Basic apache setup

I am going to be running a server this summer for a research project and was wondering if someone could help me out with the apache settings.
Currently everything works perfectly. The server is an old HP notebook running at 700 Mz with 768 mb ram. Not pretty, but each page is only 7 or 8 kb to serve and I should only have 300 people accessing it to take the survey over a 3 month period. The survey is run by limesurvey if anyone is familar with it, which is php based and uses mysql.
Since it is a light machine, I feel like I should be setting the maxclients, maxrequests, and maxkeepalive, and probably more that I dont know about. Research around the web has told me that all of this is pretty variable and I am not going to know untill I put it in the field and check out the server load. The problem with that is I am going to have enough trouble getting people to take the survey. If the server goes down or doesn't work, I'll be SOL.
Does anyone have any good ideas on how to test it out and can help me configure apache?
I was also wondering about security. I have port 80 open for http access and 22 so that I can ssh into the server when needed. Should I be installing a firewall or doing any other configurations?
I know its a lot, but any help would be appreciated.
Thanks.

I suggest changing the SSH port from 22 to something else. Its more secure. It can easily be found with a port sniffer, but for script-kiddies, it will be hard to find Also make sure you read the wiki article on SSH and change to the secure protocol. If you want, you could also setup iptables and that jazzz.
Last edited by haxit (2009-03-19 15:40:07)

Similar Messages

Basic DNS Setup

Heya Guys,
I'm new to server and in need of a little bit of help.
What I want to do is run a mail server (kerio) on my Mac Mini which is now running 10.5 server. I need to configure my server to run DNS but I'm not to sure on how to do it.
My setup is,
Static IP - Netgear Router - Mac Mini (DNS & Mail Server)
Is someone able to out line a basic DNS setup for me so I know what I'm doing? Maybe using my domain name as example.com
Cheers,
Dave.

Hello Tim
+" . . . why would you use kerio mail server when leopard server includes a Mail server? . . ."+
One reason is the built in Mail Service is not everyone's cup of tea. If you want to effectively use it you have to use to command line. Not everyone wants to do that. If you want out of office replies you have to bolt on something else. Same with an effective backup. If you want to use a unified address book and calendar you have to bring other applications into play. There is nothing wrong with any of that but if you want simplify ease of use and provide something that is an all-in-one solution then Kerio is pretty hard to beat.
One of Kerio's features is its ability to remotely wipw mobile devices (Blackberries etc) if they have been lost or stolen. I can't find that feature anywhere in the Mail Service. It literally takes only an hour (including download) to get it secured and running all from an extensive but user friendly interface that works. If a group member receives a reply the other members in the group get to know and therefore have no need to reply in turn. I could go on. OK it can start to get expensive as you add more users and also because of the virus subscription, but it can be made to use OSX Server's built in AV and Anti-Spam filters. Neither do you don't need to install it on a Server box. Any client OS will do. All of its features can be accessed using the built-in webmail client supported by all the main browsers. For PC users in a mixed platform environment it behaves in the same way an Exchange Server does.
It has its own built-in Archive and Backup Feature that does not involve stopping the Mail Service in any way. Its pretty good when you need to restore as well. From an administrative point of view it is as close to click and forget as you can get.
Don't get me wrong I like Apple's Mail Server - I like the challenge. But given the choice and budget I would go for Kerio every time.
Just an opinion.
Tony

What did the disable mean in basic wireless setup?

hello
I have bought a WRT160N and find there is a option "disable" in basic wireless setup. I want to know if I chose this option, the router shutdown its wireless signal or just cannot use its wireless function? I mean, if I chose this option, does this router exactly like a wired router?
Many thanks.
Solved!
Go to Solution.

If you set the "Network Mode" to "disabled", your WRT160N becomes a "wired" router. The wireless radio is turned off, so the router behaves the same as a wired router.
Message Edited by toomanydonuts on 10-24-2008 05:12 AM

