Questions about setting up a FreeBSD Server

TechBoyJK

Lifer
Oct 17, 2002
16,701
60
91
Hi,

I work at a datacenter and they are going to allow me to setup a small server farm for me to play with in my spare time. I am going to use a few P2 400Mhz machines, and a cisco 1900 catalyst switch. I will be given a 10mb ethernet port to connect to. I have a half rack to use.

I am going to use this just to learn on. Now when i say learn, I'm really meaning bring everything together that I have been reading and researching for the past year or so. I have a pretty good grip on the concepts behind servers, how firewalls work, etc. I know enough to say that my preference for a firewall is openbsd with packet filter. That slackware and debian are probably functionaly better than redhat or mandrake, but redhat and mandrake are easier to use. I understand a bunch of otherstuff to, but I have been cramming it in that I just don't feel like I am putting it all together right.

I have already setup a web server using apache on mandrake via xwindows, used a static private ip, and used my router to forwards packets, etc. I haven't touched ip tables yet. I understand the concept of rules and to block the ports to applications you don't use, and pretty much every port except the ones you absolutely can't get around having blocked. I understand Ip addresses, subnetting, /24 is 256 ips, etc. I actually started on computers when I was 5, and did a lot of command line work, stuff in basic, programming legos, etc. So I am not timid at tearing at the command line and working in text files. Easy stuff.

So I got these servers, the Cisco catalyst 1900 12 port switch, and the feed from my DC. I don't want to pay the Microsoft ease of use tariff, so off to open source land I go. I have never had a chance to have this kind of platform to play with. I want to take advantage of the time I have given to me, so I am immediately starting with a project. The first thing I want to learn is how to setup a single FreeBSD server thats solid and dependable. It needs to have mySQL up and airtight, as well as php, apache, iptables, qmail, ssh program, maybe coldfusion. Eventually I will break this all down across multiple servers, but for now, all on one. The step after that is to give it a second nic to transmit through. I would like to use to send media over, like pics, mp33, vids, and the other to do all other serving needs, like mail, web, etc. After that I will add another server, and put database on it, and have it only connect to the other server, not to switch. I'm not finished with the plan, yet, but if anybody wants to jump in with some guidance let me know. Like I said, I really could use helping hand tieing this systems together. Don't go out of your way to dumb things down, I'll probably get it quick. Thanks in advance...
 

skyking

Lifer
Nov 21, 2001
22,004
4,760
146
Mixing firewall features on a DB and webserver is not a good way to go, IMO. If you want to set up a firewall/router, do that seperately.
 

TechBoyJK

Lifer
Oct 17, 2002
16,701
60
91
yea i totally agree, but for starters, all on the same box. Once this is working, then I will start abstracting applications to specialized servers.
 

skyking

Lifer
Nov 21, 2001
22,004
4,760
146
do you intend to use it as a gateway/firewall? I have never used iptables, the default gateway program for freebsd is IPFW.
my current router/firewall is set up with that. My web/samba server is also freebsd.
Do some research at freebsd.org, most of your answers are there. The ports collection is very easy to implement, and handles dependencies very nicely.
 

TechBoyJK

Lifer
Oct 17, 2002
16,701
60
91
No, the datacenter will provide the default gateway. So I don't really need any routing services.