Friday, 20 October 2023

Proxmox VE with Ceph

Administration of VMs and LXC

Launching virtual machines and LXC containers, creating machine templates, snapshots, and much more. 

Networking

Building virtual networks including VLANs, OpenvSwitch, Virtual DNS and DHCP, bonded interfaces (bonding), etc.

Backup and replication

Backing up machines using built-in functions or through the terminal, live migration to another server, snapshots, machine cloning. Also, dedicated backup system - Proxmox Backup Server.

Monitoring and Optimization

Monitoring machines including live charts of resource usage and many other interesting solutions facilitating work through Zabbix monitoring.

Automation and security

Utilizing built-in firewall and authorization tools like 2FA, hardening, OS security. Using Ansible for automating certain tasks.

 






















 

Posted by at

Friday, 3 March 2023

Web server configuration

Scope of my skills.

 

  • installation and basic configuration of the Apache2 server
  • Apache2 log files
  • methods of hosting websites: name-based virtual hosting, IP-based virtual hosting, virtual directories/aliases
  • managing modules
  • indexing and authentication configuration
  • restricting access to websites
  • using .htaccess
  • PHP configuration
  • configuring a website for encrypted access (HTTPS)
  • installation and configuration of an HTTP proxy server (Squid)
  • installation and configuration of Nginx as a web server and reverse proxy

 






















Posted by at

Tuesday, 21 February 2023

DNS server configuration

Scope of my skills.

 

  • theoretical foundations of the DNS protocol
  • client DNS configuration
  • installation and initial configuration of BIND9.x server
  • creation and maintenance of DNS zones
  • primary, secondary, and stub zones
  • forward lookup zone and reverse lookup zone (revDNS)
  • configuration of records in the zone (SOA, NS, A, AAAA, CNAME, MX, SRV, TXT, etc.)
  • forwarding and conditional forwarding service
  • verification of zone configuration correctness
  • configuration of BIND server in a Chroot environment
  • configuration of split-horizon mechanism in BIND server
  • utilization of TSIG mechanism
  • awareness of DNSsec issues, usage of DANE and TLSA records
  • awareness of dnsmasq, djbdns, and PowerDNS existence.

 











 

 


 

Posted by at
Subscribe to: Posts (Atom)