Solaris 10 -- Apache Setup

Hi,
We are trying to configure Apache server on a new Oracle 10G Solaris 10 servers.
We have configured the httpd.conf file as well and set a port 8001 open for web pages.
Certain pages are using the Apache's PL-SQL gateway module ( mod_plsql) . These page links are like http://hostname:8001/pls/DAD_NAME/HelloWorld
HelloWorld is my Procedure in backend database.
We have configured the dads.conf file( u01/app/oracle/product/10.1.2_as/Apache/modplsql/conf/dads.conf) to setup the Apache PLSQL gateway.
The following are the contents we added in dads.conf file,
<Location /pls/DAD_NAME>
SetHandler pls_handler
Order deny,allow
Allow from all
AllowOverride None
PlsqlDatabaseUsername ssd
PlsqlDatabasePassword xyz
PlsqlDatabaseConnectString athos_ssd2.world
PlsqlAuthenticationMode Basic
</Location>
Apache logs are showing the following,
[Mon May 18 12:15:31 2009] [error] [client 172.24.225.32] [ecid: 1242645331:172.25.242.71:14041:0:1,0] mod_plsql: /pls/DAD_NA
ME/HelloWorld HTTP-503 ORA-12154 ORA-12154: TNS:could not resolve the connect identifier specified\n
/u01/app/oracle/product/10.1.2_as/Apache/Apache/logs/access_log.1242604800: Permission denied
Error we are getting on webpage
Service Temporarily Unavailable
The server is temporarily unable to service your request due to maintenance downtime or capacity problems. Please try again later.
Please suggest a way out so the helloworld procedure is called from webpage link mentioned above.

have you verified you can connect with the oracle client (on the apache server) using the tns name you configured for the apache mod?

Questions on the very basics of setup

I'm helping a "friend" setup his MacBook Pro (a likely story, I know). he has an AirPort Extreme and wants to connect to the internet using his DSL box. All the cables are correctly connected, I believe. Went through the procedure of using the AirPort Setup Assistant (creating network i.d., password, etc.). When we click "connect", the left AirPort light flashes periodically as it's supposed to, but we get the following message after a few moments:
"could not find a PPPoE server"
I presume that means that we need to install the DSL software on the machine. Is that correct? Should this be an "easy" fix or do I have to consider other things in order to get to the internet?
I do apologize if this is a re-run question, but I didn't see it in the forum. Thanks for any guidance or reference to other links in the forum.....

Just as a hunch, and I'm new to this support site as well, but I'd go check out the Airport Forums, and see if there is this info in there already. That being said, from what I understand and have experienced, some adsl modems work in dummy mode, where the router/airport device actually prompts the information through it, and some have their own dhcp server with all that username/password,ect, stuff in there. One thing you may have to do is connect the modem directly to your ethernet port on your computer, and go into your webbrowser and type "192.168.1.1" into the address bar and press enter, this should give you your dsl modems configuration page, from there you'll have to figure out which option you can go with. What i've seen a few times is a modem that has to have the username and password setup, and also has basic network configuration, and then a router, which has to be setup for dhcp as well, with no username and password info involved. What makes this more confusing, is sometimes both the router and the modem are set to use the same default address for themselves. Try checking out the documentation on both the airport, and whatever information you can glean from your isp about your modem. If this all sounds like nonsense to you, I'd just check into paying your isp to send someone to set it up, or some other knowledgeable networking tech. Good luck

Tomcat 4.0.1, JWSDP and Apache - setup help please

Windows 2000 env.
First off, the latest Comanche release (Apache GUI) isn't really stable
enough to use.
Has anyone got any experience with running Java Web Services Development
Package with an Apache server.
JWSDP is packaged with a version of Tomcat 4 - a VERSION of it. It doesn't
seem to have WARP capability, and some connectors seem to be missing from
it.
I was unable to get this to work with Apache, and have decided to switch
back to the standard release of Apache/Jakarta Tomcat 4.0.1.
Has anyone else tried using the JWSDP??? I'm setting up a development
server, and figured JWSDP would be nice, since it has some components
already installed, ie SOAP.
JWSDP doesn't create a workers.properties and mod_jk.conf-auto file. Are
there any new tricks to setting up Tomcat 4 with Apache since Tomcat 3.x?
Is there a different way to configure JWSDP for use with Apache Web Server?
setup Tomcat 4 Apache web server
setup Tomcat 4 and Apache web server
setup JWSDP Apache

Thanks...
Since then, I have gone to Tomcat 4.0.1, and will install SOAP, etc as needed.
As I have not been able to find a complete Windows Apache and Tomcat installation guide, I will be writing one soon and posting it.
Also check out http://www.tek-tips.com in the forum areas/mis/it/Web Server/Apache Group: Apache.

