SlideShare a Scribd company logo
1 of 10
Download to read offline
############### Configuring Public and Private Network
#Edit Host file on all nodes
vi /etc/hosts

# Do not remove the following line, or various programs
# that require network functionality will fail.
127.0.0.1
#::1

localhost.localdomain localhost
localhost6.localdomain6 localhost6

#public IP
192.168.100.101
192.168.100.102
192.168.100.103
192.168.100.104
192.168.100.105
192.168.100.106

rac01.ent.net
rac02.ent.net
rac03.ent.net
rac04.ent.net
rac05.ent.net
rac06.ent.net

rac01
rac02
rac03
rac04
rac05
rac06

#virtual IP
192.168.100.107
192.168.100.108
192.168.100.109
192.168.100.110
192.168.100.111
192.168.100.112

rac01-vip.ent.net
rac02-vip.ent.net
rac03-vip.ent.net
rac04-vip.ent.net
rac05-vip.ent.net
rac06-vip.ent.net

rac01-vip
rac02-vip
rac03-vip
rac04-vip
rac05-vip
rac06-vip

#Private IP
192.168.222.1
192.168.222.2
192.168.222.3
192.168.222.4
192.168.222.5
192.168.222.6

rac01-priv.ent.net rac01-priv
rac02-priv.ent.net rac02-priv
rac03-priv.ent.net rac03-priv
rac04-priv.ent.net rac04-priv
rac05-priv.ent.net rac05-priv
rac06-priv.ent.net rac06-priv
#SCAN IP
#192.168.100.113 entdbscan
#192.168.100.114 entdbscan
#192.168.100.115 entdbscan

vi /etc/resolv.conf
search ent.net
nameserver 192.168.0.3
nameserver 192.168.0.4
#####Firewall & SELinux
/etc/rc.d/init.d/iptables stop
chkconfig iptables off
/etc/rc.d/init.d/iptables status

vi /etc/sysconfig/selinux
SELINUX=disabled
##Restart OR below commands
getenforce (returns "Enforcing")
setenforce 0
getenforce (returns "Permissive")
#####NTP service
vi /etc/sysconfig/ntpd
# Drop root to id 'ntp:ntp' by default.
OPTIONS="-x -u ntp:ntp -p /var/run/ntpd.pid"
# Set to 'yes' to sync hw clock after successful ntpdate
SYNC_HWCLOCK=no
# Additional options for ntpdate
NTPDATE_OPTIONS=""
sbin/service ntpd restart
Users
#########Grid

groupadd -g 1000 oinstall
groupadd -g 1200 asmadmin
groupadd -g 1201 asmdba
groupadd -g 1202 asmoper
useradd -m -u 1100 -g oinstall -G asmadmin,asmdba,asmoper -d /home/grid -s /bin/bash grid
id grid
passwd grid

su - grid
echo > .bash_profile
vi .bash_profile
# .bash_profile
# Get the aliases and functions
if [ -f ~/.bashrc ]; then
. ~/.bashrc
fi
export ORACLE_SID=+ASM1
export JAVA_HOME=/usr/local/java
export ORACLE_BASE=/grid/gridbase
export ORACLE_HOME=/grid/product/11.2.0/grid
#export ORACLE_PATH=/oracle/common/oracle/sql
export ORACLE_TERM=xterm
#export NLS_DATE_FORMAT="DD-MON-YYYY HH24:MI:SS"
#export TNS_ADMIN=$ORACLE_HOME/network/admin
export ORA_NLS11=$ORACLE_HOME/nls/data
PATH=.:${JAVA_HOME}/bin:${PATH}:$HOME/bin:$ORACLE_HOME/bin
PATH=${PATH}:/usr/bin:/bin:/usr/bin/X11:/usr/local/bin
export PATH
LD_LIBRARY_PATH=$ORACLE_HOME/lib
LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:$ORACLE_HOME/oracm/lib
LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:/lib:/usr/lib:/usr/local/lib
export LD_LIBRARY_PATH
CLASSPATH=$ORACLE_HOME/JRE
CLASSPATH=${CLASSPATH}:$ORACLE_HOME/jlib
CLASSPATH=${CLASSPATH}:$ORACLE_HOME/rdbms/jlib
CLASSPATH=${CLASSPATH}:$ORACLE_HOME/network/jlib
export CLASSPATH
export THREADS_FLAG=native
export TEMP=/tmp
export TMPDIR=/tmp
umask 022
# User specific environment and startup programs
PATH=$PATH:$HOME/bin
export PATH

#########Oracle
groupadd -g 1300 dba
groupadd -g 1301 oper
useradd -m -u 1101 -g oinstall -G dba,oper,asmdba -d /home/oracle -s /bin/bash oracle
id oracle
passwd oracle

su - oracle
echo > .bash_profile
vi .bash_profile
# .bash_profile
# Get the aliases and functions
if [ -f ~/.bashrc ]; then
. ~/.bashrc
fi
export ORACLE_SID=entdb1
export ORACLE_UNQNAME=entdb
export JAVA_HOME=/usr/local/java
export ORACLE_BASE=/oracle
export ORACLE_HOME=$ORACLE_BASE/product/11.2.0/db_1
#export ORACLE_PATH=/app/common/oracle/sql
#export SQLPATH=/app/common/oracle/sql
export ORACLE_TERM=xterm
export NLS_LANG=AMERICAN_AMERICA.AR8MSWIN1256
#export NLS_DATE_FORMAT="DD-MON-YYYY HH24:MI:SS"
#export TNS_ADMIN=$ORACLE_HOME/network/admin
export ORA_NLS11=$ORACLE_HOME/nls/data
PATH=.:${JAVA_HOME}/bin:${PATH}:$HOME/bin:$ORACLE_HOME/bin
PATH=${PATH}:/usr/bin:/bin:/usr/bin/X11:/usr/local/bin
#PATH=${PATH}:/app/common/oracle/bin
export PATH
LD_LIBRARY_PATH=$ORACLE_HOME/lib
LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:$ORACLE_HOME/oracm/lib
LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:/lib:/usr/lib:/usr/local/lib
export LD_LIBRARY_PATH
CLASSPATH=$ORACLE_HOME/JRE
CLASSPATH=${CLASSPATH}:$ORACLE_HOME/jlib
CLASSPATH=${CLASSPATH}:$ORACLE_HOME/rdbms/jlib
CLASSPATH=${CLASSPATH}:$ORACLE_HOME/network/jlib
export CLASSPATH
export THREADS_FLAG=native
export TEMP=/tmp
export TMPDIR=/tmp
umask 022
# User specific environment and startup programs
PATH=$PATH:$HOME/bin
export PATH
#########Nobody
id nobody
usr/sbin/useradd nobody

