summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJulien-zte <zhang.jun3g@zte.com.cn>2015-11-06 09:24:09 +0800
committer10013968 <zhang.jun3g@zte.com.cn>2016-07-19 23:15:38 +0800
commit6c30e99e8c33605f01322a125bb88a6639fa9ff8 (patch)
tree26a0bc893cc92d8b40b91ea777df38d788f840c2
parentdd0f5a83b266340ddd72d500a8318b8076d15a93 (diff)
Add detailed configuration steps to Jump server
Add more information for configuration the Jump server 1. bridge interface 2. sshd 3. nameserver JIRA: PHAROS-78 Change-Id: I9e30828f95c2d338ebbb0050424fef5a91afe916 Signed-off-by: Julien-zte <zhang.jun3g@zte.com.cn>
-rw-r--r--docs/configguide/jumpserverinstall.rst27
1 files changed, 21 insertions, 6 deletions
diff --git a/docs/configguide/jumpserverinstall.rst b/docs/configguide/jumpserverinstall.rst
index 19a659a2..e51e9469 100644
--- a/docs/configguide/jumpserverinstall.rst
+++ b/docs/configguide/jumpserverinstall.rst
@@ -28,9 +28,9 @@ may be outdated (please refer to Fuel Installer documents).
``service network restart``
-6. Edit /etc/resolv.conf and add a nameserver
+6. Edit /etc/resolv.conf and add a nameserver, for example 8.8.8.8
- ``vi /etc/resolv.conf``
+ ``echo nameserver 8.8.8.8 >> /etc/resolv.conf``
7. Install libvirt & kvm
@@ -42,13 +42,26 @@ may be outdated (please refer to Fuel Installer documents).
``shutdown -r now``
-9. If you wish to avoid annoying delay when use ssh to log in, disable DNS lookups:
+9. Configure SSHD
- ``vi /etc/ssh/sshd_config``
+ If you wish to avoid annoying delay when use ssh to log in, disable DNS lookups:
- Uncomment "UseDNS yes", change 'yes' to 'no'.
+ When **UseDNS** is existed in the config file, update it:
- Save
+ ``sed -i -e 's/^#*UseDNS\ \+yes/UseDNS no/' /etc/ssh/sshd_config``
+
+ or append the setting when not existed:
+
+ ``echo UseDNS no >> /etc/ssh/ssd_config``
+
+ Disable Password Authenticaion for security:
+
+ ``sed -i -e 's/^#PasswordAuthentication\ \+yes/PasswordAuthentication no/' /etc/ssh/sshd_config``
+
+ If you want to disable IPv6 connections, comment IPv6 ListenAddress and change AddressFamily to inet:
+
+ ``sed -i -e 's/^ListenAddress\ \+::/#ListenAddress ::/' /etc/ssh/sshd_config``
+ ``sed -i -e 's/^AddressFamily\ \+any/AddressFamily inet/' /etc/ssh/sshd_config``
10. Restart sshd
@@ -62,6 +75,8 @@ may be outdated (please refer to Fuel Installer documents).
13. Create a bridge using the interface on the PXE network, for example: br0
+ ``brctl addbr br0``
+
14. Make a directory owned by qemu:
``mkdir /home/qemu; mkdir -p /home/qemu/VMs/fuel-6.0/disk``