Basic IPV6 setup question

I am experimenting with IPV6 and have three devices in my test network. They are setup as follows:
UC520 using BVI:   FD:0:0:1::1/64
Windows Server1: FD:0:0:1::5/64
Windows Server2: FD:0:0:1::6/64
I am using the following commands on the Cisco
ipv6 unicast-routing
ipv6 cef
int BVI100
ipv6 address FD:0:0:1::1/64
ipv6 enable
The Windows servers can ping each other, the Cisco can ping itself. However I can't get pings from either Windows server to the Cisco. I also tried pinging the Cisco using link-local IP but that doesn't work either. Seems like I am missing something very basic, or so I hope.
Any ideas?
Thanks,

Here's what that looks like:
UC520#
UC520#ping fd:0:0:1::1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to FD:0:0:1::1, timeout is 2 seconds:
Success rate is 100 percent (5/5), round-trip min/avg/max = 0/0/4 ms
UC520#ping fd:0:0:1::5
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to FD:0:0:1::5, timeout is 2 seconds:
Success rate is 0 percent (0/5)
UC520#sho ipv6 nei
UC520#sho ipv6 int bvi100
BVI100 is up, line protocol is up
IPv6 is enabled, link-local address is FE80::21C:58FF:FEE4:52A0
No Virtual link-local address(es):
Description: Test LAN
Global unicast address(es):
    FD:0:0:1::1, subnet is FD:0:0:1::/64
Joined group address(es):
    FF02::1
    FF02::2
    FF02::1:FF00:1
    FF02::1:FFE4:52A0
MTU is 1500 bytes
ICMP error messages limited to one every 100 milliseconds
ICMP redirects are enabled
ICMP unreachables are sent
ND DAD is not supported
ND reachable time is 30000 milliseconds (using 30000)
Hosts use stateless autoconfig for addresses.
UC520#

Issues with basic VPN setup and split tunneling

I have created an SSL VPN to a CISCO ASA 8.6 running ASDM 6.6.
Im able to connect to the VPN and reach all the devices with the LAN but Im not able to browse the web. When I enable the split tunnel Im able to browse the web but then Im not able to reach any internal device.
Here is part of the show run:
object network RedInterna
subnet 150.211.101.0 255.255.255.0
description Red Interna
object network NETWORK_OBJ_10.4.1.0_28
subnet 10.4.1.0 255.255.255.240
access-list inside_access_in extended permit ip object RedInterna any
access-list VPN_INTERNET standard permit 150.211.101.0 255.255.255.0
pager lines 24
logging enable
logging asdm informational
mtu outside 1500
mtu inside 1500
mtu management 1500
ip local pool VPN_POOL 10.4.1.1-10.4.1.14 mask 255.255.255.240
failover
failover lan unit secondary
failover lan interface fail-1 GigabitEthernet0/2
failover key *****
failover interface ip fail-1 10.3.1.21 255.255.255.252 standby 10.3.1.22
icmp unreachable rate-limit 1 burst-size 1
asdm image disk0:/asdm-66114.bin
asdm history enable
arp timeout 14400
nat (inside,outside) source static any any destination static NETWORK_OBJ_10.4.1.0_28 NETWORK_OBJ_10.4.1.0_28 no-proxy-arp route-lookup
nat (inside,outside) after-auto source dynamic any interface
access-group inside_access_in in interface inside
route outside 0.0.0.0 0.0.0.0 187.217.68.145 1
route inside 10.0.0.0 255.0.0.0 10.1.1.78 1
route inside 150.211.0.0 255.255.0.0 10.1.1.78 1
webvpn
enable outside
anyconnect image disk0:/anyconnect-win-3.1.00495-k9.pkg 1
anyconnect enable
tunnel-group-list enable
group-policy GroupPolicy_VPN_ internal
group-policy GroupPolicy_VPN_ attributes
wins-server none
dns-server value 8.8.8.8
vpn-tunnel-protocol ssl-client
default-domain value dominio.com.mx
tunnel-group VPN_ type remote-access
tunnel-group VPN_ general-attributes
address-pool VPN_POOL
default-group-policy GroupPolicy_VPN_
tunnel-group VPN_ webvpn-attributes
group-alias VPN_ enable
I´m not sure if Im missing some small details or setup. Any help will be highly appreciated.
Thanks!!!

