1、Insert键选中您要配置阵列的物理硬盘,回车后回答Y 后进行磁盘初始化;注意:此步操作会破坏硬盘上原有的数据 4、光标选择Create Container回车,用键选中您要配置阵列的物理硬盘,回车后 出现Container Properties 选项,根据您的要求选择Raid 级别后将光标移到Done回车接受配置5、按退出阵列配置工具,系统自动RebootM进入阵列配置菜单 2、光标移到Configure选项上回车,在将光标移到New Configuration上回车,回答Yes 3、用空格见依次选中您要配置阵列的硬盘,选中的硬盘光标会不断闪动,硬盘的状态会由Ready变为Online,选择
2、完后可用回车键结束选择 4、此时按下F10键,出现Logical drive信息菜单,可以将光标移到Raid选项上按要求选择Raid 级别,在Size选项上配置Logical Drive的容量大小。配置完成后将光标移到Accept后回车 Esc键退出,屏幕提示是否Save Configuration? 回答Yes后提示配置被保存,按键退回主菜单 6、将光标移到Initialize上回车,屏幕提示用空格键选中要初始化的Logical Drive,按下F10键后提示是否要进行初始化操作,回答Yes后开始初始化;当有多个Logical Drive,请小心选择 7、屏幕会显示的进度条,当进度完成100
3、%后,按sys.Man:不清楚一些命令的用法时可用。src-sys:重新编译FreeBSD的内核所需的源代码。1.2.7.选择安装介质选择CD/DVD。我们选择最小化安装,很快就安装好了。(1) 配置网卡:选择YES,这里需要注意的是,一般我们的服务器有两块网卡,系统检测出两块网卡,FreeBSD中网卡的命名,不是eth0、eth1之类的,而是已检测到该网卡时,系统所加载的模块命名的,如bge、lnc、fxp等。安装界面,只配置一块网卡,另一块网卡,安装完毕,进入系统候再配置。如这里,检测到两块网卡:选择lnc0,进行配置。关闭Ipv6的支持。关闭DHCP按照需求输入IP地址等相关网络信息。接
4、下来,启用该网卡。是否把机器作为网关使用?选择否。(2)关闭inetd(3)启用SSH(4) 设置匿名FTP,NFS server,NFS client选择NO(5) 设置时区选择的时区:(6) 安装FreeBSD可兼容Lnux软件包选择Yes。(7) 接下来,会让你选择FreeBSD的其它package选择Yes,进入选择:Perl5 - perl 5.88然后OK,选择install即可。这一步必须选择,这是安装Squid所需的。(8) 增加用户默FreeBSD root用户能远程登陆的,只有wheel组的用户才可以su为root。(9) 接下来是设置root的密码。然后按照提示,重启机器
5、。(10) 安装完毕。2.安装后注意事项2.1.编辑系统启动文件编辑系统启动文件/etc/rc.conf这里以体育东的一台机器作为例子:# - sysinstall generated deltas - # Thu Sep 7 00:27:32 2006# Created: Thu Sep 7 00:# Enable network daemons for user convenience.# Please make all changes to this file, not to /etc/defaults/rc.conf.# This file now contains just the
6、overrides from /etc/defaults/rc.conf.defaultrouter=10.17.0.1 #默认路由hostname=tyd21 #机器名ifconfig_em0=inet 10.18.12.21 netmask 255.255.0.0 #配置第一块网卡ifconfig_em1=inet 10.17.12.21 netmask 255.255.0.0 #配置第二块网卡#route add -net 10.0.0.0 10.17.0.10 255.0.0.0 #加路由#route add -net 172.16.0.0 10.17.0.1 255.240.0.0
7、#加路由#route add -net 192.168.0.0 10.17.0.1 255.255.0.0 #加路由inetd_enable=NO #关闭inetdlinix_enable=YES #启用Linux软件兼容sshd_enable= #启用SSHusbd_enable= #关闭USBsendmail_enable=NONE #关闭sendmailnfs_sercer_enable= #关闭NFS servernfs_client_enable= #关闭NFS clientportmap_enable= #关闭Portmapsyslogd_enable= #开启系统日志记录sysl
8、ogd_flags=-ss #关闭因开启syslog而开启的514端口update_motd= #关闭开机更新motdblanktime=90 #设置屏保时间saver=logo #设置屏保时的图片firewall_enable= #启用IPFW防火墙firewall_type=open #启用的防火墙默认规则为全部通过firewall_quiet= #增加防火墙规则时,不显示相关信息firewall_logging_enable= #不记录防火墙规则匹配的情况#降低TCP/IP中TIMEWAIT状态,让系统循环使用TIME_WAITsysctl -w net.ipv4.tcp_tw_reus
9、e=1sysctl -w net.ipv4.tcp_tw_recycle=1#下面是Squid的优化选项sysctl -w kern.maxfiles=65536 #系统可打开文件数#加大临时端口范围sysctl -w net.inet.ip.portrange.last=30000sysctl -w kern.maxfilesperproc=4096/root/ipfw.sh2.2.编辑防火墙编辑防火墙/root/ipfw.sh,增加该文件的可执行权限。通用脚本如下:#!/bin/sh#CMD=ipfw -q add OFFICE=219.136.222.90OFFICE2=219.136.
