Debian » History » Version 9
Lutz Suhrbier, 07/30/2009 07:43 PM
1 | 1 | Lutz Suhrbier | |
---|---|---|---|
2 | 9 | Lutz Suhrbier | # Debian Linux Installation Guide |
3 | 1 | Lutz Suhrbier | |
4 | |||
5 | ## Core System Installation |
||
6 | |||
7 | A network connection provided, downloading and booting [Debian's Netinst CD](http://www.debian.org/distrib/netinst) should be the quickest way to get a running _core_ Debian system. For that, deselect any possible selections like e.g. desktop or standard during the software selection part of Debian's _netinst_ installation procedure. |
||
8 | |||
9 | |||
10 | 2 | Lutz Suhrbier | Ask your network administrator for network configuration details. An automatic networking configuration requires a running DHCP system. Otherwise, the following information will be requested during the installation procedure: |
11 | |||
12 | * ip-address |
||
13 | |||
14 | * netmask |
||
15 | |||
16 | * gateway |
||
17 | |||
18 | * dns-nameservers |
||
19 | |||
20 | You can do this during the installation procedure, or change your [[#NetworkConfiguration|network configuration]] later. |
||
21 | |||
22 | |||
23 | 1 | Lutz Suhrbier | For the time being, only the user _root_ should be added to the system. Therefore, just cancel the corresponding dialog during the installation procedure prompting you to enter the first user's name. |
24 | |||
25 | |||
26 | Next, ensure the source list of Debian's package manager apt includes the following statements: |
||
27 | |||
28 | ~~~ |
||
29 | deb http://ftp.de.debian.org/debian/ etch main contrib non-free |
||
30 | deb-src http://ftp.de.debian.org/debian/ etch main contrib non-free |
||
31 | deb http://security.debian.org/ etch/updates main contrib non-free |
||
32 | deb-src http://security.debian.org/ etch/updates main contrib non-free |
||
33 | ~~~ |
||
34 | 2 | Lutz Suhrbier | You can do this during the installation procedure, or later by editing the file _/etc/apt/sources.list_ |
35 | 1 | Lutz Suhrbier | |
36 | |||
37 | Anyway, after the first system boot, you should update your Debian system by running the following commands as _root_: |
||
38 | |||
39 | ~~~ |
||
40 | apt-get update |
||
41 | apt-get upgrade |
||
42 | ~~~ |
||
43 | |||
44 | |||
45 | ## Network Configuration |
||
46 | 5 | Lutz Suhrbier | |
47 | 1 | Lutz Suhrbier | Ask your network administrator for network configuration details. |
48 | 6 | Lutz Suhrbier | |
49 | 1 | Lutz Suhrbier | |
50 | The network configuration file is _/etc/network/interfaces_. Furthermore, you must run the following command to restart your host with the current network configuration: |
||
51 | 6 | Lutz Suhrbier | |
52 | ~~~ |
||
53 | /etc/init.d/networking restart |
||
54 | ~~~ |
||
55 | |||
56 | 7 | Lutz Suhrbier | [[#Automatic|Automatic networking configuration]] requires a running DHCP system. |
57 | 6 | Lutz Suhrbier | |
58 | For [[#Static|static networking]], you will need to request the following information from your network administrator: |
||
59 | |||
60 | * ip-address |
||
61 | |||
62 | * netmask |
||
63 | |||
64 | * gateway |
||
65 | |||
66 | * dns-nameservers |
||
67 | |||
68 | |||
69 | **Important note (Debian Etch only):** The standard etch setup configures ethernet network interfaces (eth0, eth1) using the option **allow-hotplug eth0*. This causes many problems concerning networking (e.g. deletion of the eth0 interface when restarting networking _# /etc/init.d/networking restart_. So, please use the option *auto** instead in _/etc/network/interfaces_. |
