Lotus what? Nah mate, the world has moved on.

Thursday, 29 April 2010

Reinstalling Lotus Foundations 1.2 - customizing before installing Domino - Local Network

There are a few things to do before installing Domino. Once Domino is installed you can no longer alter the host name or domain name amongst others. It is preferable to customise everything before you install the applications. 



















  1. Hostname:
    This option specifies the network name of your server. The first time the server starts, it automatically chooses a hostname for itself.
    You can change it if you like. If you set this to be blank, another hostname will be automatically chosen.Note: If this server is also set to be a Windows File Server, the local hostname cannot be the same as the workgroup/domain 
  2. Internet domain:
    Display the system status page for non-admin users:
    This option determines whether or not non-admin users will be able to see the System Status page. If enabled, regular users will have the System Status link in the menu to the left when they log on to Web Configuration. It is enabled by default. 
  3. LDAP directory server:
    This option enables an LDAP server, which is an address book. If enabled, an LDAP database is automatically created with information on each user known to the server. To query the database, set up your email program to use LDAP, with a base query of: ou=users,dc=foundations,dc=my,dc=ibm,dc=com 
  4. Rsync Server:
    Rsync is the Remote Synchronization file transfer server. Rsync is faster than other file transfer methods because if there is an old version of the file on the remote machine, only the changed portions are transferred, rather than the entire new version of the file.
    Choices are:
    Enable -- Allow RSync connections from anywhere.
    Only Trusted Hosts -- Allow rsync connections only from the local network and not from the Internet.
    Disable -- Disable the RSync server.
     
  5. Act as Public DNS Server:
    This server always runs a Domain Name Server (DNS) for your local network. If you want, it can also run a DNS server outside the firewall, for the rest of the Internet to use. It lists hostnames for any services you have enabled (Web Server, FTP, SMTP, and so forth), as well as any extra hostnames you define in the DNS configuration section.
    If your Internet connection is on a dynamic IP address, obtained through either DHCP, or PPP over Ethernet, you can choose "Dynamic" instead of "Yes". You will also then need to change the DNS servers for your domain registration to dyndns1.ivivanet.com, dyndns2.ivivanet.com, and dyndns3.ivivanet.com.
    With Dynamic DNS, this server sends its DNS information to these servers automatically, so that when your IP address changes, the rest of the world still has a way to access your DNS settings.
  6. Run DHCP Server on:
    This server can act as a Dynamic Host Control Protocol (DHCP) server for your local network. The first time you turned on your server, it checked to see if you already had a DHCP server on a different machine on your network. If there was none, it should have started its own DHCP server by itself. You can enable or disable this server's DHCP server with this option.

    DHCP assigns IP addresses to computers that request them. It is the easiest way to configure a workstation to use the network properly.

    DHCP reservations can be setup to assign a static IP address to a system or to limit the range of addresses handed out on an interface. This feature is accessed through the options link.

    Note: If you have computers that have already been assigned IP addresses manually, this server's DHCP server will not cause a conflict by assigning these addresses to other computers.
  7. NIS Server:
    NIS is the Network Information Server. It can be used to share usernames and groups across a network to simplify user access. This server uses your regular Internet domain as the NIS domain. 
  8. Restrict outgoing connections:
    As part of this server's ICSA certification, this server can restrict outgoing connections to a few protocols. Enabling this option restricts all outgoing traffic to FTP, telnet, SMTP, DNS, HTTP, POP-3, IMAP, and HTTPS. All other traffic will be blocked. 
  9. NTP Server:
    NTP is the Network Time Protocol. It can be used to automatically synchronize the real time clock of the workstations on your network to match that of your server.













Add Static DHCP Lease
  1. MAC Address:
    The static lease is assigned to a MAC address. Enter the MAC address of the device in this section.
    For Windows XP users go to the DOS prompt and type ipconfig/all. The physical address section shows the MAC address.
    Format the MAC address with a colon (:) inserted between every two characters (e.g. 00:11:22:33:44:55).
  2. IP Address:
    Enter the IP address to be statically assigned for your device. This address must be in the same subnet as the interface to which this assignment is being applied.
Add DHCP Address Range
  1. Starting IP Address:
    Enter the IP address for the start of the range. This IP address must be in the same subnet as the interface to which this range is being applied. 
  2. Ending IP Address
Advanced DHCP Settings

DHCP Settings for VOIP Devices
  1. BOOTP Server:
    This option allows you to configure DHCP for the BOOTP server. The acceptable formats are:
    user:password@FQDN:port (example: jsmith:1234@bootserver.example.com:1200
    FQDN (example: bootserver.example.com)
    For the FQDN (fully qualified domain name), you can use either a host name or an IP address.
  2. BOOTP Protocol:
    TFTP, FTP, HTTP 
  3. FTP Server:
    This option allows you to specify the FTP server address that is advertised and used by the VoIP phone. 
  4. Language:
    English (UK) (US), German, Dutch, French, Spanish (Spain) (Castilian) 
  5. Country: 
  6. SIP Servers:
    This option allows you to specify one or more SIP server names to be used by the VoIP phone. Server names must be separated by a single space or comma.
Vendor Specific DHCP Options
  1. Vendor id:
    This allows you to specify a vendor ID string that is passed to the DHCP server by the VoIP phone. The server can support more than one vendor ID
  2. Option Number:
    This allows you to specify the option number of a vendor-specific option that will be passed to the VoIP phone in DHCP option 43. There can be more than one such option. 
  3. Value:
    This allows you to specify the value of the vendor-specific option specified in the Option Number.




























