Slashdot Mirror

← Back to Stories (view on slashdot.org)

Linux Network Administrator's Guide, 2nd Edition

Posted by timothy on from the like-tinker-toys dept.

Dan Clough writes "I read this book to improve my knowledge of Linux networking, and in that regard it was a huge success! It was also an enjoyable and easy-to-read book. I am pretty much a Linux beginner, and know 'enough to be dangerous.' My existing home LAN consists of 5 machines: one running Mandrake Linux 9.1, one RedHat 9 (laptop), two Windows XP, and one Windows 98. These are connected to a commercial (Siemens Speedstream) router/switch and share internet access via a cable modem. All the computers can communicate with each other and share files, using Samba. The router also functions as a print-server for a laser printer, which the Linux machines print to via CUPS." Whether your network is bigger, smaller, or hypothetical, Dan's review (below) suggests that O'Reilly's Linux Network Administrator's Guide, 2nd Edition would be useful to have at hand as you build or troubleshoot. Read on for the rest. Linux Network Administrator's Guide, 2nd Edition author Olaf Kirch & Terry Dawson pages 475 publisher O'Reilly rating 8/10 reviewer Dan Clough ISBN 1565924002 summary How to get your machines talking amongst themselves.

This book cleared up many questions I had, enabling my home network to run more efficiently and securely. For example, I learned about many options that can be adjusted in the kernel configuration to allow building a customized kernel which is optimized for your system and needs. This took me one step closer to being ready for my first attempt at compiling my own kernel. I also learned about and implemented some changes to my DNS configuration (improvements to /etc/hosts and /etc/resolv.conf), which resulted in faster name resolutions for web browsers and file managers. I found the information to be detailed enough so that I got what I needed, but not so overwhelming as to turn off my interest level. Another positive note was that the descriptions and examples given throughout the book are "distribution-neutral." I'm using Mandrake 9.1 and RedHat 9, and the configuration file instructions matched up perfectly with both filesystem structures. I believe they would also apply directly to other mainstream distributions, or be easily adapted to slightly different locations.

The book covers some history of networking, and explains the TCP/IP protocol in great detail. Issues covered include IP addressing/subnetting, name resolution, routing, kernel considerations, and drivers. The next several chapters discuss how to configure many kinds of networking hardware and software, such as ethernet, serial/SLIP/PPP, and NIS/NFS. There were great examples of the configuration files that require editing, with understandable explanations of why you were doing it. A make-believe small business is used as an example throughout the book, as they build and expand their corporate network and integrate with other branches of the company.

The next section covered how to set up a firewall/router, again with great example configuration files and scripts. This part went into just the right amount of detail, and included discussion on packet filtering, firewall testing, IP packet accounting, and NAT/masquerading. I'd say I got the most amount of useful knowledge from this section, and will refer to it many times again when I get around to building a router for the home LAN. I now feel that I have enough knowledge to replace my LAN's commercial router with an older computer I have laying around, running Linux with a customized iptables firewall. The IP/packet logging and accounting procedures I now understand will make me feel much more comfortable with what's going on in my network, and the security issues involving the internet interface.

There are several chapters dedicated to setting up and understanding various network services that you may with to install and administer. These include email server/client, UUCP/Usenet news, NNTP and INN, and DNS. There are excellent diagrams, tables, and examples throughout the book. If there was one area I would have liked to have seen addressed (maybe in the next edition?), it would be to have at least an introductory chapter addressing the use of Samba, as it is a common, easy method of integrating a Linux network with Windows computers. Overall I was very pleased with the book, and would recommend it to anyone interested in Linux networking. It has something for everyone, at all skill levels. The table of contents and index are excellent, and you can find exactly what you're looking for very quickly. Additionally, the book offers an excellent list of other reference books, websites, newsgroups, and user groups to assist with getting more in-depth information. I'd like to extend a "well done" to the authors, and to O'Reilly Publishing!

You can purchase the Linux Network Administrator's Guide, 2nd Edition from bn.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page. Dan Clough suggests you visit the Pensacola Linux User's Group, too ;)

11 of 121 comments (clear)

  1. Nice positive review... by AgTiger · · Score: 5, Insightful

    But why do I feel like I just walked out of a showroom for this year's new cars?

    "He slimed me, Ray"...

    Seriously, c'mon, give me the negatives. There had to be some negatives. Nothing's perfect.

    1. Re:Nice positive review... by SuperDuG · · Score: 5, Insightful
      negatives?

      The reviewer didn't have the slightest grasp of how to setup a network or linux correctly in the first place. This may be seen as a troll or flaimbait, but it is in fact pretty honest. Anyone who doesn't know how to compile a kernel or setup a basic IP Table NAT really shouldn't be reviewing a book.

