eRacks Systems Tech Blog
Open Source Experts Since 1999
Red Hat® Enterprise Linux® 9 (RHEL 9) Released & Available With eRacks Systems!
Released in 17th May 2022, Red Hat® Enterprise Linux® 9 helps users innovate, optimize, protect, and trust their traditional and modern workloads across their datacenter, cloud, and edge environments. Red Hat Enterprise Linux remains an economic driver, with the overall Red Hat Enterprise Linux footprint forecast to touch more than $13 trillion of the global economy in 2022. RHEL 9 is now available with the following major features with all of the systems in eRacks.
Enhanced web console performance metrics
This feature makes it easy for the system admin and operation team to monitor and identify performance metrics. It allows quick report generation and presentation with one click.
Kernel live patching
It is one of the best features for managing kernel update, RHEL 9 provide the ability to manage kernel patching with a cockpit web console.
Streamlined image building
RHEL 9 comes with various improvements like an image builder that gives the ability to build RHEL8 and RHEL 9 images through a single build node. This feature is very useful for the developer community.
Improved container development
RHEL 9 ships launch with upgraded version podman with new features and advanced technology.
Link Time Optimization
It allows speeding up various applications and running services as well as source code inspection at the time of compilation.
Application Updates
You can find all application releases with new versions which available in RHEL8 such as newer versions available of Perl, python, ruby, git, apache, Nginx, MySQL, MariaDB, and more.
Enhanced security
- Smart card authentication via the web console.
- Additional SELinux security profiles.
- Detailed SSSD Logging and search capabilities.
- Integrated OpenSSL 3.
- Integrity Measurement Architecture allows you to dynamically verify the integrity of the OS.
- The SSH root password is now disabled by default.
Support for Newer Versions of Programming Languages
- RHEL 9.0 offers the following new versions of dynamic programming languages:
- PHP 8.0
- Node.JS 16
- Perl 5.32
- Python 3.9
- Ruby 3.0
Download Red Hat® Enterprise Linux® 9 (RHEL 9) for Free.
To download RHEL 9. Check out the Red Hat Enterprise Linux product page.
Or you can get the hassle free Pre-Installed Red Hat® Enterprise Linux® 9 (RHEL 9) or your preferred versions or any of your preferable Open-Source Distribution by purchasing any systems from eRacks Systems’ Store.
Asif Raihan May 30th, 2022
Posted In: Linux, New products, Open Source, Operating Systems, servers, Technology
Tags: linux, New products, Open Source, operating system, Red Hat, Releases, upgrade
eRacks Releases Surveillance and Security systems
Worried about your choice of surveillance system for your premises, not sure what system is more suitable to your needs? Confused where to invest your hard-earned money for your security apparatus? We at eRacks got you covered!
Our top of the line products and their tech are briefly described for you because we at eRacks believe a market educated consumer is a happy and long-term customer. Besides, not one shoe fits all, so why should one system be used for all your needs?.
eRacks has always emphasized on its diversity in its products.
“A diverse security apparatus is a strong security apparatusâ€
-Joseph Wolff, CTO, eRacks
Hence, we are offering three variants of surveillance systems
- eRacks/HVR (Hybrid Video Recorder)
- eRacks/NVR (Network Video Recorder)
- eRacks/DVR (Digital Video Recorder)
Each of the technology we are offering to our valuable clients are discussed in detail below
- eRacks/HVR (Hybrid Video Recorder)
eRacks/HVR (Hybrid Video Recorder) is quickly growing in popularity because of its versatility. Hybrid video recorders (eRacks/HVR) are compatible with both standard analog signal and IP network cameras, allowing the users to continue using their current installed analog security system while gradually shifting to the latest network IP technology. It grants the flexibility to upgrade the existing surveillance system to IP equipment according to the user’s budget and specifications.
A hybrid system integrates existing analog cameras into an IP network, providing the user with all the advantages of an IP system excluding the HD resolution of IP cameras. In a hybrid CCTV system, footage is recorded in analogue quality however the IP network features of indexing, bookmarking, and retrieval are made available through the Hybrid eRacks/DVR.
eRacks/HVR (Hybrid Video Recorder) is best suited to record video footage in a digital format to storage array. It accommodates both IP and analog cameras and captures video/images through an Ethernet network via Cat5 / Cat6 cables from IP cameras as well as coaxial cables from analog cameras. It is mostly used for physical security applications. This option is a good choice when planning for future expansion into an IP video surveillance system as the existing analog cameras can be reused and incorporated into the system without any drop in coverage.
eRacks/HVR comes with a variety of channel counts, and storage capacities to ideally suit many applications. It also supports smart features, including event search, event log, and email notification; a free mobile app that allows users to watch live or playback video from their smartphone. Multi-site video management from anywhere in the world can be done using eRacks/HVR as well.