||
70 | |||
71 | |||
72 | |||
73 | 1 | Lutz Suhrbier | ### Automatic |
74 | |||
75 | This is an adequate network configuration file for DHCP managed networks. |
||
76 | |||
77 | ~~~ |
||
78 | # The loopback network interface |
||
79 | auto lo |
||
80 | iface lo inet loopback |
||
81 | # The primary network interface |
||
82 | auto eth0 |
||
83 | iface eth0 inet dhcp |
||
84 | ~~~ |
||
85 | |||
86 | |||
87 | ### Static |
||
88 | |||
89 | This is a general network configuration file template for BGBM external network servers: |
||
90 | |||
91 | ~~~ |
||
92 | # The loopback network interface |
||
93 | auto lo |
||
94 | iface lo inet loopback |
||
95 | # The primary network interface |
||
96 | auto eth0 |
||
97 | iface eth0 inet static |
||
98 | address 160.45.63.xx |
||
99 | netmask 255.255.255.0 |
||
100 | network 160.45.63.0 |
||
101 | broadcast 160.45.63.255 |
||
102 | gateway 160.45.63.1 |
||
103 | # dns-* options are implemented by the resolvconf package, if installed |
||
104 | dns-nameservers 160.45.8.8 |
||
105 | dns-search bgbm.fu-berlin. |
||
106 | ~~~ |
||
107 | 7 | Lutz Suhrbier | |
108 | |||
109 | ## Basic System Configuration |
||
110 | |||
111 | Consider to prepare your system with the following useful software packages |
||
112 | |||
113 | | less | Text pager | |
||
114 | | unzip, zip | For .zip files | |
||
115 | | lvm2 | Logical Volume Manager | |
||
116 | | ssh | OpenSSH client and server | |
||
117 | 8 | Lutz Suhrbier | | ntpdate | NTP client (network time sync) | |
118 | 7 | Lutz Suhrbier | |
119 | Use the _apt-get_ command to install these packages |
||
120 | |||
121 | ~~~ |
||
122 | apt-get install less unzip zip lvm2 ssh ntpdate |
||
123 | ~~~ |
||
124 | |||
125 | Follow the instructions below to get a basic configuration for some of these software packages |
||
126 | |||
127 | |||
128 | |||
129 | ### OpenSSH configuration |
||
130 | |||
131 | The openssh server has been configured to accept logins via openssh keys only. So, no username/password access should be possible on this system. Therefore, the following options must be set in the openssh-server configuration file _/etc/ssh/sshd_config_ as follows: |
||
132 | |||
133 | ~~~ |
||
134 | PasswordAuthentication no |
||
135 | UsePAM no |
||
136 | ~~~ |
||
137 | |||
138 | The public keys of users enabled to login as root must be stated in the file_/root/.ssh/authorized_key_. |
||
139 | |||
140 | |||
141 | |||
142 | 1 | Lutz Suhrbier | ### NTP configuration |
143 | 8 | Lutz Suhrbier | |
144 | **Note (For Xen virtual machines only):** Since the system time is set by the host machine, you don't need to setup or configure NTP ! |
||
145 | |||
146 | |||
147 | Using _ntpdate_ is the most comfortable method to update the network time of a host. Just edit _/etc/default/ntpdate_ and set _NTPDATE_USE_NTP_CONF=no_. This enables the time servers listed in _NTPSERVERS_ for time sync. |
||
148 | |||
149 | |||
150 | **Note (For host located at FU-Berlin):** Add the time server of the FU-Berlin (time.fu-berlin.de). Others may be blocked by the firewall of FU-ZEDAT ! |
||
151 | |||
152 | ~~~ |
||
153 | NTPDATE_USE_NTP_CONF=no |
||
154 | NTPSERVERS="time.fu-berlin.de 0.debian.pool.ntp.org 1.debian.pool.ntp.org 2.debian.pool.ntp.org 3.debian.pool.ntp.org" |
||
155 | ~~~ |