Advanced Setup

Network Devices Edit
  1. Trust computers on this network (pass them through the firewall):
    If a device is trusted, network traffic can pass directly through the firewall. If a device is not trusted (your external gateway, for instance, is one you should never trust), then traffic addressed to the device is subjected to firewall rules. In general, you usually want your internal network to be trusted and your external network not to be. 
  2. Choose address automatically:
    If this is enabled, this server will change its IP address on this device, if the need arises. It will query other DHCP servers, for instance, or relinquish its address if it sees another machine using it. If this is disabled, the address you set will always be used, and this server will not be allowed to change it on its own. 
  3. DHCP Client ID (optional):
    Some Internet Service Providers require you to obtain an IP address using DHCP, but they only work if you specify a unique identification code. If they have given you such a code, enter it here. Otherwise, it is OK to leave this field blank. 
  4. Use default gateway on this link:
    If this is set to "Yes", this server will create a default route to the network through this interface at the highest priority level, so this link will be used by default for incoming and outgoing traffic.

    If this is set to "Only as last resort", this server will create a default route to the network through this interface with a lower priority level, so it will be used only if your higher-priority ("Yes") links stop working.
Network Routes 

Route 1 Edit - Modify Route Panel
  1. Destination:
    What will this route be routing to? The answer should be a network IP address, followed by a / (slash), and the number of 1 bits in the netmask.
    For example, to add a route to the 111.222.121.0 subnet, with a netmask 255.255.255.0, the destination would be: 111.222.121.0/24
    The default route is 0.0.0.0/0
  2. Interface: 
  3. Gateway
    In some cases, specifying an interface is not enough. If the destination can only be reached if all traffic is sent through a particular address on the given device, that address must be specified here as the route's gateway.

One of the interesting options is to activate automatic route config:

Manual override: automatic route configuration is disabled. Click below to have your server set up routes automatically.

Switching the routing table to automatic mode. (All manual changes have been discarded.)

Setting the default route will revert back to manual routing.
This is just a subset if what is available on Lotus Foundations. The interface is designed to keep things simple but if you know how you could go much deeper and make changes.

Some command line magic.


prime:~# route -n
Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.1.38    0.0.0.0         255.255.255.255 UH    0      0        0 tap0
192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 eth0
9.127.122.0     0.0.0.0         255.255.255.0   U     15     0        0 eth0
127.0.0.0       0.0.0.0         255.0.0.0       U     0      0        0 lo
prime:~#

prime:~# netstat -rn
Kernel IP routing table
Destination     Gateway         Genmask         Flags   MSS Window  irtt Iface
192.168.1.38    0.0.0.0         255.255.255.255 UH        0 0          0 tap0
192.168.1.0     0.0.0.0         255.255.255.0   U         0 0          0 eth0
9.127.122.0     0.0.0.0         255.255.255.0   U         0 0          0 eth0
127.0.0.0       0.0.0.0         255.0.0.0       U         0 0          0 lo
prime:~# 

Use this command to show the IP-Advancer routing
prime:~# ip route list table all 
default via 192.168.1.1 dev eth0  table 40  metric 15 
default via 192.168.1.1 dev eth0  table default  metric 15 
192.168.1.38 dev tap0 
192.168.1.0/24 dev eth0  proto kernel  scope link  src 192.168.1.38 
9.127.122.0/24 dev eth0  metric 15 
127.0.0.0/8 dev lo 
broadcast 192.168.1.0 dev eth0  table local  proto kernel  scope link  src 192.168.1.38 
broadcast 127.255.255.255 dev lo  table local  proto kernel  scope link  src 127.0.0.1 
local 192.168.1.38 dev eth0  table local  proto kernel  scope host  src 192.168.1.38 
local 192.168.1.38 dev tap0  table local  proto kernel  scope host  src 192.168.1.38 
broadcast 192.168.1.38 dev tap0  table local  proto kernel  scope link  src 192.168.1.38 
broadcast 192.168.1.255 dev eth0  table local  proto kernel  scope link  src 192.168.1.38 
broadcast 127.0.0.0 dev lo  table local  proto kernel  scope link  src 127.0.0.1 
local 127.0.0.1 dev lo  table local  proto kernel  scope host  src 127.0.0.1 
local 127.0.0.0/8 dev lo  table local  proto kernel  scope host  src 127.0.0.1 
prime:~# 

prime:~# ip route list table default
default via 192.168.1.1 dev eth0  metric 15 
prime:~# 

Some Weaver subsystem commands.

wv sect network routes
wv sect tunnel vision routes
wv set [DNS]Forwarder = IP_OF_OTHER_DNS_SERVER




0 comments :

Post a Comment

Thank you for taking the time to comment. Your opinion is important and of value and we appreciate the positive feedback! If you are "Negative Nancy" then please do us, and humanity, a favor, and piss off.

Total Pageviews

Google+ Followers

Pages

Blog Archive

Popular Posts

Recent Comments

Rays Twitter feed

Ads

Web sites come and go and information is lost and therefore some pages are archived. @rayd123 . Powered by Blogger.