###############Directories

mkdir -p /grid
mkdir -p /grid/11.2.0/gridbase
chown -R grid:oinstall /grid
mkdir -p /oracle
chown oracle:oinstall /oracle
chmod -R 775 /oracle

##############Resource Limits

#####
cat >> /etc/security/limits.conf <<EOF
grid soft nproc 2047
grid hard nproc 16384
grid soft nofile 1024
grid hard nofile 65536
oracle soft nproc 2047
oracle hard nproc 16384
oracle soft nofile 1024
oracle hard nofile 65536
EOF
#####
cat >> /etc/pam.d/login <<EOF
session required pam_limits.so
EOF
#####Bourne, Bash, Korn shell
cat >> /etc/profile <<EOF
if [ $USER = "oracle" ] || [ $USER = "grid" ]; then
if [ $SHELL = "/bin/ksh" ]; then
ulimit -p 16384
ulimit -n 65536
else
ulimit -u 16384 -n 65536
fi
umask 022
fi
EOF
#####Cshell
cat >> /etc/csh.login <<EOF
if ( $USER == "oracle" || $USER == "grid" )
then
limit maxproc 16384
limit descriptors 65536
endif
EOF

###############kernel parameters
/etc/sysctl.conf
kernel.shmmax = 4294967295
kernel.shmall = 2097152
kernel.shmmni = 4096
kernel.sem = 250 32000 100 128
fs.file-max = 6815744
net.ipv4.ip_local_port_range = 9000 65500
net.core.rmem_default=262144
net.core.rmem_max=4194304
net.core.wmem_default=262144
net.core.wmem_max=1048576
fs.aio-max-nr=1048576
sysctl -p

###############ASMLib (Root)

ASMLib Kernel Driver:oracleasm-2.6.18-238.el5-2.0.5-1.el5.x86_64.rpm
Userspace Library:oracleasmlib-2.0.4-1.el5.x86_64.rpm
Driver Support Files:oracleasm-support-2.1.7-1.el5.x86_64.rpm

rpm -Uvh oracleasm-support-2.1.3-1.el5.x86_64.rpm
rpm -Uvh oracleasm-2.6.18-164.el5-2.0.5-1.el5.x86_64.rpm
rpm -Uvh oracleasmlib-2.0.4-1.el5.x86_64.rpm

/usr/sbin/oracleasm configure -i
grid
asmadmin
y
y

#(
# Creates the /etc/sysconfig/oracleasm configuration file
# Creates the /dev/oracleasm mount point
# Mounts the ASMLib driver file system
#)
#load the oracleasm kernel module:
/usr/sbin/oracleasm init

#To avoid ASM issue with Multipath devices on Linux
vi /etc/sysconfig/oracleasm
ORACLEASM_SCANORDER="dm"
ORACLEASM_SCANEXCLUDE="sd"

/etc/init.d/oracleasm stop
/etc/init.d/oracleasm start

##########################################################
###############ASM Disks

#Obtain wwid for raw devices
for i in `cat /proc/partitions | awk '{print $4}' |grep sd | grep [a-z]$`; do echo "### $i: `scsi_id -g -u s /block/$i`"; done
#Configuring multipath.conf using output of above command
vi /etc/multipath.conf
multipaths {
multipath {
wwid
alias
path_grouping_policy
path_selector
failback
rr_weight
no_path_retry
}

service multipathd restart
multipath –ll

360014380125d8be50000a00001d00000
Data1
multibus
"round-robin 0"
manual
priorities
5
dmsetup ls | sort
ls -l /dev/disk/by-id/
ls -l /dev/dm-*
#/dev/mapper/ devices are persistent, created sufficiently early during the boot process and makes use
of their defined aliases - use only these devices to access and interact with multipathed devices.
ls –l /dev/mapper/*
# Ownership and Permissions
# OCR & VOTE disks
chown grid:asmadmin /dev/mapper/Ocr*
chmod 0640 /dev/mapper/ocr*
chown grid:asmadmin /dev/mapper/Data*
chmod 0640 /dev/mapper/data*
chown grid:asmadmin /dev/mapper/Fra*
chmod 0640 /dev/mapper/fra*

/usr/sbin/oracleasm createdisk OCR1 /dev/mapper/Ocr1
/usr/sbin/oracleasm createdisk OCR2 /dev/mapper/Ocr2
/usr/sbin/oracleasm createdisk OCR3 /dev/mapper/Ocr3

/usr/sbin/oracleasm createdisk DATA1 /dev/mapper/Data1
/usr/sbin/oracleasm createdisk DATA2 /dev/mapper/Data2

/usr/sbin/oracleasm createdisk FRA1 /dev/mapper/Fra1
#Other nodes
/usr/sbin/oracleasm scandisks
/usr/sbin/oracleasm listdisks

