Slashdot Mirror
Open Source Tools in Data Centers
An anonymous reader writes "There is a nice presentation on the L.A.S. Linux site entitled "Managing Data Center Functions with Open Source Tools" which was presented at Comdex 2003. It covers everything from IPtables to OpenNMS. As well as covering some less known but nice tools like NeDi, which lets you easily manage Cisco routers and swiches from a web browser."
deutschland ueber alles!
americans = pussies
-INSANE-PRIEST--INSANE-PRIEST--INSAN
I___________,.-------.,____________I Slashdot
N______,;~'_____________'~;,_______N fucking
S____,;____LINUX FUCKING____;,_____S sucks
A___;___SUCKS, YOU FUCKING____;____A
N__,'____SLASHDOT RETARDS.____',___N Rob Malda
E_,;___GET IT INTO YOUR HEAD___;,__E is a
-_;_;______._____l_____.______;_;__- cocksucker
P_l_;____________l____________;_l__P
R_l__`/~"_____~"_._"~_____"~\'__l__R Slashdot
I_l__~__,-~~~^~,_l_,~^~~~-,__~__l__I fucking
E__l___l________}:{__ (O) _l___l___E sucks
S__l___l_ (o) _/_l_\_______!___l___S
T__.~__(__,.--"_.^._"--.,__)__~.___T Rob Malda
-__l_____---;'_/_l_\_`;---_____l___- is a
-___\__._______V.^.V___((oo))./____- cocksucker
I__O_VI_\________________ll_IV___O_I
N_____I_lT~\___!___!___/~ll_I______N Fucking
S_____I_l`IIII_I_I_I_IIIIll_I__o___S lameness
A_O___I__\,III_I_I_I_III,ll_I______A filters,
N______\___`----------'__ll/____o__N will
E____O___\___._______.___ll________E this
-_________\..___^____../(_l___O____- ever
P_________/_^___^___^_/__ll\_______P fucking
R_O______/`'-l l_l l-';__ll_l___O__R WORK?!
I_______;_`'=l l_l l='__/ll_l______I
E_____O_l___\l l~l l__l/_ll_l______E Your mother
S_______l\___\ l_l l__;__ll_l__O___S was good
T__o____l_\___ll=l l==\__ll_l______T in bed, she
-____o__l_/\_/\l_l l__l`-ll_/______- grunts like
-_______'-l_`;'l_l l__l__ll_____O__- an ape.
I_O_______l__l l_l l__l__ll________I
N____O____l__l+l_l+l__l__ll___O____N Rob Malda
S_________l__"""_"""__l__ll________S is a
A__O______l____o_o____l__ll____O___A cocksucker
N_________l,;,;,;,;,;,l__ll________N
E_____O___`lIlIlIlIlIl`__ll________E
-__________llIlIlIlIll___ll_____O__- By Dessimat0r
P__________`"""""""""`___""________P (c)2003 Trollkore
-INSANE-PRIEST--INSANE-PRIEST--INSAN
The bishop, while living, was a follower of God.
Now dead, his rotting fingers are able to raise
an army of skeletons from the grave.
Trollkore
"I hate you, I hate your country, and I hate your face!"
# Important Stuff: Please try to keep posts on topic. # Try to reply to other people's comments instead of starting new threads. # Read other people's messages before posting your own to avoid simply duplicating what has already been said. # Use a clear subject that describes what your message is about. # Offtopic, Inflammatory, Inappropriate, Illegal, or Offensive comments might be moderated. (You can read everything, even moderated posts, by adjusting your threshold on the User Preferences Page) # Important Stuff: Please try to keep posts on topic. # Try to reply to other people's comments instead of starting new threads. # Read other people's messages before posting your own to avoid simply duplicating what has already been said. # Use a clear subject that describes what your message is about. # Offtopic, Inflammatory, Inappropriate, Illegal, or Offensive comments might be moderated. (You can read everything, even moderated # Important Stuff: Please try to keep posts on topic. # Try to reply to other people's comments instead of starting new threads. # Read other people's messages before posting your own to avoid simply duplicating what has already been said. # Use a clear subject that describes what your message is about. # Offtopic, Inflammatory, Inappropriate, Illegal, or O
I own a shared ISP, and I am looking for a way to do virtual private servers under Linux. (basically, instead of sharing one server, everyone runs their own under a chrooted secure environment) I have looked at linux-vserver, but I want a mature and stable solution. sphera is an option, but it is proprietary and expensive.