      The book was designed for the person who did the review, but that doesn't really give a good "REView". It simply says "yeah I read this and learned a whole lot from it". Someone seasoned in linux and networking might have been able to read more into the complexity of the IPTables and whether or not certain applications like Snort and TripWire were designed to also help out.

      Nope you didn't get that because the reviewer actually admitted that they knew absolutely nothing over the basics before they started reading the book, so you probably won't find anything "bad" from the reviewer because they don't know what they're looking for.

      --
      Ignore the "p2p is theft" trolls, they're just uninformed
    2. Re:Nice positive review... by nursedave · · Score: 4, Insightful

      What an arrogant ass you are.

      That's the trouble with the Linux community, boys and germs; arrogance.

      You guys think that because you have spent unbelievable amounts of time sitting in front of a glowing CRT learning the intricate details of an OS, that anyone who doesn't want to do likewise is a lamer, loser, or whatever.

      Then, you piss and moan that Linux doesn't have more acceptability. Hey, I hate M$ as much as the next guy (see, I even used the $ instead of the S, to show what a great anti-M$ guy I am), but they have done something the Linux folks haven't: Released a product that my grandmother can sit down in front of, click a few things, and go. If I hand my mother an XP disk and a new computer and say, 'Install this,' she will first tell me to wash my hands, dinner is almost ready; then she will be able to sit down and do it. If I hand her a Mandrake disk, I guarantee, she will need to ask me a bunch of questions about the process, ones that you and I will roll our eyes at, but if you don't know something, you don't know it, and have to find out somehow.

      In short, I haven't read this book. But a beginner's guide reviewed by a beginner means a hell of a lot more to me than the same guide reviewed by someone who is so experienced that he has forgotten his first dull stare at the blinking login prompt.

      --

      The Democratic Party: We've been pussies since 1968!

    3. Re:Nice positive review... by Anonymous Coward · · Score: 1, Insightful

      You are both right.

      An expert cannot properly decide if the book will be useful to a beginner.

      A beginner cannot properly comment on what was missing, misleading or just plain wrong.

      Yes, this review was useful. No it doesn't have everything a perfect review would require.

      Such is life.

  2. A little more arrogance next time please by Azghoul · · Score: 3, Insightful

    So let's see, a RH box with all services (other than perhaps SSH if you're into getting home from the outside) shut down, and iptables set to basically drop everything...

    Yeah, that would suck, you're right. Every machine I have should be a part of someone else's DDoS attack by now if you were right. We should bow before your expertise.

    1. Re:A little more arrogance next time please by dubious9 · · Score: 2, Insightful

      hell he even admitted he was an idiot.

      From review:
      "I am pretty much a Linux beginner, and know 'enough to be dangerous.'"

      Admitting idiocy and ignorance are vastly diffent assertions.

      --
      Why, o why must the sky fall when I've learned to fly?
  3. By all means build yourself a router by Anonymous Coward · · Score: 3, Insightful

    Just built one myself, and while challenging, was definealty worth the effort. I used New Riders Linux Firewalls and found it a great reference. Best part is once you have set up your router as you like, just burn the config scripts to cdrom and you will be able to make your own router out of most old junk computers and a minimal amount of spare time. Another great thing is that you can make it as mild, or wild as you want, nat, stateful packet inspection, dhcp, ssh, or whatever features you want.

  4. shouldn't be reviewing a book? by Anonymous Coward · · Score: 3, Insightful

    So a novice has no business reviewing a book for novices?

    Good luck with that.

  5. Re:It's also available for free... by H*(BZ_2)-Module · · Score: 2, Insightful

    Many are available for free in paper form as well from public libraries.

  6. Re:Does anybody else by stefanlasiewski · · Score: 2, Insightful

    I do alot of research online, but I can take my paper book and a highlighter to the cafe and learn more without the "internet procrastinator". Simple, easy, cheap, effective, can spill coffee on the book and it's still usable.

    Downside: No indexing. Can't grep the damn book.

    Laptop? Feh.

    --
    "Can of worms? The can is open... the worms are everywhere."
  7. Re:Little reading comprehension needed here by SuperDuG · · Score: 3, Insightful
    A NAT box running all sorts of other shit other than NAT is NOT SECURE. If the NAT is hardware (IE: "broadband router") then possibly. This user is not using a system designed for routing. A Router should have 0 open ports to the outside world. And should only have one port open to the internal network.

    Security means bringing on less advantages for an attack. And using the systems the reviewer mentioned there is no way the system could ever be secure unless they went through and stripped the NAT server down. Considering they didn't even know how to compile their own kernel I highly doubt they did this.

    So, Get Bent.

    --
    Ignore the "p2p is theft" trolls, they're just uninformed