More Related Content

What's hot

Importance of sshfp and configuring sshfp for network devices
Importance of sshfp and configuring sshfp for network devicesImportance of sshfp and configuring sshfp for network devices
Importance of sshfp and configuring sshfp for network devicesMuhammad Moinur Rahman
 
Oracle 18c installation on Oracle Enterprise Linux 7.4
Oracle 18c installation on Oracle Enterprise Linux 7.4Oracle 18c installation on Oracle Enterprise Linux 7.4
Oracle 18c installation on Oracle Enterprise Linux 7.4Mahamudul Hasan
 
Linux networking commands
Linux networking commandsLinux networking commands
Linux networking commandsSayed Ahmed
 
Networking Tutorial Goes to Basic PPP Configuration
Networking Tutorial Goes to Basic PPP ConfigurationNetworking Tutorial Goes to Basic PPP Configuration
Networking Tutorial Goes to Basic PPP Configuration3Anetwork com
 
IPv6SG_03_20121103
IPv6SG_03_20121103IPv6SG_03_20121103
IPv6SG_03_20121103@ otsuka752
 
Offline bruteforce attack on wi fi protected setup
Offline bruteforce attack on wi fi protected setupOffline bruteforce attack on wi fi protected setup
Offline bruteforce attack on wi fi protected setupCyber Security Alliance
 
Creating "Secure" PHP applications, Part 2, Server Hardening
Creating "Secure" PHP applications, Part 2, Server HardeningCreating "Secure" PHP applications, Part 2, Server Hardening
Creating "Secure" PHP applications, Part 2, Server Hardeningarchwisp
 
PhNOG 2019: RPKI Deployment Update
PhNOG 2019: RPKI Deployment UpdatePhNOG 2019: RPKI Deployment Update
PhNOG 2019: RPKI Deployment UpdateAPNIC
 
Scaling mysql with python (and Docker).
Scaling mysql with python (and Docker).Scaling mysql with python (and Docker).
Scaling mysql with python (and Docker).Roberto Polli
 

What's hot (18)

Importance of sshfp and configuring sshfp for network devices
Importance of sshfp and configuring sshfp for network devicesImportance of sshfp and configuring sshfp for network devices
Importance of sshfp and configuring sshfp for network devices
 
Oracle 18c installation on Oracle Enterprise Linux 7.4
Oracle 18c installation on Oracle Enterprise Linux 7.4Oracle 18c installation on Oracle Enterprise Linux 7.4
Oracle 18c installation on Oracle Enterprise Linux 7.4
 
IPV6 IPv6 Routing Lab By Rob Hamm
IPV6 IPv6 Routing Lab  By Rob HammIPV6 IPv6 Routing Lab  By Rob Hamm
IPV6 IPv6 Routing Lab By Rob Hamm
 
Mini CTF workshop dump
Mini CTF workshop dumpMini CTF workshop dump
Mini CTF workshop dump
 
Linux networking commands
Linux networking commandsLinux networking commands
Linux networking commands
 
Hands-on ethernet driver
Hands-on ethernet driverHands-on ethernet driver
Hands-on ethernet driver
 
บทท 7
บทท   7บทท   7
บทท 7
 
portfolio2
portfolio2portfolio2
portfolio2
 
Networking Tutorial Goes to Basic PPP Configuration
Networking Tutorial Goes to Basic PPP ConfigurationNetworking Tutorial Goes to Basic PPP Configuration
Networking Tutorial Goes to Basic PPP Configuration
 
IPv6SG_03_20121103
IPv6SG_03_20121103IPv6SG_03_20121103
IPv6SG_03_20121103
 
Offline bruteforce attack on wi fi protected setup
Offline bruteforce attack on wi fi protected setupOffline bruteforce attack on wi fi protected setup
Offline bruteforce attack on wi fi protected setup
 
Linux administration ii-parti
Linux administration ii-partiLinux administration ii-parti
Linux administration ii-parti
 
Creating "Secure" PHP applications, Part 2, Server Hardening
Creating "Secure" PHP applications, Part 2, Server HardeningCreating "Secure" PHP applications, Part 2, Server Hardening
Creating "Secure" PHP applications, Part 2, Server Hardening
 
Netmiko library
Netmiko libraryNetmiko library
Netmiko library
 
20141106 asfws unicode_hacks
20141106 asfws unicode_hacks20141106 asfws unicode_hacks
20141106 asfws unicode_hacks
 
PhNOG 2019: RPKI Deployment Update
PhNOG 2019: RPKI Deployment UpdatePhNOG 2019: RPKI Deployment Update
PhNOG 2019: RPKI Deployment Update
 
Scaling mysql with python (and Docker).
Scaling mysql with python (and Docker).Scaling mysql with python (and Docker).
Scaling mysql with python (and Docker).
 
DNS SERVER
DNS SERVERDNS SERVER
DNS SERVER
 

Viewers also liked

Cygwin installation
Cygwin installationCygwin installation
Cygwin installationMohsen B
 
security-checklist-database
security-checklist-databasesecurity-checklist-database
security-checklist-databaseMohsen B
 
Restore procedure
Restore procedureRestore procedure
Restore procedureMohsen B
 
Asm 11g r1_bestpractices_7_301
Asm 11g r1_bestpractices_7_301Asm 11g r1_bestpractices_7_301
Asm 11g r1_bestpractices_7_301Mohsen B
 
Automate DG Best Practices
Automate DG  Best PracticesAutomate DG  Best Practices
Automate DG Best PracticesMohsen B
 
Finding root blocker in oracle database
Finding root blocker in oracle databaseFinding root blocker in oracle database
Finding root blocker in oracle databaseMohsen B
 

Viewers also liked (8)

Cygwin installation
Cygwin installationCygwin installation
Cygwin installation
 
security-checklist-database
security-checklist-databasesecurity-checklist-database
security-checklist-database
 
