Institute of Computer Science
  1. Courses
  2. 2017/18 spring
  3. System Administration (LTAT.06.003)
ET
Log in

System Administration 2017/18 spring

  • Home
  • Video Lectures
  • Practicals
  • Exam
  • References

System Administration 2018 exam.

  • NB! 2018 exam practice demo machine can be accessed from http://sa.cs.ut.ee/pub/sa18-teacher-broken.7z
  • When: 2 last weeks of semester (21 of May 2018 - 03 of June 2018) during your registered lab time or preannounced examination times for e-learning groups.
First exam attempt
DATETIMEROOMCOMMENTS
21. May18-20L2-123Allowed to register only from Group 1.
23. May12-14L2-123Allowed to register only from Group 2.
23. May18-20L2-123Allowed to register only from Group 3.
24. May10-12L2-123Allowed to register only from Group 5.
24. May14-16L2-205Allowed to register for all e-groups (Group 4. 7. 8.)
24. May18-20L2-123Allowed to register only from Group 6.
25. May12-14L2-205Allowed to register for all e-groups (Group 4. 7. 8.)
Second exam attempt
28. May18-20L2-123NO REGISTRATION ALLOWED, 1st attempt participation list will be used
30. May12-14L2-123NO REGISTRATION ALLOWED, 1st attempt participation list will be used
30. May18-20L2-123NO REGISTRATION ALLOWED, 1st attempt participation list will be used
31. May10-12L2-123NO REGISTRATION ALLOWED, 1st attempt participation list will be used
31. May14-16L2-205NO REGISTRATION ALLOWED, 1st attempt participation list will be used
31. May18-20L2-123NO REGISTRATION ALLOWED, 1st attempt participation list will be used
01. June12-14L2-205NO REGISTRATION ALLOWED, 1st attempt participation list will be used
Final Grade best of 2 exam attempts
  • Where: Physically in Juhan Liivi 2 class 123 or lab 205 (no online exams allowed)
  • Duration: You will be given exactly 2 hours from the start.
  • Help: Indirect help is ALLOWED (including Google, your own physical or digital notes, lab machine and so on). Direct communication with a physical person or virtual friend online (Skype, Facebook, e-mail, chat pages and so) will result in immediate FAILURE.
  • How:
    • You will be given a broken VDI file, you have to get it up and running in either your laptop or classroom machine.
      • Example: unbroken vdi of teacher2.yks
      • Example2: broken exam vdi from wednesday
    • The shared VDI will contain Debian 9 64-bit installation (amd64 pae kernel).
    • Virtualbox is preferred virtualizer (but any should work).
    • You have to bridge your virtual machine's network adapter to physical machine's incoming adapter "Ethernet" (or WiFi adapter).
    • You will not know any of the passwords
    • You must decide best Virtualbox settings based on your hardware and virtualized operating system
      • Number of Processors
      • Amount of Memory
      • PAE and/or VT-x support for Acceleration
      • USB and Network settings

By the end of exam you must get all the same services working with new domain and IP address as in the Labs with similar setting adjusted to new network schema including:

  • DNS for resolving own domain as well as world wide addresses
  • Mail for internal delivery (only inside your own domain using Thunderbird and Roundcube)
  • Apache (all the declared virtual hosts available in your domain, defaults to HTTPS)
  • NFS services (either Quota, Samba, NFS, nextCloud) depending of the exam
  • Monitoring


Environment:

  • Network: Class network uses IP range 192.168.10.0/24 and you should choose any free IP from the same range
    • nmap -sP 192.168.10.0/24 can be used to help choose.
    • Gateway 192.168.10.1/24
    • No separate DNS servers, your VM should be your own DNS after you fix it.
  • Domain: In each exam you will be presented with a different top level domain (i.e. .ykz, .upz, .dog, .pig etc) from the labs configured .est.
    • For sub-domian name you can use any but the same ut_loginname is preferred. So in case the TLD is .cat and your login is mylogin the domains like mylogin.cat and somethingelse.cat are OK.
  • Grading: - Best of 2 attempts will be your final grade
  • F – any of Virtual Machine or dig @192.168.10.X www.google.com or dig @192.168.10.X ut_login.ykz not working fails exam (Grade E will be RECECT'ed by teachers FIREWALL)
  • D – DNS up and working (adjusted to changes)
  • C – mail (Thunderbird can receive and send e-mail) or apache (secure Roundcube login or other page display)
  • B – mail + apache both working without issues
  • A – everything working in timely manner, that teachers throw at you (from the list of topics covered in labs and lectures)
  • Command Hints:

The order of following commands depends on what you fix first.