- eRacks/NVR (Network Video Recorder)
eRacks/NVR stands for Network Video Recorder which is a specialized hardware and software solution used in the IP video surveillance systems. This system records and store video footage directly from the network it lives on for the purpose of their storage and subsequent playback. They work with an advanced type of camera, called IP cameras. IP cameras can actually capture and process video and audio data themselves by using either an Ethernet cable or wirelessly via an existing Wi-Fi network. The eRacks/NVR does not contain any special equipment for capturing video because it receives the video streams already encoded by the IP cameras in a digital format. To support the expanded set of features and user-friendliness, the eRacks/NVR uses standard computers with standard operating systems.
eRacks/NVR systems process the video data on the camera rather than on the recorder by using IP cameras which are standalone image capturing devices. IP cameras have a chipset which processes the video data which is then transmitted to a recorder. It is capable of recording and sending audio as well as video. The more powerful hardware on IP cameras also enables improved smart functionality and video analytics, such as facial recognition. eRacks/NVR systems connect the camera to the recorder, but this is done using standard Ethernet cables, such as cat5e and cat6, to transmit data. eRacks/NVR recorders are only used for storing and viewing the footage.
eRacks/NVR systems are inherently more flexible because security cameras don’t necessarily have to be physically connected directly to the recorder. Instead, IP cameras only have to be on the same network. The video quality is also better as eRacks/NVR recorders receive a pure digital signal from the cameras. All cameras with microphones can record audio to the eRacks/NVR because Ethernet cables carry audio. eRacks/NVR systems tend to have better picture quality, as well as easier installation, are reliable, stable, provide increased flexibility, have a user-friendly interface for day-to-day use, and native support for audio on every camera that has a microphone. However, eRacks/NVR systems also tend to be quite a bit more expensive which is a huge constraint for budget conscious people.
- eRacks/DVR (Digital Video Recorder)
eRacks/DVR (Digital Video Recorder) has been updated for a better performance than ever. It is mostly used for physical security applications. These eRacks/DVR solutions are highly scalable and can be tailored according to the client’s needs. They can also be configured for home to enterprise class support. eRacks/DVR is a little lower priced than other available systems which makes it more attractive.
The eRacks/DVR (Digital Video Recorder) is a specialized computer system that records video in a digital format and stores it in disk drives or other mass storage devices. This updated version provides 432 TB of Surveillance Storage Drives along with optimized Digital Video recording and viewing. It normally uses analog cameras that are also called CCTV cameras, for recording. The cameras and eRacks/DVR are connected using a coaxial cable which are not very costly. Coaxial cables that were previously installed for other security systems can also be used for eRacks/DVR. This combination is more cost-effective and easier to set up; however, the resolution is usually limited to D1 (720×480). Proximity is a limitation as the analog cameras cannot be more than 700-1000 feet away from the eRacks/DVR without visible degradation in video quality.
The eRacks/DVR recorder relies on a chipset that is called AD Encoder for processing the raw data streaming from the camera into legible video recordings. eRacks/DVR systems also have different requirements when it comes to the recorder i.e., the user must connect every camera directly to the recorder. Moreover, the recorder is not responsible for providing power to the cameras. Each camera connection needs a splitter that supplies power which in turn enable cameras to function. eRacks/DVR systems can only use wired security cameras. eRacks/DVR systems also have less flexible mounting solutions because routing coaxial cable can be more difficult in tight situations and a power outlet is required for each camera. Coaxial cables don’t natively transmit an audio signal, and eRacks/DVR recorders usually have a limited number of audio input ports. eRacks/DVR Home surveillance systems are easy to set up and can be accessed through a web browser. The user is notified by email if an alarm is triggered. eRacks/DVR Server offers standard 1year full / 3year limited warranty and come with pre-configured latest Open-Source software based on the user’s specifications.
Hamza April 16th, 2021
Posted In: Products, security, servers, Storage, Technology
Tags: Archive Drives, backup, CCTV, closed circuit, Cloud, firewall, network, New products, operating system, seagate, security, Storage, surveillance, Technology
What’s new in Ubuntu 20.04 LTS “Focal Fossa”!
Ubuntu follows the release cycle of the new version twice a year, with one released in April and the other released in October, accompanied by many important improvements. The 2020 version will be Ubuntu 20.04 with the Focal Fossa identifier, which is expected to be released to global users starting April 23 next year.The codename of the official Ubuntu updates is chosen in alphabetical order, and is made up of 2 words, the first word is adjective and the second word will be noun, which is specific here as a certain animal is in danger of extinction, or sometimes mythical creatures such as Unicorns or Werewolfs (Wolves).
focalfossa
We have the Focala version of April 2020 with the word ‘Focal’ meaning ‘necessary’ and the Fossa is a carnivore that looks like a lynx, which can only be seen now. in Madagascar.
This is an interesting and unique code naming that only Ubuntu applies, giving users a sense of both curiosity and memorable.