10、222.89TYD=61.140.60.0/24TYD2=202.104.32.0/24DG=218.16.123.0/24DG2=59.36.102.0/24XA=218.30.69.0/24HB=222.222.1.0/24HB2=221.192.129.0/24HZ=61.140.60.9HZ2=61.140.60.33INTERNAT=10.0.0.0/8SSH_PORT=22SSH_PORT2=48022SSH_PORT3=58022FTP_PORT=21FTP_PORT2=48021FTP_PORT3=58021HTTP_PORT=80HTTP_PORT2=8080HTTP_POR
11、T3=8081RSYNC_PORT=873RSYNC_PORT2=20873RSYNC_PORT3=40873LOOP() ipfw -q -f flush $CMD 100 pass all from any to any via lo0 $CMD 200 deny all from any to 127.0.0.0/8 $CMD 300 deny ip from 127.0.0.0/8 to any $CMD 65000 pass all from any to any#set defaultLOOP# start of ipfw rules script #for SSH_PORT AC
12、CEPT LIST$CMD 00501 allow tcp from $OFFICE to me $SSH_PORT in$CMD 00502 allow tcp from $OFFICE2 to me $SSH_PORT in$CMD 00503 allow tcp from $TYD to me $SSH_PORT in$CMD 00504 allow tcp from $TYD2 to me $SSH_PORT in$CMD 00505 allow tcp from $DG to me $SSH_PORT in$CMD 00506 allow tcp from $DG2 to me $S
13、SH_PORT in$CMD 00507 allow tcp from $XA to me $SSH_PORT in$CMD 00508 allow tcp from $HZ to me $SSH_PORT in$CMD 00509 allow tcp from $HZ2 to me $SSH_PORT in$CMD 00510 allow tcp from $HB to me $SSH_PORT in$CMD 00511 allow tcp from $HB2 to me $SSH_PORT in$CMD 00512 allow tcp from $INTERNAT to me $SSH_P
14、ORT in$CMD 00601 allow tcp from $OFFICE to me $SSH_PORT2 in$CMD 00602 allow tcp from $OFFICE2 to me $SSH_PORT2 in$CMD 00603 allow tcp from $TYD to me $SSH_PORT2 in$CMD 00604 allow tcp from $TYD2 to me $SSH_PORT2 in$CMD 00605 allow tcp from $DG to me $SSH_PORT2 in$CMD 00606 allow tcp from $DG2 to me
15、$SSH_PORT2 in$CMD 00607 allow tcp from $XA to me $SSH_PORT2 in$CMD 00608 allow tcp from $HZ to me $SSH_PORT2 in$CMD 00609 allow tcp from $HZ2 to me $SSH_PORT2 in$CMD 00610 allow tcp from $HB to me $SSH_PORT2 in$CMD 00611 allow tcp from $HB2 to me $SSH_PORT2 in$CMD 00612 allow tcp from $INTERNAT to m
16、e $SSH_PORT2 in$CMD 00701 allow tcp from $OFFICE to me $SSH_PORT3 in$CMD 00702 allow tcp from $OFFICE2 to me $SSH_PORT3 in$CMD 00703 allow tcp from $TYD to me $SSH_PORT3 in$CMD 00704 allow tcp from $TYD2 to me $SSH_PORT3 in$CMD 00705 allow tcp from $DG to me $SSH_PORT3 in$CMD 00706 allow tcp from $D
17、G2 to me $SSH_PORT3 in$CMD 00707 allow tcp from $XA to me $SSH_PORT3 in$CMD 00708 allow tcp from $HZ to me $SSH_PORT3 in$CMD 00709 allow tcp from $HZ2 to me $SSH_PORT3 in$CMD 00710 allow tcp from $HB to me $SSH_PORT3 in$CMD 00711 allow tcp from $HB2 to me $SSH_PORT3 in$CMD 00712 allow tcp from $INTE