Interestingly, Harald Welte (creator of IPTables) will be giving a talk at Linux/Bangalore 2003, among 100s of others.
When anger rises, think of the consequences.
Confucius (551 BC - 479 BC)
a fat man who lives with his mother find love on
this blog?
-- The WIPO Avenger
in the enterprise datacenter has to be Cisco Enterprise Printing System of CEPS for short. With CEPS Cisco has over 10K printers in thousands of sites around the world with only 2 print admin's!! CEPS is based around SAMBA and CUPS and allows windows, linux, and unix clients to print to printers in a way that is unmatched for redundancy in any other product commercial or otherwise. Remote print servers can take over controll of print queues quickly in the event of a print server failure and queues can be rerouted to a new print device should a physical printer fail all without client reconfiguration! Cisco was nice enough to give the system back to the world. They have a sourceforge project available for anyone interested.
There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
As an adiministrator at one of the midwest's largest isps/data centers, I am always looking for better ways of administration. Currently, we use plesk for all our client server administration. However, this costs us a fortune... which is passed on to our clients. I would contribute a lot of this money myself towards a 100% open-source, stable, secure distribution specifically made for web hosting. Features like virtual private servers, a control panel comparable to plesk, and completely secured ssh access would be ideal. In addition, kernel mods to protect security (keeping people out of resources they shouldn't be in) should be done. I could do this myself, but I just don't have the time to keep it maintained myself.
Bored with mindless groupthink?
Had enough with Slashdot's unethical support for advertisers?
If so, we invite you to join the jihad against Slashdot at www.anti-slash.org. We demand a full acknowledgment and apology from the editorial staff for their crimes against the community. Until then, we will take whatever action is necessary to discredit Slashdot as a reputable geek news site.
Our tools:
- Database Tool -
A huge searchable database of old Score:4 and Score:5 posts ready for
reposting. Gain karma at your will. Then, use your mod points and karma
bonus to cause mayhem.
- Browsing Tool -
Browse Slashdot through our special tool to alert other brothers in Jihad
to subversive posts worthy of moderation. Also integrates with the
database tool for quick karma whoring.
- Mail Tool - create
fake email accounts for creating new Slashdot accounts for jihad
operations with ease.
- Bait and Switch Mirror
Tool - Use this to mirror a Slashdotted site. After a certain amount
of time (to let the mods push it up to Score:5), it switches to displaying
goatse.cx or your favorite disgusting image.
Join the jihad today!Admit it. With the exception of Apache, Samba is the number one reason that Linux (and BSD, too!) has been able to invade the datacenters of companies the world over.
:)
Without Samba, Linux et al would be in a much less pretty position.
Perhaps we should call it Samba/GNU/Linux?
Kudos to the Samba Team, Tridge, and all Samba developers/testers/users!
The linux hacker
I would include Zabbix to the Monitoring and Administration section. This is out-of-the-box application that takes care of monitoring of our network consisting of more than 400 nodes. It is not as mature as Nagios or MRTG, but its stability and feature set makes it extremely useful. Native high-performance agents cover most of platforms: Solaris, AIX, HP-UX, MS WIN, Linux, *BSD, OS X. Could be installed in a 5 minutes, this is big advantage over Nagios or OpenNMS.
With all the recent security issues surrounding open source (Debian, anyone), I would think twice about using open source in my data center.
When it comes to centralized management of your IT assets, Microsoft products are unbeatable. An excellent reason to be an MS only shop, IMHO.
As far as I'm concerned HP switches that have web GUI built in are much better for Medium (up to 500 clients) deployment than Cisco crap. Cisco makes money on training, books etc and I feel that they purporsley make their interface (command line only) hard to use. Even the prompt commands aren't intuitivley named. There is just to much money in the books, and training for Cisco to give it up and the price they pay is that people who need to deploy medium LAN's rather quickly will opt for HP and 3Com. Its good to see NeDi taking that vacum and getting Cisco IOS badly needed...uh...common sense.