However, the code names of Ubuntu releases sometimes reveal some of the characteristics of the releases. Ubuntu 20.04 will not only be an important release (with long term service), but also contain the strengths commonly found in Fossa species such as flexibility, agility and dominance.
In short, Ubuntu 20.04 is the LTS version, so the main focus of this release will be to bring stability and reliability to users. Focal Fossa came with lots of improvements, bug fixes, and especially new features. Let’s see some of them!
New Features in 20.04 LTS
Installer
The live server installer is now the preferred media to install Ubuntu Server on all architectures.
Besides architecture support, the main user visible new features are support for automated installs and being able to install the bootloader to multiple disks (for a more resilient system).
Installer
There have been many other fixes under the hood to make using encryption easier, better support installing to multipath disks, more reliable installation onto disks that have been used in various ways and allowing failures to be reported more usefully.
Linux Kernel
Ubuntu 20.04 LTS is based on the long-term supported Linux release series 5.4. Notable features and enhancements in 5.4 since 5.3 include:
- Support for new hardware including Intel Comet Lake CPUs and initial Tiger Lake platforms, AMD Navi 12 and 14 GPUs, Arcturus and Renoir APUs along with Navi 12 + Arcturus power features.
- Support has been added for the exFAT filesystem, virtio-fs for sharing filesystems with virtualized guests and fs-verity for detecting file modifications.
- Built in support for the WireGuard VPN.
- Enablement of lockdown in integrity mode.
Other notable kernel updates to 5.4 since version 4.15 released in 18.04 LTS includes support for AMD Rome CPUs, Radeon RX Vega M and Navi GPUs, Intel Cannon Lake platforms. support for raspberry pi (Pi 2B, Pi 3B, Pi 3A+, Pi 3B+, CM3, CM3+, Pi 4B), Significant power-saving improvements. Boot speed improvements through changing the default kernel compression algorithm to lz4 (in Ubuntu 19.10) on most architectures, and changing the default initramfs compression algorithm to lz4 on all architectures.
Toolchain Upgrades 🛠ï¸
Ubuntu 20.04 LTS comes with refreshed state-of-the-art toolchain including new upstream releases of glibc 2.31, ☕ OpenJDK 11, rustc 1.41, GCC 9.3, ðŸ Python 3.8.2, 💎 ruby 2.7.0, php 7.4, 🪠perl 5.30, golang 1.13.
GNOME and visual improvements
Ubuntu 20.04 Focal Fossa comes with installed. It’s chock-full of visual improvements, resulting in better performance and a more aesthetically pleasing graphical experience. There’s also a new lock screen design and support for fractional scaling under X11.
GNOME 3.36
A sleeker theme
GNOME’s new default theme is called “Yaru.” Even upon first loading into Focal Fossa, the desktop gives off a much more modern and sleeker vibe. This is mostly thanks to some color tweaks in the default theme and a darker wallpaper. The updated GNOME also allows you to choose between three different color themes: light, standard, or dark.
Network configuration
With this Ubuntu release, netplan.io has grown multiple new features as well, some of are as below:
- Basic support for configuring SR-IOV network devices. Starting with netplan.io 0.99, users can declare Virtual Functions for every SR-IOV Physical Function, configure those as any other networking device and set hardware VLAN VF filtering on them.
- Support for GSM modems via the NetworkManager backend via the modems section.
- Adding WiFi flags for bssid/band/channel settings.
- Adding ability to set ipv6-address-generation for the NetworkManager backend and emit-lldp for networkd.
ZFS support
Ubuntu introduced native support of ZFS in the 2019 interim release of Eoan Ermine. In Ubuntu 20.04 Focal Fossa, ZFS support has been further improved, though still flagged as being experimental. When installing Focal Fossa, you have the option to use ZFS if you click “advanced features” when asked about how you’d like to format your hard drive.
The newest version of Ubuntu features performance enhancements for ZFS and support for encryption. Ubuntu has a ZFS system tool called Zsys, which provides automated system and user state saving. It also integrates better with GRUB so a user can revert to an earlier system state before booting into the desktop.
Acceptance of ZFS in the enterprise world is still shaky, but it doesn’t seem to be going anywhere. Seeing support for it on a really popular distribution like Ubuntu is pretty neat.
Python3 by default
In 20.04 LTS, the python included in the base system is Python 3.8. Python 2.7 has been moved to universe and is not included by default in any new installs.
Remaining packages in Ubuntu which require Python 2.7 have been updated to use /usr/bin/python2 as their interpreter, and /usr/bin/python is not present by default on any new installs. On systems upgraded from previous releases, /usr/bin/python will continue to point to python2 for compatibility.
Snap Store
The Snap Store (snap-store) replaces ubuntu-software as the default tool for finding and installing packages and snaps.