Restore procedure
Restore procedureRestore procedure
Restore procedure
 
Economics
EconomicsEconomics
Economics
 
Asm 11g r1_bestpractices_7_301
Asm 11g r1_bestpractices_7_301Asm 11g r1_bestpractices_7_301
Asm 11g r1_bestpractices_7_301
 
Automate DG Best Practices
Automate DG  Best PracticesAutomate DG  Best Practices
Automate DG Best Practices
 
Finding root blocker in oracle database
Finding root blocker in oracle databaseFinding root blocker in oracle database
Finding root blocker in oracle database
 
Financing Education in Thailand
Financing Education in ThailandFinancing Education in Thailand
Financing Education in Thailand
 

Similar to Rac

Oracle applications r12.2.0 installation on linux
Oracle applications r12.2.0 installation on linuxOracle applications r12.2.0 installation on linux
Oracle applications r12.2.0 installation on linuxRavi Kumar Lanke
 
Asian Spirit 3 Day Dba On Ubl
Asian Spirit 3 Day Dba On UblAsian Spirit 3 Day Dba On Ubl
Asian Spirit 3 Day Dba On Ublnewrforce
 
Oracle 11g R2 RAC setup on rhel 5.0
Oracle 11g R2 RAC setup on rhel 5.0Oracle 11g R2 RAC setup on rhel 5.0
Oracle 11g R2 RAC setup on rhel 5.0Santosh Kangane
 
BKK16-211 Internet of Tiny Linux (io tl)- Status and Progress
BKK16-211 Internet of Tiny Linux (io tl)- Status and ProgressBKK16-211 Internet of Tiny Linux (io tl)- Status and Progress
BKK16-211 Internet of Tiny Linux (io tl)- Status and ProgressLinaro
 
Reverse engineering Swisscom's Centro Grande Modem
Reverse engineering Swisscom's Centro Grande ModemReverse engineering Swisscom's Centro Grande Modem
Reverse engineering Swisscom's Centro Grande ModemCyber Security Alliance
 
TESTING - Drop 12c RAC Database, Database Software and GI
TESTING - Drop 12c RAC Database, Database Software and GITESTING - Drop 12c RAC Database, Database Software and GI
TESTING - Drop 12c RAC Database, Database Software and GIMonowar Mukul
 
Linux Networking Commands
Linux Networking CommandsLinux Networking Commands
Linux Networking Commandstmavroidis
 
Openstack 101
Openstack 101Openstack 101
Openstack 101POSSCON
 
SWAT Style – Live Network Crypto Hacking and Exploitation by Kevin Cardwell a...
SWAT Style – Live Network Crypto Hacking and Exploitation by Kevin Cardwell a...SWAT Style – Live Network Crypto Hacking and Exploitation by Kevin Cardwell a...
SWAT Style – Live Network Crypto Hacking and Exploitation by Kevin Cardwell a...EC-Council
 
One Click Provisioning With Enterprise Manager 12c
One Click Provisioning With Enterprise Manager 12cOne Click Provisioning With Enterprise Manager 12c
One Click Provisioning With Enterprise Manager 12cJosh Turner
 
OakTable World Sep14 clonedb
OakTable World Sep14 clonedb OakTable World Sep14 clonedb
OakTable World Sep14 clonedb Connor McDonald
 
Oracle obiee-11-installation-guide 11.1.1.6.0
Oracle obiee-11-installation-guide 11.1.1.6.0Oracle obiee-11-installation-guide 11.1.1.6.0
Oracle obiee-11-installation-guide 11.1.1.6.0Aadiseshu Immadisetty
 
파이썬 개발환경 구성하기의 끝판왕 - Docker Compose
파이썬 개발환경 구성하기의 끝판왕 - Docker Compose파이썬 개발환경 구성하기의 끝판왕 - Docker Compose
파이썬 개발환경 구성하기의 끝판왕 - Docker Composeraccoony
 
Multiple instances on linux
Multiple instances on linuxMultiple instances on linux
Multiple instances on linuxVasudeva Rao
 
CCNA Security Lab 9 - Enabling SSH and HTTPS access to Cisco IOS Routers - CLI
CCNA Security Lab 9 - Enabling SSH and HTTPS access to Cisco IOS Routers - CLICCNA Security Lab 9 - Enabling SSH and HTTPS access to Cisco IOS Routers - CLI
CCNA Security Lab 9 - Enabling SSH and HTTPS access to Cisco IOS Routers - CLIHoàng Hải Nguyễn
 

Similar to Rac (20)

Oracle applications r12.2.0 installation on linux
Oracle applications r12.2.0 installation on linuxOracle applications r12.2.0 installation on linux
Oracle applications r12.2.0 installation on linux
 
Rac on NFS
Rac on NFSRac on NFS
Rac on NFS
 
Asian Spirit 3 Day Dba On Ubl
Asian Spirit 3 Day Dba On UblAsian Spirit 3 Day Dba On Ubl
Asian Spirit 3 Day Dba On Ubl
 
Alcatel vm
Alcatel vmAlcatel vm
Alcatel vm
 
Oracle 11g R2 RAC setup on rhel 5.0
Oracle 11g R2 RAC setup on rhel 5.0Oracle 11g R2 RAC setup on rhel 5.0
Oracle 11g R2 RAC setup on rhel 5.0
 
BKK16-211 Internet of Tiny Linux (io tl)- Status and Progress
BKK16-211 Internet of Tiny Linux (io tl)- Status and ProgressBKK16-211 Internet of Tiny Linux (io tl)- Status and Progress
BKK16-211 Internet of Tiny Linux (io tl)- Status and Progress
 
Unidade3 roteiro proxy
Unidade3 roteiro proxyUnidade3 roteiro proxy
Unidade3 roteiro proxy
 
Reverse engineering Swisscom's Centro Grande Modem
Reverse engineering Swisscom's Centro Grande ModemReverse engineering Swisscom's Centro Grande Modem
Reverse engineering Swisscom's Centro Grande Modem
 