THE OMEGA AGENCY
The Author of this Report is Unknown
They are who people are talking about when one says orders come from "above the President".
The Omega Agency consists of a network set up much like the CIA. There are thousands world-wide who take their orders directly from the ruling council of the Omega Agency. This council consists of 10 to 12 people. George Bush and Alexander C. Haig are two names known to sit on the council of the Omega Agency. The OA is the driving force behind what is commonly called the "New World Order." The OA's office is located at Langley AFB.
They plan to establish their NWO, for lack of a better term, in a time span of no less than 5 days. And they intend to do it without open war.
Recall when President Reagan was shot. Haig made the statements to the press that "I'm in charge now." If you'll remember, he caught a lot of flack for that, and shortly thereafter, he was accused of various things that ruined his name politically. This was done by members of Congress who were aware of his seat on the Omega Agency council, and they feared losing their claim to power. Haig jumped the gun in his statements, and ended up giving up his political position because of it. Had Reagan died, we would have had Bush as President, and Haig as Secretary of State. Two men in power who sit on the OA council. But because of the commotion raised by a few members of Congress, Haig faded into the background rather than risk exposure of his connection to the OA, or of the OA itself.
Recall when the Gulf War started. Bush used the exact words "New World Order" in his speech to the country. He said it several times, that the Gulf War marked the beginning of a NWO. The Gulf War was not a war about oil or the freedom of the people of Kuwait. It was a test of how well multi-national troops under the guidance of the UN would react in a war situation. The same holds true for Somalia and Bosnia. Multi-national troops under the direction of the UN. The Omega Agency controls the UN.
Bush didn't lose the election to Clinton. Bush needed to be out of the limelight of the presidency in order to concentrate on and escalate the plans of the Omega Agency. And in Clinton, they had a stooge who would not rock the boat and who would do what he was told. Notice how quick Clinton has been to commit US troops to UN peace-keeping forces here and there. Notice who Clinton appointed as Secretary of State - Madeline Albright, the UN lady. Notice who Clinton gave federal land to - the UN.
Why the need for a one-world government? The reasoning of the Omega Agency is this: Crime is out of control on a world-wide basis, especially in the US. People are out of control, not taking responsibility for themselves or their actions. Population growth is out of control on a world-wide level. The judicial system of the US is a joke. The political system of the US and most countries world-wide is a joke, corrupted and polluted by greed and power-hungry people who don't care about the population they were elected or appointed to serve. Under the governing body the Omega Agency plans to put in power, this would end. End of trial by jury. End of living off of society and not contributing your fair share. End of taking advantage of others for one's own personal gain. All who are able would contribute to the growth and well-being of the world's society, or they would pay the price for not pulling their fair share.
What is this price? Basically, it will be like this: Those who are able physically and mentally to work will do so. If you have a job/profession at the time that the OA takes over, you will continue in that job/profession. If you are drawing welfare, but are physically able to work, you will work. Personal freedoms to come and go as one pleases world-wide will not change. Basically, the OA doesn't care what people do to amuse themselves, entertain themselves, etc., as long as they are working and contributing to the society as a whole. But there will be zero tolerance of any act tha
OpenBSD has PF - a really cool packet/nat/authentication/bandwidth limiter/port forwarding system that is really, really, cool
You can do clever things, like allow a certain amount of bandwith for sombody, but if they log in, the bandwith limit disappears.
Or parse the spam blackout litsts and block all incoming packets from them (spam trype networks have more that their fair share of crackers)
All withouht crypic config files.
I *REALLY* hope, for Linux's sake, that after FreeBSD ports PF (to replace their IPF), a Linux port will be forthcoming.
IPTables is just fine for simple firewalls, but PF has a much more sane syntax, and it can handle really complex networks without a headache.
PF is sooo good - it's worth learing a bit of OpenBSD to get it. If you're good at Linux - it will take to half a day to learn all you need to get PF on OpenBSD working, and that includes installing OpenBSD.
It's not hard at all - I came from a Windows background and dident even know VI and it only took me three days to learn enough about OpenBSD to get it working.
