Introduction to Grid Computing!

Similar documents
Grid Roll: Users Guide. Version 4.3 Edition

Cluster Management and Maintenance

Viglen NPACI Rocks. Getting Started and FAQ

HySecure Quick Start Guide. HySecure 5.0

AsteriskNow IPTables Firewall Configuration

Cluster. Cluster Overview

This material is based on work supported by the National Science Foundation under Grant No

Introduction to Firewalls using IPTables

Linux Administration

RealPresence Access Director System Administrator s Guide

Installing Service Packs on Avaya Aura Session Manager. Release 1.2 August 2009 Issue 1

Communication protocols and services

Install CPS All In One on VMWare Virtual Player 12

User Manual. SSV Remote Access Gateway. Web ConfigTool

MyProxy Server Installation

Bitnami Pimcore for Huawei Enterprise Cloud

CA Agile Central Installation Guide On-Premises release

How to Restrict a Login Shell Using Linux Namespaces

Load Balancing FreePBX / Asterisk in AWS

LAB :: Secure HTTP traffic using Secure Sockets Layer (SSL) Certificate

Certificate Authorities: Information and Usage

Introduction to Change and Configuration Management

UGP and the UC Grid Portals

Installing and Configuring VMware Identity Manager Connector (Windows) OCT 2018 VMware Identity Manager VMware Identity Manager 3.

CA Agile Central Administrator Guide. CA Agile Central On-Premises

GSS Administration and Troubleshooting

RedHat Certified Engineer

10 Defense Mechanisms

Tanium Appliance Installation Guide

Server Administrator Version 8.2 Installation Guide Citrix XenServer

Cluster Computing Spring 2004 Paul A. Farrell 4/25/2006. Dept of Computer Science Kent State University 1. Configuring & Tuning Cluster Networks

Load Balancing Nginx Web Servers with OWASP Top 10 WAF in AWS

Certification. Securing Networks

iptables and ip6tables An introduction to LINUX firewall

Globus Toolkit Manoj Soni SENG, CDAC. 20 th & 21 th Nov 2008 GGOA Workshop 08 Bangalore

Lockdown & support access guide

World Skills Competition. Trade 39: IT PC and Network Support. Day 2 Competition

Base Roll: Users Guide. Version 5.2 Edition

Assignment 3 Firewalls

RHCSA BOOT CAMP. Network Security

Troubleshooting Cisco APIC-EM Single and Multi-Host

Bitnami Apache Solr for Huawei Enterprise Cloud

NETWORK CONFIGURATION AND SERVICES. route add default gw /etc/init.d/apache restart

Bitnami MySQL for Huawei Enterprise Cloud

Load Balancing Nginx Web Servers with OWASP Top 10 WAF in Azure

Part 1 : Getting Familiar with Linux. Hours. Part II : Administering Red Hat Enterprise Linux

Agent Teamwork Research Assistant. Progress Report. Prepared by Solomon Lane

Bitnami Tiny Tiny RSS for Huawei Enterprise Cloud

Upgrade Guide. Platform Compatibility. SonicWALL Aventail E-Class SRA EX-Series v Secure Remote Access

Globus Installation Procedure

Base Roll: Users Guide. Version 5.0 Edition

1Z Oracle Linux 6 Implementation Essentials Exam Summary Syllabus Questions

Firewalls. Content. Location of firewalls Design of firewalls. Definitions. Forwarding. Gateways, routers, firewalls.