TESTING - Drop 12c RAC Database, Database Software and GI
TESTING - Drop 12c RAC Database, Database Software and GITESTING - Drop 12c RAC Database, Database Software and GI
TESTING - Drop 12c RAC Database, Database Software and GI
 
Linux Networking Commands
Linux Networking CommandsLinux Networking Commands
Linux Networking Commands
 
Openstack 101
Openstack 101Openstack 101
Openstack 101
 
SWAT Style – Live Network Crypto Hacking and Exploitation by Kevin Cardwell a...
SWAT Style – Live Network Crypto Hacking and Exploitation by Kevin Cardwell a...SWAT Style – Live Network Crypto Hacking and Exploitation by Kevin Cardwell a...
SWAT Style – Live Network Crypto Hacking and Exploitation by Kevin Cardwell a...
 
One Click Provisioning With Enterprise Manager 12c
One Click Provisioning With Enterprise Manager 12cOne Click Provisioning With Enterprise Manager 12c
One Click Provisioning With Enterprise Manager 12c
 
OakTable World Sep14 clonedb
OakTable World Sep14 clonedb OakTable World Sep14 clonedb
OakTable World Sep14 clonedb
 
Cisco Ios advanced
Cisco Ios advancedCisco Ios advanced
Cisco Ios advanced
 
Oracle obiee-11-installation-guide 11.1.1.6.0
Oracle obiee-11-installation-guide 11.1.1.6.0Oracle obiee-11-installation-guide 11.1.1.6.0
Oracle obiee-11-installation-guide 11.1.1.6.0
 
파이썬 개발환경 구성하기의 끝판왕 - Docker Compose
파이썬 개발환경 구성하기의 끝판왕 - Docker Compose파이썬 개발환경 구성하기의 끝판왕 - Docker Compose
파이썬 개발환경 구성하기의 끝판왕 - Docker Compose
 
Multiple instances on linux
Multiple instances on linuxMultiple instances on linux
Multiple instances on linux
 
Linux networking
Linux networkingLinux networking
Linux networking
 
CCNA Security Lab 9 - Enabling SSH and HTTPS access to Cisco IOS Routers - CLI
CCNA Security Lab 9 - Enabling SSH and HTTPS access to Cisco IOS Routers - CLICCNA Security Lab 9 - Enabling SSH and HTTPS access to Cisco IOS Routers - CLI
CCNA Security Lab 9 - Enabling SSH and HTTPS access to Cisco IOS Routers - CLI
 

More from Mohsen B

Problem details
Problem detailsProblem details
Problem detailsMohsen B
 
Using sap-netweaver-with-dbim-2594359
Using sap-netweaver-with-dbim-2594359Using sap-netweaver-with-dbim-2594359
Using sap-netweaver-with-dbim-2594359Mohsen B
 
Backup script
Backup scriptBackup script
Backup scriptMohsen B
 
Refresh standby using rman backup
Refresh standby using rman backupRefresh standby using rman backup
Refresh standby using rman backupMohsen B
 
Using a physical standby database for read write
Using a physical standby database for read writeUsing a physical standby database for read write
Using a physical standby database for read writeMohsen B
 
Huge pages
Huge pagesHuge pages
Huge pagesMohsen B
 
Simple network troubleshooting
Simple network troubleshootingSimple network troubleshooting
Simple network troubleshootingMohsen B
 
Rhel asmlib to_udev
Rhel asmlib to_udevRhel asmlib to_udev
Rhel asmlib to_udevMohsen B
 
Oracle & sql server comparison 2
Oracle & sql server comparison 2Oracle & sql server comparison 2
Oracle & sql server comparison 2Mohsen B
 

More from Mohsen B (10)

Problem details
Problem detailsProblem details
Problem details
 
Using sap-netweaver-with-dbim-2594359
Using sap-netweaver-with-dbim-2594359Using sap-netweaver-with-dbim-2594359
Using sap-netweaver-with-dbim-2594359
 
Backup script
Backup scriptBackup script
Backup script
 
Refresh standby using rman backup
Refresh standby using rman backupRefresh standby using rman backup
Refresh standby using rman backup
 
Using a physical standby database for read write
Using a physical standby database for read writeUsing a physical standby database for read write
Using a physical standby database for read write
 
Cman
CmanCman
Cman
 
Huge pages
Huge pagesHuge pages
Huge pages
 
Simple network troubleshooting
Simple network troubleshootingSimple network troubleshooting
Simple network troubleshooting
 
Rhel asmlib to_udev
Rhel asmlib to_udevRhel asmlib to_udev
Rhel asmlib to_udev
 
Oracle & sql server comparison 2
Oracle & sql server comparison 2Oracle & sql server comparison 2
Oracle & sql server comparison 2
 

Recently uploaded

GenAI and AI GCC State of AI_Object Automation Inc
GenAI and AI GCC State of AI_Object Automation IncGenAI and AI GCC State of AI_Object Automation Inc
GenAI and AI GCC State of AI_Object Automation IncObject Automation
 
Meet the new FSP 3000 M-Flex800™
Meet the new FSP 3000 M-Flex800™Meet the new FSP 3000 M-Flex800™
Meet the new FSP 3000 M-Flex800™Adtran
 
AI Fame Rush Review – Virtual Influencer Creation In Just Minutes
AI Fame Rush Review – Virtual Influencer Creation In Just MinutesAI Fame Rush Review – Virtual Influencer Creation In Just Minutes
AI Fame Rush Review – Virtual Influencer Creation In Just MinutesMd Hossain Ali
 
Digital magic. A small project for controlling smart light bulbs.
Digital magic. A small project for controlling smart light bulbs.Digital magic. A small project for controlling smart light bulbs.
Digital magic. A small project for controlling smart light bulbs.francesco barbera
 