Hi,
When you are using Full Tunnel VPN (which is the default setting) you will have a couple of things that you need to configure on the ASA.
First, the ASA by default won't allow traffic to enter through an interface and then leave through that same interface. This is what essentially happens when the traffic from the VPN Client comes to the ASA and then heads out to the Internet. In your case the traffic comes through the "outside" and leaves through the "outside" interface.
You will need this command
same-security-traffic permit intra-interface
You can check if its enabled at the moment with the command
show run same-security-traffic
Second, the VPN users will need to have NAT configuration just like any LAN users behind the actual ASA. So you will essentially have to configure Dynamic PAT for traffic from "outside" to "outside"
You can accomplish that with the following configuration
object network VPN-PAT
subnet 10.4.1.0 255.255.255.240
nat (outside,outside) dynamic interface
I would imagine that this should do it for you to be able to connect to the Internet and to the LAN network when the VPN is active.
Hope this helps
Let me know how it goes.
- Jouni

Apache setup in 10.3.9, enable documentroot

Hi,
I've been using the personal web sharing feature of os x for a while now and can access all work in my sites folder from http://localhost/~digitalpencil/
I understand however, that you can also access apache through the webserver documentroot? i.e machd/library/webserver or http://localhost/mysitefolder/
How do I set this up?
All advice is much appreciated.
Thanks

Don't bother.. I'm an idiot, the folder aptly titled 'documents'.. lol

Basic DB setup

Hi,
I've just started to look into Oracle 11g OLAP cubes and wondered what the best way to structure my DB was. I have the following situation:
1. Hierarchy of Country > City
2. Hierarchy of Business > Branch
3. Sales in each branch
Is it best to set up the db fact and dimension tables as follows:
sales-fact
salesid PK
countryid FK to country-dim
cityid FK to city-dim
businessid FK to business-dim
branchid FK to branch-dim
salesMetric1
salesMetric2
salesMetric3
where country-dim, city-dim, business-dim and branch-dim all follow the following convention:
xxx-dim
xxxid
xxx
OR is it better to handle the hierarchy of country > city and business > branch as follows:
sales-fact
salesid PK
locationid FK to location-dim
entityid FK to entity-dim
salesMetric1
salesMetric2
salesMetric3
where location-dim:
location-dim
location_d
country
city
and entity-dim:
entity-dim
entityid
business
branch
I'm not sure which is the better method of contruction for use in AWM for generating cubes, where location and business would be dimensions of the cube.
Thanks for all help

The second approach, with separate dimension tables, is much better for many reasons.
(1) The dimensions will load faster since you will be scanning a smaller table;
(2) The fact table will be smaller since it has less data, so the cube will also load faster;
(3) You are less likely to have bad hierarchy data since there is less duplication;
(4) You have more flexibility to modify dimension hierarchies if and when your needs change.
This is basically a standard star schema, which is about as good as it gets from AWM's perspective.

Basic wireless setup with phone co. modem

I am new to wireless. I just installed a wireless modem from my ISP (a 2WIRE [brand name] model from at&t). My powerbook G4 is not equipped with an Airport card, but does have a slot. I was hoping I could use a D-Link pc card, but have discovered it only works with Windows.
Should I buy an Airport card or are there other pc cards that WILL work with the modem? And which of these options will provide the fastest internet service?
I searched this topic before posting, but have not seen an answer to this basic question.
Thanks for your assistance.

Hi, Ddale. Any card will be compatible with your modem; that's not an issue. Third-party cards that will work with OS X's built-in Airport software include these three, all of which I've used, and probably some others that I don't know about:
http://www.sonnettech.com/product/aria_extreme.html
http://www.macwireless.com/html/products/wirelesscards/11g_11bcards/11gPCCard.php
http://www.macsense.com/product/networking/wpe800.html
These cards all use the same Broadcom chipset aas the Apple Airport Extreme card. That's why Apple's software works perfectly with them.

Basic network setup issues

I would like to set up a wireless network so other devices can be used in my household. My Intel CoreDuo iMac uses Ethernet and a Netopia DSL modem/router to access the internet. I have tried a few times and done a great deal of reading to add and setup my Netgear WGR614 wireless router, but the internet is inaccessible after connecting and turning everything on.
I'm sure there is a thread here somewhere, could someone point me in the right direction....?
Many thanks,
-DJ

OK, this is really strange...
I can browse the web using Lynx - not with firefox. I can attempt to ssh into my server only after I ping it (much like using pacman) but cannot get past the password entering stage.
Any ideas?
I have been searching all day and still have no internet. I'm going to download a live-CD (Ubuntu?) tonight and see if I network access through that.
[EDIT]
SOLVED! It turns out I needed to update my routers firmware. Strange that it gave similar symptoms the the TCP window scaling issue.
Last edited by Allan (2007-06-21 11:24:17)