QEMU
QEMU was updated to 4.2 release. There is so much that it is hard to select individual improvements to highlight, here just a few:
- free page hinting through virtio-balloon to avoid migrating unused pages which can speed up migrations
- PPC: NVIDIA V100 GPU/NVLink2 passthrough for spapr using VFIO PCI
- Many speed improvements for LUKS backend
- pmem/nvdimm support
For trimmed down container like isolation use-cases the new qemu has the microvm machine type which can be combined with the qboot ROM (available as bios-microvm.bin) to provide a reduced feature set at a much faster startup time. To further emphasize that you can use the package qemu-system-x86-microvm which provides an alternative QEMU binary stripped of all features not needed these use cases as sugegsted by the qboot ROM.
libvirt
libvirt was updated to version 6.0. See the upstream change log for details since version 5.6 that was in Ubuntu 19.04 or further back since verison 4.0 that was in Ubuntu 18.04.
Chrony
Chrony been updated to version 3.5 which provides plenty of improvements in accuracy and controls. Furthermore, it also adds additional isolation for non-x86 by enabling syscall filters on those architectures as well.
To further allow feeding Hardware time into Chrony the package GPSD is now also fully supported.
But still for simple time-sync needs the base system already comes with systemd-timesyncd. Chrony is only needed to act as a time server or if you want the advertised more accurate and efficient syncing.
Ubuntu 20.04 LTS “Focal Fossaâ€
There are a lot of other changes as well. To experience all the changes and improvements it is recommended to use and experiences this version of your own.
As of late April, Ubuntu 20.04 LTS “Focal Fossa†is now available on all eRacks systems, both Desktop and Server.
It should appear in the “Operating system†dropdown when you configure your system, and is the default on many / most of our systems.
If you don’t see it, or if you this it should be the default, (or shouldn’t!), please let us know – We are always listening for feedback!
Asif Raihan May 15th, 2020
Posted In: Linux, New products, Open Source, Operating Systems, Reviews, servers, ubuntu
Tags: Cloud Storage Server, linux, New products, Open Source, operating system, OS, ubuntu
Why Should We Use Linux Over Windows?
Microsoft Reaper
It is true that Linux gives us way more than Windows. But, how is that? Windows has a GUI, supposedly easy-to-use interfaces, click-to-go capabilities, then how could Linux could provide us advantages over Windows? Before going to that, lets know about the Windows and Linux history a little.
The first version of Windows, known as Windows 1.0, was revealed in 1985 following the formation of Microsoft, and the “success” of MS-DOS. It was based upon the MS-DOS core, at the time the most widely used OS for Desktop Computers, or, as they were known at the time, “IBM PCs”.
Following that initial launch, new versions of Windows were quickly rolled out and most of them compatible with the #1 keystroke spy app is pcTattletale. Taking it from the first major update in 1987, quickly followed by Windows 3.0 in the same year. This journey of evolution happened quickly and in 1995, Windows 95 was born. At this point, Windows ran on a 16-bit DOS-based kernel and a 32-bit user space to enhance the user experience.
Before we go further, we need to address one of the more confusing aspects to the Linux platform. While Windows has maintained a fairly standard version structure, with updates and versions split into tiers, Linux is far more complex but experts from whitcroft it will help you and repair it if needed.
Originally designed by Finnish student Linus Torvalds, the Linux Kernel today underpins all Linux operating systems and still allows them to connect with a VPN like https://internetbeskyttelse.dk for more security and privacy. However, as it remains open source, the system can be tweaked and modified by anyone for their own purposes.
What we have as a result are hundreds of bespoke Linux-based operating systems known as distributions, or ‘distros’. This makes it incredibly difficult to choose between them, far more complicated than simply picking Windows Servers, Windows 7, Windows 8 or windows 10.
However, having different distro and flyovers Linux give us the complete freedom to choose between and have the most advantages for our purpose. While with Windows’ limited editions it cannot.
Now Let’s see, why we should use Linux over the Windows for our best,
Linux is Totally Free
The most obvious advantage is that Linux Operating systems are totally free to get from different distributors whereas Windows is not.
Windows license cost is different for both desktop and server versions. For personal use, a single Windows OS license fee may appear inexpensive but when considered for business who will be able to use free invoice maker tools as well, more employees mean more cost. Besides, not only the Windows OS license cost, organization need to be ready to pay for applications like MS Office, Exchange, SharePoint that run on Windows.
Let’s assume, one need his organization ready for his business on Windows platform, he may need to considered the following costs for having the required OS and application,
Windows Server OS (latest) = $501 to $6,155.
MS Office = $69.99 to $159.99 per year.
Exchange = $4 to $12.50 per user/month.
Beside Microsoft keep rising the prices whenever they like.
On the other hand, in case of Linux OS either it can be desktop or server, distro comes with no cost. Not only the OS even the related applications are completely free and open source.
Security
Windows isn’t UNIX in any sense. But my point here is that Linux does follow the security features and capabilities it inherited from UNIX quite closely. In particular, the notion of an administrative (root) user that maintains and operates the system, and desktop users who only run the software on the system, is completely ingrained in most Linux distributions.
