Openldap and Multi-Master Replication in FreeBSD – Part I: OpenLDAP

Installing and configuring OpenLDAP:

Part I of this series on OpenLPAD concentrates on configuring a simple OpenLDAP Server. Our goal in adopting OpenLDAP is to provide an authentication mechanism for our LAN Clients, in particular Macintosh OSX Clients, to login to the network and work with data on network shares. Additionally, the installation of OpenLDAP will include the new backend database lmdb – OpenLDAP’s own Lighting Memory-Mapped Database to store Openldap objects. Continue reading “Openldap and Multi-Master Replication in FreeBSD – Part I: OpenLDAP”

Unbound Caching and NSD Local Authoritative Master Slave DNS Server – Part II

NSD – Authoritative DNS Server:

In Part I of our tutorial, Unbound is used as a caching DNS Server for clients on our LAN. If any local DNS resolution is needed, Unbound is configured via it’s stub-zone to parse the query to an authoritative DNS Server, and in this case, it is NSD. Continue reading “Unbound Caching and NSD Local Authoritative Master Slave DNS Server – Part II”

Unbound Caching and NSD Local Authoritative Master Slave DNS Server – Part I

Unbound: Caching DNS Resolver

When FreeBSD 10 removed Bind from the base, a certain level of uneasiness and relief was felt in the FreeBSD Community. Always fond of Bind, it was time to move on to an alternate without all the complexity, security issues, licensing and feature bloat of Bind. For these and other reasons, Unbound was chosen as a caching DNS server and NSD for an authoritative DNS Server for local zones. Additionally, redundancy is required since this is a production environment which requires uninterruptible DNS resolution. Our environment will consist of two physical servers both configured as follows: Continue reading “Unbound Caching and NSD Local Authoritative Master Slave DNS Server – Part I”

Finding the right time with Openntpd

OpenNTPd:

In the past, the built-in ntpd server in Freebsd served me well. Since ntpd binds to all addresses on port 123, ntpd complained incessantly in jailed environments because jails expect to have exclusive access to the jail address. Although it did not cause my server or jails to crash, it’s always better to be safe than sorry and fix the problem now rather than wait for a problem to manifest itself.

In search for a solution, openntpd can be utilized without binding to any address or addresses. This makes it attractive for jailed environments. Continue reading “Finding the right time with Openntpd”

Tmux – the Terminalator

Tmux:

How many times have you ssh into your server, only to have your connection interrupted and your terminal session abruptly closed? This can be problematic especially if processes are running in the background or you are compiling large programs with many dependencies. The solution – use tmux, the terminal multiplexer. Continue reading “Tmux – the Terminalator”

Panic Mail

Panic mail is a great utility to capture kernel panics and report them to the FreeBSD developer community. Although I rarely receive a kernel panic running standard release installations of FreeBSD, it is installed on all my production servers. We owe many thanks to Colin Percival for this utility. Continue reading “Panic Mail”

Ever found yourself making mistakes/changes in rc.conf or other configuration files then only to find the server boots up and the file system is read-only with the following message: Continue reading “I rebooted and now the file system is read-only, now what?”

To src or not to src, docs and ports are the question!

Just as in Shakespeare’s Hamlet, “To be or not to be, that is the question – Whether ’tis Nobler in the mind to suffer“, do you suffer whether or not to include src, docs, and ports when performing a fresh install of FreeBSD 10? Continue reading “To src or not to src, docs and ports are the question!”

Category: FreeBSD