18、RNAT to me $SSH_PORT3 in$CMD 00990 drop tcp from any to me $SSH_PORT in$CMD 00991 drop tcp from any to me $SSH_PORT2 in$CMD 00992 drop tcp from any to me $SSH_PORT3 in#for ftp$CMD 01501 allow tcp from $OFFICE to me $FTP_PORT in$CMD 01502 allow tcp from $OFFICE2 to me $FTP_PORT in$CMD 01503 allow tcp
19、 from $TYD to me $FTP_PORT in$CMD 01504 allow tcp from $HZ to me $FTP_PORT in$CMD 01505 allow tcp from $HZ2 to me $FTP_PORT in$CMD 01506 allow tcp from $INTERNAT to me $FTP_PORT in$CMD 01601 allow tcp from $OFFICE to me $FTP_PORT2 in$CMD 01602 allow tcp from $OFFICE2 to me $FTP_PORT2 in$CMD 01603 al
20、low tcp from $TYD to me $FTP_PORT2 in$CMD 01604 allow tcp from $HZ to me $FTP_PORT2 in$CMD 01605 allow tcp from $HZ2 to me $FTP_PORT2 in$CMD 01606 allow tcp from $INTERNAT to me $FTP_PORT2 in$CMD 01701 allow tcp from $OFFICE to me $FTP_PORT3 in$CMD 01702 allow tcp from $OFFICE2 to me $FTP_PORT3 in$C
21、MD 01703 allow tcp from $TYD to me $FTP_PORT3 in$CMD 01704 allow tcp from $HZ to me $FTP_PORT3 in$CMD 01705 allow tcp from $HZ2 to me $FTP_PORT3 in$CMD 01706 allow tcp from $INTERNAT to me $FTP_PORT3 in$CMD 01990 drop tcp from any to me $FTP_PORT in$CMD 01991 drop tcp from any to me $FTP_PORT2 in$CM
22、D 01992 drop tcp from any to me $FTP_PORT3 in#for http#$CMD 02501 allow tcp from any to me $HTTP_PORT in#$CMD 02502 allow tcp from any to me $HTTP_PORT2 in#$CMD 02503 allow tcp from any to me $HTTP_PORT3 in# For RSYNC $CMD 03501 allow tcp from $OFFICE to me $RSYNC_PORT in$CMD 03502 allow tcp from $O
23、FFICE2 to me $RSYNC_PORT in$CMD 03503 allow tcp from $TYD to me $RSYNC_PORT in$CMD 03504 allow tcp from $TYD2 to me $RSYNC_PORT in$CMD 03505 allow tcp from $DG to me $RSYNC_PORT in$CMD 03506 allow tcp from $DG2 to me $RSYNC_PORT in$CMD 03507 allow tcp from $XA to me $RSYNC_PORT in$CMD 03508 allow tc
24、p from $HZ to me $RSYNC_PORT in$CMD 03509 allow tcp from $HZ2 to me $RSYNC_PORT in$CMD 03510 allow tcp from $HB to me $RSYNC_PORT in$CMD 03511 allow tcp from $HB2 to me $RSYNC_PORT in$CMD 03512 allow tcp from $INTERNAT to me $RSYNC_PORT in$CMD 03601 allow tcp from $OFFICE to me $RSYNC_PORT2 in$CMD 0
25、3602 allow tcp from $OFFICE2 to me $RSYNC_PORT2 in$CMD 03603 allow tcp from $TYD to me $RSYNC_PORT2 in$CMD 03604 allow tcp from $TYD2 to me $RSYNC_PORT2 in$CMD 03605 allow tcp from $DG to me $RSYNC_PORT2 in$CMD 03606 allow tcp from $DG2 to me $RSYNC_PORT2 in$CMD 03607 allow tcp from $XA to me $RSYNC_PORT2 in$CMD 03608 allow tcp from $HZ to me $RSYNC_PORT2 in$CMD 03609 allow tcp from $HZ2 to me $RSYNC_PORT2 in$CMD 03610 allow tcp from $HB to me $RS
copyright@ 2008-2022 冰豆网网站版权所有
经营许可证编号:鄂ICP备2022015515号-1
升级会员 