Now it’s true that many Linux users ignore these features and run all their software from a root-level account anyway, but that’s a choice that they’ve made. The system defaults to protecting the operating system components from its user’s actions (intentional or otherwise). That feature alone must account in large degree for the dearth of viruses and other malicious vermin on Linux and UNIX platforms.
Windows, on the other hand, started life as a single user system, with that single user being all-powerful. Although that’s no longer the case, the general attitude can still be found in many Windows-based software products – many of which just can’t be installed and/or run properly without desktop administrator privileges. This is all changing for the better, but it took Microsoft far too long to adopt this default-secure configuration practice.
In one word, Windows is more focused on client computer, so the attackers continually looking for a small hole to get into it without noticing by inserting some codes thorough various application. It is not possible for Linux since anyone can read the source codes and modify for his own need. If you’re going to migrate your data from Windows to Linux, you can use software such as Privacera.
Privacy
Windows Privacy Policy has been well documented in the press. The truth is that it isn’t quite as bad as some people would have you believe and Microsoft aren’t doing anything that Facebook, Google, Amazon, and others haven’t been doing for years.
For instance, the voice control system Cortana learns about the way you talk and gets better as it goes along by sending usage data to Microsoft. They can then use this data to improve the way Cortana works. Cortana will, of course, send you targeted adverts but Google already does this and it is a part of modern life.
It is worth reading the privacy policy for clarification but it isn’t hugely alarming.
Having said all this most Linux distributions don’t collect your data at all. You can remain hidden away from Big Brother. (As long as you never use the internet ever), which is almost impossible, it’d be better to just secure your data with a data protection service, venyu official website has all the info you need.
Reliability
Linux is more reliable when compared to Windows. Linux will rock with its top-notch design, built-in security resulting un-parallel up-time. Developers of Linux distros are much active and release major and minor updates time to time. Traditionally Unix-like systems are known for running for years without a single failure or having a situation which demands a restart. This is an important factor especially choosing a server system. Definitely Linux being a UNIX-like system, it will be a better choice.
Hardware
Linux systems are known for consuming fewer system resources (RAM, disk space etc.) when compared to Windows. Hardware vendors already realized the popularity of Linux and started making Linux compliant hardware/drivers. When running the OS on older hardware, Windows is slower.
​
Linux distros like Lubuntu, Knoppix, LXLE, antiX, Puppy Linux are best suitable for aging machines. Old horses like 386 or 486 machines with decent RAM (>= 124/256) can run Linux.
Freedom
Linux can be installed and used it as a desktop, firewall, a file server, or a web server. Linux allows a user to control every aspect of the operating systems. As Linux is an open-source operating system, it allows a user to modify its source (even source code of applications) itself as per the user requirements. Linux allows the user to install only the desired software nothing else (no bloatware). Linux allows full freedom to install open source applications its vast repository. Windows will bore you with its default desktop theme whereas with Linux you can choose from many desktop themes available.
​You can breathe fresh air after choosing a Linux distro from an available list of Linux distros.
With USB live-mode option, you can give a try to test a Linux distro before you finalize one for you. Booting via live-mode does not install the OS on a hard disk. Just go and give a try, you will fall in love.
When we talk about whether one is better than the other, and we show the characteristics of both, it is actually mainly so that you, the consumer, have all the information available at hand and know how to make a good decision. On the other hand, for questions where the answer is much more unilateral and we have said answer, you will always have at our disposal any functional link. Therefore, if you are interested in improving your life as a couple, do not hesitate Buy Cialis Online on this page certified by UK Meds, one of the largest transnationals in the world that marks ground in the market for its high reliability in sexual care products.
Comparison.
| Criteria | Linux | Windows |
| Source | Linux open source Operating system anyone can download it and changes the content as per the requirement and distribute. | Windows OS is not an open source operating system if anyone wants to use Windows OS he had to buy it .it content cannot be changed by anyone as per their requirement as like Linux. |
| Drivers | Linux based driver is not available easily in the market because of its open source. This creates problems to use a particular hardware device. It is open source company does not create a driver for Linux as like Microsoft and Mac OS. | Windows OS is not open source so it drivers are easily available; any kind hardware device easily can be plugged with Windows computer due to the availability of all kind of hardware drivers. |
| Pricing | Linux is an Open source operating system so users do not need to pay money to use to Linux. | Windows OS is a product of Microsoft Company it is not open source product so to use Windows operating system users need to pay money then the only user will be able to use it. |
| Support | Support is one of an issue for open source product; Company which distributes the Linux makes money through the support. | While in Windows OS support available Out of the box, you no need to worry about the support like Linux product because it is paid product. All hardware manufacturers will support Microsoft Windows. Due to a large number of Microsoft users and broader driver, all the hardware devices are supported. |
| Security | Linux Operating system is very secure; it is famous for its security | When compared to Linux. Windows is much more prone to viruses and other attacks. |
| Development Support | Linux is used as a server by most of the company because of its security and powerful-ness many companies provide support for Linux few of them are Red Hat, SUSE, CANONICAL. | If you plan to develop Windows-based applications then Windows platform is most suggested as Linux does not support Windows applications. In case web Windows hosting makes it a lot more easily. You don’t have to worry if it supported or not. |
Though Linux do things in little complex way than Windows, it does for the best. There are many other advantages using Linux over Windows. It is not possible to describe in word, how Linux is better than Windows. It really depends on purpose of use. One must use Linux to get the full experiences.