  1. Check if you have new hostname applied hostname
  2. find unused IP address: nmap -sP 192.168.10.0/24
  3. Test Default Gateway: ping 192.168.10.1
  4. Test The Internet: ping 8.8.8.8
  5. Check what server is used for resolving: cat /etc/resolv.conf
  6. Check if any DNS can be reached (for example Google) and can resolve ut.ee dig @8.8.8.8 ut.ee
  7. Check if your own DNS can resolve world wide addresses (here X is last octed of your own IP) and can resolve ut.ee dig @192.168.10.X ut.ee
  8. Check if your own DNS can resolve your own domain dig @192.168.10.X ut_login.estNS
  9. Check the Mail exchange host for your domain (here X is last octed of your own IP) dig @192.168.10.X utlogin.est MX
  10. Check if the resolver can actually resolv nslookup www.google.com and nslookup utlogin.est
  11. Check active Firewall rules with iptables -S or iptables -L -n
  12. Check if your laptop/classroom machine can access your Virtual Server ping 192.168.10.X and ping mail.<yourdomain>.est if not add your Server IP as primary DNS in laptop (client).
  13. check status of services postfix, dovecot and apache wit systemctl status postfix.service -l
  14. Server can send e-mail locally using alpine and through Thunderbird
  15. With lynx check if apache pages can be reached locally from server lynx https://www.<yourdomain>.est
  16. Check if https://www.<yourdomain>.ykz can be reached from a client (your laptop)
  17. Check if http://webmail.<yourdomain>.ykz will be routed to roundcube login page and HTTPS.
  18. Check if you can log into roundcube and test sending e-mail to different user.
  19. Check if new secure vhost exam.ut_login.est with userdir module serving only user tester with PHP
  20. Commands named-checkconf, named-checkzone, postconf -n, doveconf -n and apachectl -S might help you too.
  21. Common log files to check for errors:
    • /var/log/syslog
    • /var/log/mail.log
    • /var/log/bind9/
    • /var/log/dovecot/
    • /var/log/apache2/
    • /var/log/
  22. More useful commands:
    • Checking in what file and at what line the value occurs (over multiple files):
      • grep -Hni <value> <file.*>
        • Here -H highlights file name
        • Here -n highlights line number
        • Here -i for case insensitive search
      • grep -Hni <value> <*.conf>
    • Checking in what file and at what line the value occurs (over all files in directory):
      • grep -RHni <value> <dir>
        • Here -R for recursive traverse over directory contents
    • Checking in what file and at what line the value occurs (over specific files in directory):
      • find <dir> -iname '.conf' -exec grep -Hni <value> {} \;
        • Here <dir> where to look for files
        • Here -iname '.conf' how to match file names
        • Here -exec <cmd> what to execute on each matched file
        • Here {} substituting the matched filenames into grep -Hni <value> <file> command
        • Here \; terminating the -exec closure of find command
    • Filtering not commented lines:
      • gerp -v '#' <file>
  • Institute of Computer Science
  • Faculty of Science and Technology
  • University of Tartu
In case of technical problems or questions write to:

Contact the course organizers with the organizational and course content questions.
The proprietary copyrights of educational materials belong to the University of Tartu. The use of educational materials is permitted for the purposes and under the conditions provided for in the copyright law for the free use of a work. When using educational materials, the user is obligated to give credit to the author of the educational materials.
The use of educational materials for other purposes is allowed only with the prior written consent of the University of Tartu.
Terms of use for the Courses environment