arif/xcat-core
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

add additional steps into xcatconfig: disable selinux, configure static ip address, setup ntp server, disable firewall

Browse Source 
git-svn-id: https://svn.code.sf.net/p/xcat/code/xcat-core/trunk@13714 8638fb3e-16cb-4fca-ae20-7b5d299a9bcd
This commit is contained in:
ligc 2012-09-04 09:24:29 +00:00
parent 2736fe0588
commit ffc39dff2e
1 changed files with 102 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

103
xCAT-server/sbin/xcatconfig
View File

@ -416,6 +416,107 @@ if ($::INITIALINSTALL || $::FORCE)
system("chkconfig dhcpd on");
# Turn off selinux on RedHat
if (-f "/etc/redhat-release")
{
my $rc=xCAT::Utils->isSELINUX();
if ($rc != 0)
{
xCAT::MsgUtils->message('W', "SELINUX is not disabled, disabling it now...");
# Disable selinux for running system
my $cmd = "echo 0 > /selinux/enforce";
my $outref = xCAT::Utils->runcmd("$cmd", 0);
if ($::RUNCMD_RC != 0)
{
xCAT::MsgUtils->message('E', "Failed to disable SELINUX.");
}
# Disable selinux through reboots
my $cmd = "sed -i 's/^SELINUX=.*\$/SELINUX=disabled/' /etc/selinux/config";
my $outref = xCAT::Utils->runcmd("$cmd", 0);
if ($::RUNCMD_RC != 0)
{
xCAT::MsgUtils->message('E', "Failed to disable SELINUX.");
}
}
}
# Configure static ip addresses on the network interfaces
if (-f "$::INSTALLDIR/postscripts/hardeths")
{
my $cmd = "$::INSTALLDIR/postscripts/hardeths";
my $outref = xCAT::Utils->runcmd("$cmd", 0);
if ($::RUNCMD_RC != 0)
{
xCAT::MsgUtils->message('E', "Failed to configure static ip addresses");
}
}
# Setup ntp server
if (-f "/etc/ntp.conf")
{
my $cmd = "echo 'driftfile /var/lib/ntp/drift' > /etc/ntp.conf; echo 'disable auth' >> /etc/ntp.conf; echo 'restrict 127.0.0.1' >> /etc/ntp.conf; echo 'server 127.127.1.0' >> /etc/ntp.conf; echo 'fudge 127.127.1.0 stratum 10' >> /etc/ntp.conf";
my $outref = xCAT::Utils->runcmd("$cmd", 0);
if ($::RUNCMD_RC != 0)
{
xCAT::MsgUtils->message('E', "Failed to update /etc/ntp.conf");
}
my $ntpserv;
if (-f "/etc/redhat-release")
{
$ntpserv = "ntpd";
}
else
{
$ntpserv = "ntp";
}
$cmd = "service $ntpserv restart";
$outref = xCAT::Utils->runcmd("$cmd", 0);
if ($::RUNCMD_RC != 0)
{
xCAT::MsgUtils->message('E', "Failed to start ntp service");
}
if (-f "/sbin/chkconfig")
{
$cmd = "chkconfig $ntpserv on";
$outref = xCAT::Utils->runcmd("$cmd", 0);
if ($::RUNCMD_RC != 0)
{
xCAT::MsgUtils->message('E', "Failed to enable ntp service on every boot");
}
}
}
# Disable firewall
my $fwserv;
if(-f "/etc/SuSE-release")
{
$fwserv = "SuSEfirewall2_setup";
}
elsif(-f "/etc/redhat-release")
{
$fwserv = "iptables";
}
else
{
#Ubuntu: FIXME
}
if($fwserv)
{
my $cmd = "service $fwserv stop";
my $outref = xCAT::Utils->runcmd("$cmd", 0);
if ($::RUNCMD_RC != 0)
{
xCAT::MsgUtils->message('E', "Failed to stop firewall");
}
$cmd = "chkconfig $fwserv off";
$outref = xCAT::Utils->runcmd("$cmd", 0);
if ($::RUNCMD_RC != 0)
{
xCAT::MsgUtils->message('E', "Failed to disable firewall on boot");
}
}
my $linux_note =
"xCAT is now running, it is recommended to tabedit networks \nand set a dynamic ip address range on any networks where nodes \nare to be discovered. Then, run makedhcp -n to create a new dhcpd \nconfiguration file, and \/etc\/init.d\/dhcpd restart. Either examine sample \nconfiguration templates, or write your own, or specify a value per \nnode with nodeadd or tabedit.";
xCAT::MsgUtils->message('I', $linux_note);
@ -921,7 +1022,7 @@ sub initDB
my $master;
$master = xCAT::NetworkUtils->getipaddr($hname);
if (!$master) {
xCAT::MsgUtils->message("E", "Hostname resolution for $hname failed.");
xCAT::MsgUtils->message("E", "Hostname resolution for $hname failed, setting the site.master to NORESOLUTION for now, after the xCAT installation is finished, fix this hostname resolution problem, change the site.master to the correct value and then resart xcatd.");
$master = "NORESOLUTION";
}
# get forwarders which are the nameserver entries in /etc/resolv.conf