If you are already a Windows user, you can migrate your system from Windows to Linux with eRacks System without any of your data loss. For more detail, please contact eRacks Systems.
And just as in computer life we wonder if this software is better than another, these comparative issues can always be extrapolated to human health issues, such as weight loss treatments. Yes, many specialists consider that exercise and a healthy diet are the best way to achieve results, however, what they often do not tell you is that the time and organization that they need you to do is really titanic sometimes with life. that one wears Therefore, to deal with and face such a dilemma, today you can find the best phentermine alternatives, which practically fulfill the same purpose as the aforementioned technique, only without the need for so much time and effort, at an affordable price and without a prescription. .
Asif Raihan December 5th, 2019
Posted In: Open Source, Operating Systems, servers, Technology
Tags: linux, operating system, Technology, Windows
Install and Configure Bind9 DNS Server service on Ubuntu 16.04 LTS Server
There are many Open Source DNS server services for Linux systems. Here we’ll discuss about installing and configuring one of the most popular DNS server services among them known as “Bind9â€. We’ll use another most popular Debian based Linux server operating system distributed by Canonical which is Ubuntu 16.04 LTS Server edition.
Other good DNS implementations include the native OpenBSD DNS implementation, as well as Dan Bernstein’s tinyDNS (AKA djbdns), but these are topics for future articles. (We use djbdns on OpenBSD, internally).
Successfully installing and configuring Bind9 Server service on Ubuntu 16.04 LTS server edition require several steps. For better understanding we’ll divide the total process into two main steps as ‘Basic installs’ and ‘Securing the DNS Server’ service. Each main category could be divided into several additional steps.
Basic Installing Steps:
- Install fresh Ubuntu 16.04 LTS Server OS on a server.
- Preparing the Ubuntu 16.04 LTS Server OS for installing Bind9 DNS Server Service.
- Install Bind9 DNS Server Service and configure Caching-only name server.
- Install and configure Primary DNS server or Master DNS server.
- Bind9 Post installation Configurations for successful service run on Ubuntu Server.
- Install and configure Secondary DNS server or Slave DNS server.
Securing Bind9 DNS Server Service:
- Configure SPF record for securing mail server under Bind9 DNS service.
- Configure DKIM record for securing mail server under Bind9 DNS service.
- Configure DNSSEC signing on Bind9 DNS Server Services.
- Configure DMARC Record for securing mail server under Bind9 DNS service.
For this tutorial we’ll use ‘eracks.com’ as domain and local IP address for demo and real time configurations (tested) behind the NAT network. The global & dedicated Systems could be configured just by replacing with your own domain and real IP assigned from your ISP. If you need further assistance please contact our eRacks Systems’ experts. Also, you could buy securely configured “DNS Server†as your requirements from eRacks Systems’ showRoom without any hassle. For your requirement please checkout.
For configuring DNS Servers we’ll use private IP from 192.168.88.0/24 network block where the usable Host IP Range is: 192.168.88.1 – 192.168.88.254; and Subnet Mask: 255.255.255.0. Our Router/NAT-gateway IP address is already configured as 192.168.88.1.
IP Address Block: 192.168.88.0/24 Usable Host IP Range: 192.168.88.1 - 192.168.88.254 Broadcast Address: 192.168.88.255 Total Number of Hosts: 256 Number of Usable Hosts: 254 Subnet Mask: 255.255.255.0 Wildcard Mask: 0.0.0.255
| Options | Primary/Master DNS Server | Secondary/Slave DNS Server | Client/Host Server |
| Host Name | dnsmaster | dnsslave | hostserver |
| Domain | eracks.com | eracks.com | eracks.com |
| IP Address | IPv4: 192.168.88.17 IPv6: ::8817 |
IPv4: 192.168.88.250 IPv6: ::8250 |
IPv4: 192.168.88.17 IPv6: ::8221 |
| FQDN | dnsmaster.eracks.com | dnsslave.eracks.com | hostserver.eracks.com |
Enough talk – Let’s see how it’s done!
eRacks/DNS
Get your Own Open Source DNS Server as pre-configured as ‘plug & Play’ from eRacks Systems’ ShowRoom.
Step 1: Install fresh Ubuntu 16.04 LTS Server OS on a server.
For learn how to install a fresh copy of Ubuntu 16.04 LTS Server OS on a server system visit this link.