Moneyed corporations, non-working 'poor' and criminal prisoners are turning productive citizens into tax-slaves.
Another tool to monitor a Cisco-based or other networks is JFFNMS
:)
It can monitor TCP Ports, Network cards, CPU, Memory, Disks, all using standard SNMP, with no client side scripts.
You can integrate it with your OSS using various RPC methods, everything is stored in MySQL or PostgreSQL.
Its very extensible too...
Javier
It's my own project.
- Smells Like Open Source Code
Another tool of use is the Cisco Transport Controller...we use this to monitor a fiber network up in MA.
I've been using NMIS (http://sins.com.au/nmis) for about 2 years and it's better than any commercial NMS I've seen and used. Even our management turned down the likes of OpenView and Patrol in favor of it (of course cost helped that as well :). It's got it quirks, and isn't very modular unless you know perl reasonable well, but oob in a cisco network it's great with support for other vendors slowly growing. The developers are supportive via their email list as well. If you're in the need of an monitoring platform and your PHB's aren't afraid of open source apps, NMIS should definately be given a look.
--mb
Knowledge is power. Power corrupts. Study hard, be evil.
Seriously, I want some of that.
hello people:
:-D
let it be known that one (1):
COMMANDER TACO
aka rob malda
is an OPEN SOURCE TOOL
thank you very much
You may try Xen http://www.cl.cam.ac.uk/Research/SRG/netos/xen/
Why is it bad if someone posts an informative comment?
Did anybody else find that?
(Was Ok with IE, but rather ironic finding a site on open source tools displays correctly only for a closed source browser.
My rights don't need management.
Here is the closed source competition: Microsoft OTG Reduces Print Servers--From 30 Down to 4--By Consolidating with Windows Server 2003.
Quote: "Here's the story of how they consolidated print servers from 30 servers running Windows NT Server to only four servers running Windows Server 2003 Enterprise Edition."
I'd be curious to hear peoples experiences with OpenNMS compared to Nagios.
And openNMS does what exactly? There's a vague description on the website, but its not terribly helpful. Screenshots anybody?
I've been reading the Open Source Network Administration book by James Kretchmar (review here in fact) and its been a really good read. Really applicable to the subject in my opinion.
Just my $.02 on the subject.
"On a scale from 1 to 10, people are stupid"
SPAM/VIRUS/WORM SCANNING
amavis - http://amavis.org/
qmail-scanner - http://qmail-scanner.sourceforge.net/
dspam - http://www.nuclearelephant.com/projects/dspam/
The authors of the LAS should have mentioned Cricket.
Which is a much evolved performance trending system. For those looking to trend data from routers, switches, firewalls, servers, sensors, files. Cricket offers a very flexible configuration method. It is all in perl, so very easy to support, extend and integrate. It includes a grapher, a collector and a configuration system.
It does what it does well.
The system also offers easy integration with event management systems open-source or not. It scales well to a great number of devices.
Plus a brand new version just came out! Get it while it is hot.
http://cricket.sourceforge.net
Rick Berman called. He wants his crappy Star Trek plot back!
I really do wonder why an OS like Linux, which is very strong in the server market, does not have professional grade network management software?
The mentioned tools are nice toys but nothing more. Why are there no free professional tools which support network management standards such as RMON, SAA, NetFlow, etc in a decent way?
I know that there is StableNet PME and Infovista announced to bring their tools to Linux next year.
So there seems to be a market. What holds back the open source community to develop free alternatives?
But no one wanted to set up GSS or Kerberos 5 years back, so it never caught on.
/net/machine/share...
Lot more complicated than
THIS THING CAN TURN ON A DIME, MACROSSZERO STYLE ALSO FUCK BETA, ~NYORON
n/t
attention is nice, sometimes.
my company uses netbackup for all out backup needs we have evaluated many options, but find due to lack of support from other vendors when used with non supported solutions, OSS is not a feasible solution. Our company is a 99.9% solution provider and if something breaks there must be a chain of monetary responsibility. Veritas gives us the support we need and all of our other vendors support netbackup. we do have a couple linux servers but for the most part we are a sun environment, which takes us full circle to supported configurations and a 4 hour service window.