COMPUTER 10 Lesson 8 - Building a Website
COMPUTER 10 Lesson 8 - Building a WebsiteCOMPUTER 10 Lesson 8 - Building a Website
COMPUTER 10 Lesson 8 - Building a Websitedgelyza
 
NIST Cybersecurity Framework (CSF) 2.0 Workshop
NIST Cybersecurity Framework (CSF) 2.0 WorkshopNIST Cybersecurity Framework (CSF) 2.0 Workshop
NIST Cybersecurity Framework (CSF) 2.0 WorkshopBachir Benyammi
 
Do we need a new standard for visualizing the invisible?
Do we need a new standard for visualizing the invisible?Do we need a new standard for visualizing the invisible?
Do we need a new standard for visualizing the invisible?SANGHEE SHIN
 
Spring24-Release Overview - Wellingtion User Group-1.pdf
Spring24-Release Overview - Wellingtion User Group-1.pdfSpring24-Release Overview - Wellingtion User Group-1.pdf
Spring24-Release Overview - Wellingtion User Group-1.pdfAnna Loughnan Colquhoun
 
9 Steps For Building Winning Founding Team
9 Steps For Building Winning Founding Team9 Steps For Building Winning Founding Team
9 Steps For Building Winning Founding TeamAdam Moalla
 
Cybersecurity Workshop #1.pptx
Cybersecurity Workshop #1.pptxCybersecurity Workshop #1.pptx
Cybersecurity Workshop #1.pptxGDSC PJATK
 
Comparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and IstioComparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and IstioChristian Posta
 
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...Will Schroeder
 
Linked Data in Production: Moving Beyond Ontologies
Linked Data in Production: Moving Beyond OntologiesLinked Data in Production: Moving Beyond Ontologies
Linked Data in Production: Moving Beyond OntologiesDavid Newbury
 
UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...
UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...
UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...UbiTrack UK
 
20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf
20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf
20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdfJamie (Taka) Wang
 
Introduction to Quantum Computing
Introduction to Quantum ComputingIntroduction to Quantum Computing
Introduction to Quantum ComputingGDSC PJATK
 
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPA
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPAAnypoint Code Builder , Google Pub sub connector and MuleSoft RPA
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPAshyamraj55
 
OpenShift Commons Paris - Choose Your Own Observability Adventure
OpenShift Commons Paris - Choose Your Own Observability AdventureOpenShift Commons Paris - Choose Your Own Observability Adventure
OpenShift Commons Paris - Choose Your Own Observability AdventureEric D. Schabell
 
Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1DianaGray10
 
UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8DianaGray10
 

Recently uploaded (20)

GenAI and AI GCC State of AI_Object Automation Inc
GenAI and AI GCC State of AI_Object Automation IncGenAI and AI GCC State of AI_Object Automation Inc
GenAI and AI GCC State of AI_Object Automation Inc
 
Meet the new FSP 3000 M-Flex800™
Meet the new FSP 3000 M-Flex800™Meet the new FSP 3000 M-Flex800™
Meet the new FSP 3000 M-Flex800™
 
AI Fame Rush Review – Virtual Influencer Creation In Just Minutes
AI Fame Rush Review – Virtual Influencer Creation In Just MinutesAI Fame Rush Review – Virtual Influencer Creation In Just Minutes
AI Fame Rush Review – Virtual Influencer Creation In Just Minutes
 
Digital magic. A small project for controlling smart light bulbs.
Digital magic. A small project for controlling smart light bulbs.Digital magic. A small project for controlling smart light bulbs.
Digital magic. A small project for controlling smart light bulbs.
 
COMPUTER 10 Lesson 8 - Building a Website
COMPUTER 10 Lesson 8 - Building a WebsiteCOMPUTER 10 Lesson 8 - Building a Website
COMPUTER 10 Lesson 8 - Building a Website
 
NIST Cybersecurity Framework (CSF) 2.0 Workshop
NIST Cybersecurity Framework (CSF) 2.0 WorkshopNIST Cybersecurity Framework (CSF) 2.0 Workshop
NIST Cybersecurity Framework (CSF) 2.0 Workshop
 
Do we need a new standard for visualizing the invisible?
Do we need a new standard for visualizing the invisible?Do we need a new standard for visualizing the invisible?
Do we need a new standard for visualizing the invisible?
 
Spring24-Release Overview - Wellingtion User Group-1.pdf
Spring24-Release Overview - Wellingtion User Group-1.pdfSpring24-Release Overview - Wellingtion User Group-1.pdf
Spring24-Release Overview - Wellingtion User Group-1.pdf
 
9 Steps For Building Winning Founding Team
9 Steps For Building Winning Founding Team9 Steps For Building Winning Founding Team
9 Steps For Building Winning Founding Team
 
Cybersecurity Workshop #1.pptx
Cybersecurity Workshop #1.pptxCybersecurity Workshop #1.pptx
Cybersecurity Workshop #1.pptx
 
Comparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and IstioComparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and Istio
 
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
Apres-Cyber - The Data Dilemma: Bridging Offensive Operations and Machine Lea...
 
Linked Data in Production: Moving Beyond Ontologies
Linked Data in Production: Moving Beyond OntologiesLinked Data in Production: Moving Beyond Ontologies
Linked Data in Production: Moving Beyond Ontologies
 
UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...
UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...
UWB Technology for Enhanced Indoor and Outdoor Positioning in Physiological M...
 