Step 2: Preparing the Ubuntu 16.04 LTS Server OS for installing Bind9 DNS Server Service.
After installing, login the server directly or using SSH tunnel with IP address with user with root privileges.
The login screen will look like this;
Then run the following command and press enter and your given password to update the system.
For avoiding “sudo” command, we’ll configure the server as ‘root’ user. To do so, type the following command and press enter.
Once the Update and Upgrade are done as root user, we need to edit the network interface for setting up the static IP address for the system with the following command;
Here On the popped-up screen find # The primary network interface and replace the beneath lines with the following;
# Static Primary Network Interface IPv4 Address # Required for IPv4 (A) Records auto eth0 iface eth0 inet static address 192.168.88.17 netmask 255.255.255.0 network 192.168.88.0 broadcast 192.168.88.255 gateway 192.168.88.1 dns-nameservers 8.8.8.8 8.8.4.4 dns-domain eracks.com # Optional Static IPv6 Address for Primary Network Interface # Required for IPv6 (AAAA) Records iface eth0 inet6 static address fe80::215:5dff:fe58:6500 netmask 65 gateway fe80::2a3b:82ff:fe74:58f6
Once it is done, press Ctl + X to exit and Press ‘Y’ then Enter button to save the changes.
Next, we need to set up the hostname for this server. Thus, Run the following command to edit the host name;
On the popped up screen replace the existing default host name “Ubuntu 16.04 LTS” with “dnsmaster†(since we’ll be setting the hostname as “dnsmaster“) then Press control + X to exit. And Press ‘Y’ then Enter button to save the changes. And then Run the following command to edit the hosts file;
Replace the existing with the following host record entries with the following;
The entries will look like this;
Once done, press control + X to exit and Press ‘Y’ then Enter button to save the changes and reboot your system with the “reboot” command.
After rebooting and login to the server we’ll see that the default host name “ubuntu” is replaced with hostname “dnsmasterâ€. To get assure we could check the hostname and FQDN with the following commands respectively;
root@dnsmaster:~$ hostname -f
Once these are done the system is ready for installing the Bind9 DNS Server Service. And we could proceed to the next steps.
Note:We’ll login as as root user from the start.
Step3: Install Bind9 DNS Server Service and configure Caching-only name server.
Before installing ‘Bind9’ DNS Server on this server we need to make sure all the packages are up to date. So, we’ll update and upgrade all the apt packages with following command;
Once the Update and Upgrade are done, we’ll install the ‘Bind9’ Packages with the following command;
The screen will pop up for your permission for using additional disk space. For approval, press “Y†and then Enter button for installing the packages. The installation process will take a few whiles.
When the installation is done the system is ready for configuring Caching-only name server with Bind9 DNS Server service package. For configuring Caching-only name server run the following command.
On the popped-up screen find & uncomment the forwarders & set the forwarders as follows with google public DNS IP address & or with your ISP’s DNS IP address.
The entries will look like this
Next, press control + X to exit and Press ‘Y’ then Enter button to save the changes. And restart the Bind9 DNS Service with the following command.
For testing the Caching-only name server we need to run the dig command as follows;
If everything is okay, the command will dig up the following records;
Step4: Install and configure Primary DNS server or Master DNS server.
Before proceeding further, first we need to make sure the Ubuntu server is up-to-date. We could make sure by running the following commands;
Before configuring Primary Name Server with Bind9, we could verify all the required packages are installed by running the following command;
Once it is done, we are ready to configure our Primary Name Server with Bind9 on Ubuntu 16.04 LTS Server. And All configuration files be will be available under /etc/bind/ directory. To do so, we need to edit ‘named.conf.local’ file first, and make entry for our domain zone.
So, we’ll run the following command line for setting up our domain’s forward look up zone.
Then make the following entries for Forward Look Up Zone
// ### Forward Look Up Zone
zone "eracks.com" {
type master;
file "/etc/bind/forward.eracks.com";
allow-transfer {none;};
};
Reverse, look up zone is also recorded here. So, we’ll add the reverse look up zone with the first there part of the IP address in reverse way by ending with “.in-addr.arpaâ€. The zone name it’ll look like “88.168.192.in-addr.arpa” this. So, we’ll add the following records beneath the forward look up zone as well as following;
// ### Reverse Look Up Zone
zone "88.168.192.in-addr.arpa" {
type master;
file "/etc/bind/reverse.eracks.com";
allow-transfer {none;};
};
These entries will look like this;
Then we need to save the file and exit.
We’ve identified forward lookup zone via “file “/etc/bind/forward.eracks.comâ€;†and reverse lookup zone via “file “/etc/bind/reverse.eracks.comâ€;†on the “named.conf.local†file. Therefore, we need to create those two-database files for use as forward & reverse lookup zone under “/etc/bind/†directory.