Configure the sources (note this is for a localhost install, you can change it to whatever vhost you want)

Troubleshoot. Locate chip.log File. Procedure

Installing on a Virtual Machine

Content Gateway v7.x: Frequently Asked Questions

VMware Identity Manager Connector Installation and Configuration (Legacy Mode)

Bitnami ez Publish for Huawei Enterprise Cloud

HMC The New Console on the Block John Still

Critical Analysis and last hour guide for RHCSA/RHCE Enterprise 7

Spacewalk. Installation Guide RHEL 5.9

Spacewalk. Installation Guide for CentOS 6.4

Installing Cisco Multicast Manager

FreeSWAN with Netgear ProSafe VPN Client

Area51 Roll: Users Guide. Version 4.1 Edition

Bitnami MariaDB for Huawei Enterprise Cloud

Cluster Computing Spring 2004 Paul A. Farrell

Bitnami Piwik for Huawei Enterprise Cloud

AD Enterprise 6.5 Installation & Upgrade Guide Contents

Logging Container. VNS3 Plugins Guide 2018

Upgrading from TrafficShield 3.2.X to Application Security Module 9.2.3

Troubleshoot. What to Do If. Locate chip.log File

dcache Introduction Course

MMS Backup Manual Release 1.4

Scenario: V114 Configuration on Vyatta

Troubleshoot. What to Do If. Locate chip.log File. Procedure

Firewalls. Firewall types. Packet filter. Proxy server. linux, iptables-based Windows XP s built-in router device built-ins single TCP conversation

BIG-IP System and Thales HSM: Implementation. Version 12.1

14. Configuring Telnet in Knoppix

Università Ca Foscari Venezia

Cisco Cloud Services Platform 2100 Quick Start Guide, Release 2.2.5

RSA SECURID ACCESS PAM Agent Implementation Guide

RG-MACC_2.0 Installation Manual

Table of Contents 1.1. Install, Deploy, Maintain Infrastructure Installation Download. Deploy the Appliance

Database Security Service. FAQs. Issue 19 Date HUAWEI TECHNOLOGIES CO., LTD.

Cisco PCP-PNR Port Usage Information

MSE System and Appliance Hardening Guidelines

Procedure to Connect NIC VPN in Windows for ebiz

UCLA Grid Portal (UGP) A Globus Incubator Project

Load Balancing Web Servers with OWASP Top 10 WAF in AWS

Bitnami ProcessMaker Community Edition for Huawei Enterprise Cloud

CIS 192 Linux Lab Exercise

PlateSpin Transformation Manager Appliance Guide. June 2018

Install the ExtraHop session key forwarder on a Windows server

Firewalls. October 13, 2017

Cisco Unified Operating System Administration Web Interface

Bitnami Re:dash for Huawei Enterprise Cloud

WEM Installation Manual Version 1.0. Samsung Wireless Enterprise Manager (WEM) Installation Manual

Netfilter. Fedora Core 5 setting up firewall for NIS and NFS labs. June 2006

Transcription:

Introduction to Grid Computing! Rocks-A-Palooza II! Lab Session! 2006 UC Regents! 1!

Using The Grid Roll! Option 1! Reinstall! frontend upgrade! Option 2! Use kroll! 2006 UC Regents! 2!

Option 1: Re-Installation Begin Upgrade! 1. Insert Boot CD into frontend! 2. Login as root! # insert-ethers --dump > /export/insert-ethers.sh # add-extra-nic --dump > /export/add-extra-nic.sh # tar -cf /export/ssh.tar /root/.ssh # init 6 3. At the Rocks Boot Prompt type frontend upgrade central=xxx.xxx.xxx! 4. Same procedure as before but select Grid in addition to the other Rolls! 2006 UC Regents! 3!

Option 1: Re-installation Choose Disk Druid! Re-attach all partitions! /! /state/partition1! Re-Format! /! Do not Re-Format! /state/partition1! 2006 UC Regents! 4!

Option 1: Re-Installation Login as Root! Create Simple Certificate Authority! Not a valid production CA! Use only to verify Globus installation! Enter CA passphrase: Enter CA passphrase (again): Installing Globus CA (takes a few minutes) Done. Stopping xinetd: [ OK ] Starting xinetd: [ OK ] Stopping MDS [ OK ] Starting MDS [ OK ]! 2006 UC Regents! 5!

Option 1: Re-Installation Restore Compute Nodes! Restore Cluster Database! # sh /export/insert-ethers.sh # sh /export/add-extra-nic.sh # tar -xf /export/ssh.tar # insert-ethers --update # rm /export/insert-ethers.sh # rm /export/add-extra-nic.sh /export/ssh.tar Re-Install compute nodes! # ssh-agent $SHELL # ssh-add # cluster-fork /boot/kickstart/cluster-kickstart-pxe! 2006 UC Regents! 6!