20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf
20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf
20200723_insight_release_plan_v6.pdf20200723_insight_release_plan_v6.pdf
 
Introduction to Quantum Computing
Introduction to Quantum ComputingIntroduction to Quantum Computing
Introduction to Quantum Computing
 
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPA
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPAAnypoint Code Builder , Google Pub sub connector and MuleSoft RPA
Anypoint Code Builder , Google Pub sub connector and MuleSoft RPA
 
OpenShift Commons Paris - Choose Your Own Observability Adventure
OpenShift Commons Paris - Choose Your Own Observability AdventureOpenShift Commons Paris - Choose Your Own Observability Adventure
OpenShift Commons Paris - Choose Your Own Observability Adventure
 
Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1Secure your environment with UiPath and CyberArk technologies - Session 1
Secure your environment with UiPath and CyberArk technologies - Session 1
 
UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8
 

Rac

  • 1. ############### Configuring Public and Private Network #Edit Host file on all nodes vi /etc/hosts # Do not remove the following line, or various programs # that require network functionality will fail. 127.0.0.1 #::1 localhost.localdomain localhost localhost6.localdomain6 localhost6 #public IP 192.168.100.101 192.168.100.102 192.168.100.103 192.168.100.104 192.168.100.105 192.168.100.106 rac01.ent.net rac02.ent.net rac03.ent.net rac04.ent.net rac05.ent.net rac06.ent.net rac01 rac02 rac03 rac04 rac05 rac06 #virtual IP 192.168.100.107 192.168.100.108 192.168.100.109 192.168.100.110 192.168.100.111 192.168.100.112 rac01-vip.ent.net rac02-vip.ent.net rac03-vip.ent.net rac04-vip.ent.net rac05-vip.ent.net rac06-vip.ent.net rac01-vip rac02-vip rac03-vip rac04-vip rac05-vip rac06-vip #Private IP 192.168.222.1 192.168.222.2 192.168.222.3 192.168.222.4 192.168.222.5 192.168.222.6 rac01-priv.ent.net rac01-priv rac02-priv.ent.net rac02-priv rac03-priv.ent.net rac03-priv rac04-priv.ent.net rac04-priv rac05-priv.ent.net rac05-priv rac06-priv.ent.net rac06-priv
  • 2. #SCAN IP #192.168.100.113 entdbscan #192.168.100.114 entdbscan #192.168.100.115 entdbscan vi /etc/resolv.conf search ent.net nameserver 192.168.0.3 nameserver 192.168.0.4 #####Firewall & SELinux /etc/rc.d/init.d/iptables stop chkconfig iptables off /etc/rc.d/init.d/iptables status vi /etc/sysconfig/selinux SELINUX=disabled ##Restart OR below commands getenforce (returns "Enforcing") setenforce 0 getenforce (returns "Permissive") #####NTP service vi /etc/sysconfig/ntpd # Drop root to id 'ntp:ntp' by default. OPTIONS="-x -u ntp:ntp -p /var/run/ntpd.pid" # Set to 'yes' to sync hw clock after successful ntpdate SYNC_HWCLOCK=no # Additional options for ntpdate NTPDATE_OPTIONS="" sbin/service ntpd restart
  • 3. Users #########Grid groupadd -g 1000 oinstall groupadd -g 1200 asmadmin groupadd -g 1201 asmdba groupadd -g 1202 asmoper useradd -m -u 1100 -g oinstall -G asmadmin,asmdba,asmoper -d /home/grid -s /bin/bash grid id grid passwd grid su - grid echo > .bash_profile vi .bash_profile # .bash_profile # Get the aliases and functions if [ -f ~/.bashrc ]; then . ~/.bashrc fi export ORACLE_SID=+ASM1 export JAVA_HOME=/usr/local/java export ORACLE_BASE=/grid/gridbase export ORACLE_HOME=/grid/product/11.2.0/grid #export ORACLE_PATH=/oracle/common/oracle/sql export ORACLE_TERM=xterm #export NLS_DATE_FORMAT="DD-MON-YYYY HH24:MI:SS" #export TNS_ADMIN=$ORACLE_HOME/network/admin export ORA_NLS11=$ORACLE_HOME/nls/data PATH=.:${JAVA_HOME}/bin:${PATH}:$HOME/bin:$ORACLE_HOME/bin PATH=${PATH}:/usr/bin:/bin:/usr/bin/X11:/usr/local/bin export PATH LD_LIBRARY_PATH=$ORACLE_HOME/lib
  • 4. LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:$ORACLE_HOME/oracm/lib LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:/lib:/usr/lib:/usr/local/lib export LD_LIBRARY_PATH CLASSPATH=$ORACLE_HOME/JRE CLASSPATH=${CLASSPATH}:$ORACLE_HOME/jlib CLASSPATH=${CLASSPATH}:$ORACLE_HOME/rdbms/jlib CLASSPATH=${CLASSPATH}:$ORACLE_HOME/network/jlib export CLASSPATH export THREADS_FLAG=native export TEMP=/tmp export TMPDIR=/tmp umask 022 # User specific environment and startup programs PATH=$PATH:$HOME/bin export PATH #########Oracle groupadd -g 1300 dba groupadd -g 1301 oper useradd -m -u 1101 -g oinstall -G dba,oper,asmdba -d /home/oracle -s /bin/bash oracle id oracle passwd oracle su - oracle echo > .bash_profile vi .bash_profile # .bash_profile # Get the aliases and functions if [ -f ~/.bashrc ]; then . ~/.bashrc
