC7":aTqp+]E!%\B'{)bXҼx7lPyN Nx@?o q7Xpi, v2'K]s=su+3!U{o!TP e{g(h'vQ0FqZ<6T?9B'&ɉz-YB7sb#~YyǾaE0Hs`B+S|p$c2 ?rW`̇`Ƹ IrJxLˆk0̆I+ېbi)"t bHӳVmbm@UMݎ:3W//U`m_2,8 tfL~nΩ%x^;mP\g3}$ul70-d}(.I5sEEבE$*J ˵ L:ɄdX.N'ס)a4,^2PzSA۽ċ798*e!نqd{BQ}# 1Jϑt$EnVi~jF߮eh#W B㑸xD Y8R"?t^Ka2}ahsmqSunT8<}">l%E '_!4qObx`#YߙQ DO"nty:=|^ZzQؖ;@2aҧQg,Yů?"& X) sŧlnmW|B{,Kl`A@fwYS&Iw cR1?j;;1Te-s0ŴBShJ ,(O?'knGLk,>iЄ.Yp멎m(ghU|A>1Y<#[Z"+*>2 d|_OExƪ~Qxh}GжU7bu(IU`CQ?hFq: I 9:%-zv0u=ĦrR4kepwRc K;93_;OQ w.91-"yx ?[<-v; # +_4sE>v/-(,J~Q.5 7tle @J >m73T| <%` GYU`Kv#q삢UnDmЌ5aO01ngFbk:2fχŀn{L1Yf#9uVRɴ{e ePCdk5\K Eq sXüȖWWRֱ!;կD;8-A cĬ ;acXJX0!Ƨ ?OЧU|-\la}[xtmx0'¿rz,ɀѨ %תr&qxyeb x ؚտHQ#FI!A CWq_ @{kŵ6 ƅW52Y{ ;߂ j} X *Z# *F" ZL+bB؉ZsR!-#39=Ih>d3#7DjF7Br dZLօt&vk)O}7~1 <99.s@OI›}XN1}a`tL2<'\Bѯ, !6ĊKNš,?|Ykh ? Ib ϻgK%D}Sw= ɳAR'cJJTqO|~8H>od O=lX2K5 wuɂ`RXqC:#ӳo 6N|>Goy6=xWy *F {˳̦UZ$4/)zҢpL\岖4r};7r^4†uJHU&s.c UԗW\a)MC39/;?VMظM.2a-d