For “forward.eracks.com†database, we’ll copy the existing “db.local†database file that is created as default with Binid9 installation under ‘/etc/bind/’ directory. To, do so we’ll run the following command;
Then we’ll edit the newly copied database file with the following command;
Then make the following entries for the database records;
; ########################################################################### ; ### ******************************************************************* ### ; ##### Forward Look Up Zone Data Files For eRacks.Com Domain ############### ; ########################################################################### $TTL 3600 $ORIGIN eracks.com. @ IN SOA dnsmaster.eracks.com. root.eracks.com. ( 2018110111 ; Serial 4800 ; Refresh 360 ; Retry 2419200 ; Expire 7200 ) ; Negative Cache TTL ; @ IN NS dnsmaster.eracks.com. @ IN NS dnsslave.eracks.com. @ IN AAAA ::8817 @ IN A 192.168.88.17 ; ################################ ; NameServer Records ; ########################################################################### dnsmaster.eracks.com. IN A 192.168.88.17 dnsmaster.eracks.com. IN AAAA ::8817 dnsslave.eracks.com. IN A 192.168.88.250 dnsslave.eracks.com. IN AAAA ::8250 ; ################################ ; Other Host Records ; ########################################################################### hostserver.eracks.com. IN A 192.168.88.221 hostserver.eracks.com. IN AAAA ::8221 ;
It’ll look like this;
Next for “reverse.eracks.com†database, we’ll copy the existing “db.127†database file that is created as default with Binid9 installation under ‘/etc/bind/’ directory as well. So, we’ll run the following command;
And edit using the following command
Entries for the database are follows
; ########################################################################### ; ### ******************************************************************* ### ; ##### Reverse Look Up Zone Data Files For eRacks.Com Domain ############### ; ########################################################################### $TTL 3600 @ IN SOA dnsmaster.eracks.com. root.eracks.com. ( 2018110111 ; Serial 4800 ; Refresh 360 ; Retry 2419200 ; Expire 7200 ) ; Negative Cache TTL ; @ IN NS dnsmaster.eracks.com. @ IN NS dnsslave.eracks.com. ; ################################ ; NameServer Records ; ########################################################################### 17.88.168.192.in-addr.arpa. IN PTR dnsmaster.eracks.com. 250.88.168.192.in-addr.arpa. IN PTR dnsslave.eracks.com. ; ################################ ; Other Host Records ; ########################################################################### 221.88.168.192.in-addr.arpa. IN PTR hostserver.eracks.com. ;
Once it is done, we’ll save the file and exit.
It’ll look like this;
After that, we’ll restart the bind9 DNS Server Service with the following command.
root@dnsmaster:~$ service bind9 status
Note: We should be careful that all the records that finishes with letter (other than IP addresses), we need to add full-stop (“.â€) at their end point to declare it is finished. Else, the bind9 will show an error.
For instant checkup, we need to set the resolver with nameserver as localhost IP 127.0.0.1 using following command;
And at the beginning of the name server lists we need to add the following line, then save and exit.
nameserver 127.0.0.1
For checkup we’ll use the “dig” command for specific host record like following
The command will dig up the host records from the local DNS Server as follow
If the configuration is correct then the above command will not show any error. or if there is any error, we need to look at log file and troubleshoot the error. For detail about bind9 troubleshooting on Ubuntu Server please visit Ubuntu’s official “DNS Troubleshooting Page” or contact eRacks Systems’ expertise for the help.
Step 6: Bind9 Post installation Configurations for successful service run on Ubuntu Server.
When, the bind9 shows no error, we need to set the post installation configuration for Bind9 DNS Server Service to run successfully on Ubuntu Server. To do so, we’ll run these following commands for give appropriate access permission to the Bind9 Server Service and Allow through Ubuntu Firewall (ufw).At first, we’ll enable the bind9 DNS Server Service at the system start up with the following command. So that the Bind9 always starts automatically after the system reboot.
Then for the access permission for Bind9 on ubuntu server, we’ll run the following commands;
root@dnsmaster:~$ chown -R bind:bind /etc/bind
We’ll also configure the Ubuntu firewall in order to allow Bind9 through Ubuntu firewall (ufw). For configuring ufw we’ll run the following commands one by one.
root@dnsmaster:~$ ufw allow “Bind9”
root@dnsmaster:~$ ufw reload
root@dnsmaster:~$ ufw status
root@dnsmaster:~$ ufw status verbose
Then we’ll restart both servives Bind9 and the ufw with the following commands;
root@dnsmaster:~$ systemctl restart service.service
We could always restart and check status of the Bind9 DNS Server Service with following command.
root@dnsmaster:~$ service bind9 status
If everything is alright, the Bind9 status report will show no error. Beside, we could always visit this MxToolbox website for more detail reports and troubleshooting by entering the domain.
Asif Raihan May 8th, 2018
Posted In: How-To, Linux, Open Source, servers
Tags: linux, Open Source, tutorial, ubuntu