  • 5. fi export ORACLE_SID=entdb1 export ORACLE_UNQNAME=entdb export JAVA_HOME=/usr/local/java export ORACLE_BASE=/oracle export ORACLE_HOME=$ORACLE_BASE/product/11.2.0/db_1 #export ORACLE_PATH=/app/common/oracle/sql #export SQLPATH=/app/common/oracle/sql export ORACLE_TERM=xterm export NLS_LANG=AMERICAN_AMERICA.AR8MSWIN1256 #export NLS_DATE_FORMAT="DD-MON-YYYY HH24:MI:SS" #export TNS_ADMIN=$ORACLE_HOME/network/admin export ORA_NLS11=$ORACLE_HOME/nls/data PATH=.:${JAVA_HOME}/bin:${PATH}:$HOME/bin:$ORACLE_HOME/bin PATH=${PATH}:/usr/bin:/bin:/usr/bin/X11:/usr/local/bin #PATH=${PATH}:/app/common/oracle/bin export PATH LD_LIBRARY_PATH=$ORACLE_HOME/lib LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:$ORACLE_HOME/oracm/lib LD_LIBRARY_PATH=${LD_LIBRARY_PATH}:/lib:/usr/lib:/usr/local/lib export LD_LIBRARY_PATH CLASSPATH=$ORACLE_HOME/JRE CLASSPATH=${CLASSPATH}:$ORACLE_HOME/jlib CLASSPATH=${CLASSPATH}:$ORACLE_HOME/rdbms/jlib CLASSPATH=${CLASSPATH}:$ORACLE_HOME/network/jlib export CLASSPATH export THREADS_FLAG=native export TEMP=/tmp export TMPDIR=/tmp umask 022 # User specific environment and startup programs PATH=$PATH:$HOME/bin export PATH
  • 6. #########Nobody id nobody usr/sbin/useradd nobody ###############Directories mkdir -p /grid mkdir -p /grid/11.2.0/gridbase chown -R grid:oinstall /grid mkdir -p /oracle chown oracle:oinstall /oracle chmod -R 775 /oracle ##############Resource Limits ##### cat >> /etc/security/limits.conf <<EOF grid soft nproc 2047 grid hard nproc 16384 grid soft nofile 1024 grid hard nofile 65536 oracle soft nproc 2047 oracle hard nproc 16384 oracle soft nofile 1024 oracle hard nofile 65536 EOF ##### cat >> /etc/pam.d/login <<EOF session required pam_limits.so EOF
  • 7. #####Bourne, Bash, Korn shell cat >> /etc/profile <<EOF if [ $USER = "oracle" ] || [ $USER = "grid" ]; then if [ $SHELL = "/bin/ksh" ]; then ulimit -p 16384 ulimit -n 65536 else ulimit -u 16384 -n 65536 fi umask 022 fi EOF #####Cshell cat >> /etc/csh.login <<EOF if ( $USER == "oracle" || $USER == "grid" ) then limit maxproc 16384 limit descriptors 65536 endif EOF ###############kernel parameters /etc/sysctl.conf kernel.shmmax = 4294967295 kernel.shmall = 2097152 kernel.shmmni = 4096 kernel.sem = 250 32000 100 128 fs.file-max = 6815744 net.ipv4.ip_local_port_range = 9000 65500
  • 8. net.core.rmem_default=262144 net.core.rmem_max=4194304 net.core.wmem_default=262144 net.core.wmem_max=1048576 fs.aio-max-nr=1048576 sysctl -p ###############ASMLib (Root) ASMLib Kernel Driver:oracleasm-2.6.18-238.el5-2.0.5-1.el5.x86_64.rpm Userspace Library:oracleasmlib-2.0.4-1.el5.x86_64.rpm Driver Support Files:oracleasm-support-2.1.7-1.el5.x86_64.rpm rpm -Uvh oracleasm-support-2.1.3-1.el5.x86_64.rpm rpm -Uvh oracleasm-2.6.18-164.el5-2.0.5-1.el5.x86_64.rpm rpm -Uvh oracleasmlib-2.0.4-1.el5.x86_64.rpm /usr/sbin/oracleasm configure -i grid asmadmin y y #( # Creates the /etc/sysconfig/oracleasm configuration file # Creates the /dev/oracleasm mount point # Mounts the ASMLib driver file system #)
  • 9. #load the oracleasm kernel module: /usr/sbin/oracleasm init #To avoid ASM issue with Multipath devices on Linux vi /etc/sysconfig/oracleasm ORACLEASM_SCANORDER="dm" ORACLEASM_SCANEXCLUDE="sd" /etc/init.d/oracleasm stop /etc/init.d/oracleasm start ########################################################## ###############ASM Disks #Obtain wwid for raw devices for i in `cat /proc/partitions | awk '{print $4}' |grep sd | grep [a-z]$`; do echo "### $i: `scsi_id -g -u s /block/$i`"; done #Configuring multipath.conf using output of above command vi /etc/multipath.conf multipaths { multipath { wwid alias path_grouping_policy path_selector failback rr_weight no_path_retry } service multipathd restart multipath –ll 360014380125d8be50000a00001d00000 Data1 multibus "round-robin 0" manual priorities 5
  • 10. dmsetup ls | sort ls -l /dev/disk/by-id/ ls -l /dev/dm-* #/dev/mapper/ devices are persistent, created sufficiently early during the boot process and makes use of their defined aliases - use only these devices to access and interact with multipathed devices. ls –l /dev/mapper/* # Ownership and Permissions # OCR & VOTE disks chown grid:asmadmin /dev/mapper/Ocr* chmod 0640 /dev/mapper/ocr* chown grid:asmadmin /dev/mapper/Data* chmod 0640 /dev/mapper/data* chown grid:asmadmin /dev/mapper/Fra* chmod 0640 /dev/mapper/fra* /usr/sbin/oracleasm createdisk OCR1 /dev/mapper/Ocr1 /usr/sbin/oracleasm createdisk OCR2 /dev/mapper/Ocr2 /usr/sbin/oracleasm createdisk OCR3 /dev/mapper/Ocr3 /usr/sbin/oracleasm createdisk DATA1 /dev/mapper/Data1 /usr/sbin/oracleasm createdisk DATA2 /dev/mapper/Data2 /usr/sbin/oracleasm createdisk FRA1 /dev/mapper/Fra1 #Other nodes /usr/sbin/oracleasm scandisks /usr/sbin/oracleasm listdisks