Apache setup

Please bear with me on this one, I tend to ramble with lots of information.
I was playing around with apache with hopes to host a small personal website from my mac. So I figured out how to start the service and where to place the html files and such but I am having a strange problem.
Well first of all it won’t recognize just any .html file that I rename to index.html, ie. it will not load that as the "homepage". What I mean by this is I gathered a bunch of random .html files. Some were quickly created in iWeb and Photoshop for quick testing, others were copied from real websites, and others were from current projects I am working on (all of these gathered just to test how it works). All of these (at separate times) were renamed to index.html and placed into the Library/WebServer/Documents directory. Then when I open safari and go to http://localhost/, it would not load that new index.html as the "homepage", just the default "Apache installation successful" (or whatever it says there). It didn't NOT load for all of them however. I noticed that any of the .html files that had a preview icon rather than just the default html icon did load correctly. They are all legitimate .html files and open in safari if double clicked, but the ones without a preview icon aren't recognized by Apache for some reason.
Now to make it more strange, one of the index.html files that did work correctly is "stuck" as the homepage. What I mean by this is I took an index.html file that had a preview icon, placed it in the Documents folder, opened localhost, and it worked fine. I then deleted that same index.html file to default back to the "successful installation" homepage, go back to localhost and that other index.html file is still set as the home page. Even after I deleted it from the documents folder! I even tried to place a different index.html file (another one that did work before) in the documents folder, but it still loads the one that is "stuck".
But, now if I enter the IP address in the address bar of safari, I get the default Apache page, not the "stuck" page. Even if there is a different index.html page in the documents folder, I still get the default Apache page.
Any suggestion on to what could be wrong? Is there any way to just reset the whole thing to the way it was before I used it to start over? BTW, I never edited any config files or deleted any other filed except the inded.html files I created.

Oh my god, I'M A FREAKING IDIOT!!!!! I never hit the reload button in safari to open the updated page in the directory. I feel so dumb right now after posting that long thread asking what could be wrong. Thanks anyway no need for a suggestion now. LOL

Basic Room Setup?

I am new to EP and collaboration and I have some basic questions about setting up rooms. If anyone could give links to help.sap or sdn.sap or old threads, or just give a quick answer, I'd really appreciate it.
When creating a room, what does the "Categories" area mean, where you can assign the 'default_category', 'category_1', etc?
Also, regarding room templates. If I want to make my own templates and then want to reorganize the components within the templates, how (or can) I do that?
Thanks, John

Hi John,
Room categories are nothing but grouping of the rooms.
Ex:
Room 1: Marketing Team Room (template: SAP_Team_Room; category: Marketing)
Room 2: Pre-Sales Team Room (template: SAP_Team_Room; category: Marketing)
Room 3: Sales Information (template: SAP_Information_Site; category: Sales)
Room 4: Sales Meetings (template: SAP_Meeting_Room; category: Sales)
Room 5: Sales Events (template: SAP_Information_Site; category: General)
Please refer this link for Template Maintenance.
http://help.sap.com/saphelp_nw2004s/helpdata/en/f1/0c7c3b418eb840baa33a8134f61712/content.htm
Regards,
Siva
P.S: Award points if you find this useful.

Basic ASA5505 Setup Question

I have a new 5505 installed to a pretty small network. I have the outside IP/mask/gateway from the provider, and I can see the other end or that connection as well as ping devices out on the internet from the console.
What's a good rule of thumb for my inside network to access the internet knowing I only need 80 and 443 open? Meaning can someone provide an ACL example that will do just that?
I'm guessing the following may be a little TOO open:
access-list outside_access_in extended permit tcp any eq www any eq www
access-list outside_access_in extended permit tcp any eq https any eq https
Thank you.

Hi,
ok I understood but you also need to permit DNS and ICMP.
For ICMP just enable inspection like this:
policy-map global_policy
class inspection_default
inspect icmp
For other traffic, you can configure an ACL only permitting return traffic and apply inbound on interface outside or configure an ACL only permitting exiting traffic and apply on interface inside inbound.In this case you'll have to permit icmp if you want it to be inspected.
In latter case your ACL should be like this:
access-list outside_access_out extended permit tcp x.x.x.x.x y.y.y.y any eq www
access-list outside_access_out extended permit tcp x.x.x.x y.y.y.y any eq https
access-list outside_access_out extended permit udp x.x.x.x y.y.y.y any eq dns
access-list outside_access_out extended permit icmp any any
access-group outside_access_out in interface inside
And enable icmp inspection like above.
Regards.
Alain

Basic apache setup

Similar Messages

Maybe you are looking for