Option 2: kroll! Insert Grid Roll CDROM into frontend # mount /dev/cdrom /mnt/cdrom # cd /home/install # rocks-dist --install copyroll # umount /mnt/cdrom # rocks-dist dist # kroll grid > /tmp/grid-install.sh # sh /tmp/grid-install.sh 2006 UC Regents! 7!

Option 2: kroll Login as Root! Create Simple Certificate Authority! Not a valid production CA! Use only to verify Globus installation! Enter CA passphrase: Enter CA passphrase (again): Installing Globus CA (takes a few minutes) Done. Stopping xinetd: [ OK ] Starting xinetd: [ OK ] Stopping MDS [ OK ] Starting MDS [ OK ]! 2006 UC Regents! 8!

Globus Usage Statistics www-unix.globus.org/toolkit/docs/4.0/usage_stats.html! New default feature of GT4! Statistics gathered and reported back to usage-stats.globus.org! Add DROP rule to iptables (see next slide)! Restart Firewall! # service iptables restart 2006 UC Regents! 9!

Sample: /etc/sysconfig/ iptables *nat -A POSTROUTING -o eth1 -j MASQUERADE COMMIT... # Deny section -A INPUT -p udp --dport 0:1024 -j REJECT -A INPUT -p tcp --dport 0:1024 -j REJECT # Block incoming ganglia packets on public interface. -A INPUT -p udp --dport 8649 -j REJECT # Disable Globus Usage Statistics Reporting from this host -A OUTPUT -d usage-stats.globus.org -j DROP # For a draconian "drop-all" firewall, uncomment the line below. #-A INPUT -j DROP COMMIT 2006 UC Regents! 10!

Globus Commands! 2006 UC Regents! 11!

Globus Commands! grid-cert-request! Generate an SSL Certificate Request file! Used by Certificate Authority to build the User Certificate! local-ca-sign! Rocks specific command, must be run as root! Search all user home directories for Certificate Request files and creates User Certificates! Also adds all users to the local grid map file! grid-proxy-init! Starts an SSL Certificate proxy! Similar to ssh-agent! Type in passphrase once for lifetime on the proxy! globus-job-run! Issue a remote command on a globus machine using your user certificate! 2006 UC Regents! 12!

grid-cert-request! Login as normal user! $ grid-cert-request! Enter your name, e.g., John Smith: Spaceman Spiff A certificate request and private key is being created. You will be asked to enter a PEM pass phrase. This pass phrase is akin to your account password, and is used to protect your key file. If you forget your pass phrase, you will need to obtain a new certificate. Using configuration from /etc/grid-security/globus-user-ssl.conf Generating a 1024 bit RSA private key...++++++...++++++ writing new private key to '/home/gridboy/.globus/userkey.pem' Enter PEM pass phrase: XXXXXXXXX Verifying password - Enter PEM pass phrase: XXXXXXXXX 2006 UC Regents! 13!

local-ca-sign! Login as root user! # local-ca-sign! Enter CA passphrase: XXXXXXXX Enter password for the CA key: XXXXXXXX The new signed certificate is at: /root/.globus/simpleca// newcerts/03.pem /etc/grid-security/grid-mapfile does not exist... Attempting to create /etc/grid-security/grid-mapfile (1) entry added 2006 UC Regents! 14!

grid-proxy-init / globus-job-run! Login as normal user! $ grid-proxy-init! Your identity: /O=Grid/OU=San Diego Supercomputer Center/ OU=rocks12.sdsc.edu/OU=sdsc.edu/CN=Spaceman Spiff Enter GRID pass phrase for this identity: Creating proxy... Done Your proxy is valid until: Tue Sep 9 10:53:51 2003 $ globus-job-run localhost /bin/hostname! rocks12.sdsc.edu! 2006 UC Regents! 15!

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback