Who runs a domain at home?
Monday, November 1st, 2004 - 11:37pm
I was considering running a domain (Win 2k3 server), and Mdaemon mail server (if not maybe exchange) so I can get practice for work at home. My question is this. What kind of hardware do you run the server on? Whats your group policies and security settings? Anything cool or neat I should know about?
Also anything worthy here will be promptly added to the IT guy toolkit thread.
Damn Windows punks, renaming technical terms to some wierdass definition. I thought this thread was about having your own internet domain running out of your house.
Debian, Postfix, ninjapanda.org - a real domain.
"Poor Eli Nooo... *child starts crying*"
"Come on now, there's no need to make that kind of noise. It sounds awful and you'll upset other people." - Ionae from Spirit Engine 2
I run an active directory domain but it''s not all that and you could get by just by running a stand alone server box. Since I share out my wifi connection with the neighbors it adds a layer of security for my internal network against them in case they get nosy.
I have some test OU''s for studying and such but the only GPO I''m running is for the System Update Services which will basically turn your ServerOS box into a network windows update server. With the GPO you can configure if your managed clients will have the option of installing the updates or if they just get installed w/o interaction and other such stuff. It can be used in a AD enviro or used as a local GPO if you''re a workgroup enviro and as the domain admin you get to approve/disapprove of what updates are authorized for your enviro.
I''m currently running Win2k AS for my DC but when I''m done with the 2K MCSE (two tests left!) I''m going to upgrade it to 2K3 SBS. I have a friend at MS who can shop at the store otherwise I''d probably do the Action Pack for partners it''s 300$ a year for pretty much all the software you''d need to run a home Windows based IT consultant business.
The DC is 550MHZ P3 with 384MB ram. Two drives, one 15GB for the system files and an 80GB for the file shares. I''m only hosting 2 users (me and my wife) and 5 pcs at the moment so my shares are kind of small but it was nice to get all of my personal downloads onto the network and off my D:\\drive. I also have a 20/40 dds tape for backups in the server and do those once a month. My test workstation is Win2k Pro and has my transcenders, it got to be too much of a bitch to call them to reactivate whenever I rebuilt the server where as the workstation is pretty static and can be unjoined/rejoined to domains more painlessly than dcpromos on the server. My other three clients are XP Pro.
My pet project right now is a Presario 800 a friend of mine got me with a P2 400proc and a gig of ram. I just ebayed for two P3 600''s to put into the box. Next paycheck will be the SATA raid card and then the next few paychecks will be the 4 250GB drives for a raid 5 setup. My old linux media file server drives are dying so I''ve got to get that thing running to replace it, it will be my new SBS DC when all is said and done. I''ve got a copy of Win2K3 server sitting here too that I''ll probably use to convert the current DC to a redundant DC when the presario is finished. The new box will be a bit better for the SBS2k3 although my current system wouldn''t really choke on it. I''ll setup my linux web box as a backup mail box (it''s a bitch to configure but I think I''ll learn a lot doing it) for the exchange in SBS.
As I said, right now I don''t worry too much about password or environment GPO''s but when we have kids and they start getting PC age I''m going to lock them down airtight and start enforcing password histories and complexities.
You won''t run into too many problems going AD but the thing to be mindful of is that converting profiles can be a bitch. You''ll want to mess with your settings for offline files, roaming/mandatory profiles and My Documents redirection to see if they will be something worth pursuing prior to setting up your users. I didn''t think the redirection or roaming profiles was worth it and my wife is saavy enough to know everything gets saved in MyDocs on H:\\.
I''m not sure if you''re married or not and how many other people will be affected by your decision but you''ll want to back up everything. My wife was almost in tears when I couldn''t find the address book back up I know I had made until I found it. If you''re using Outlook express now you''ll want to back up your store folders and all that. You may want to test with your own profile and just be mindful of everything you had to go back and get from your undomained profile to be knowledgable of what to get for other users before you cut them over.
That said once I implement exchange I think my wife is really going to like the calendar function and that could end up being bad for me in the long run
Do you ever walk alone like a drifter in the dark?
Careful - there are those who don''t take kindly to anything possibly interpreted as disparaging toward Bill''s Holy Platform.
WII FRIEND CODE: 6936 4764 8384 6058
Gaming / PC Tech Blog: www.blastprocessing.net
Xbox Live: Legion SB / PSN: Legion_SB / Steam: legion028 / Twitter: legion
I love me my *nix and I deal with windows enough to know what to do with it to stay employed. There just aren''t that many decent linux admin type jobs up here in Bill''s part of the country.
Do you ever walk alone like a drifter in the dark?
If you have a good PC with enough RAM and VMWare you can setup a network multiple server/workstation environment.
I''ll second that notion
. I finally got my server (old P3 450 with 128MB of ram) back up and running (Fedora Core 2) after a many month hiatus. It''s basically just a place to put family pictures, and for me to have access to a non-work Linux box (having an offsite box can really help troubleshoot various network issues).
Joedeth
Ironjoe
I know nothing of linux but I am trying to learn. Basically it will be 4 users (me, brother, mom and dad). Everyone right now uses web based email (hotmail, yahoo) except me (exchange for work, pop3 isp mail for personal). I just dont have any spare PC''s to experiment on. The three we do have can not be experimented on at all. So I''ll have to save up and buy a old pc.
Eezy, whats the difference between running active directory and a stand alone server? I thought that was the point of a server. You create a new account in exchange and everything else is taken care of. Domain login, synching my documents, profiles, vpn, security. Or am I missing something? Also how should I go about learning linux server/workstations. I am very interesting except I lack the equipment and possibly time to actually try it out myself.
XBox Live|Tshirts|xfire | Last.fm
AD/Domain will let you manage the workstations that are a part of the domain. A stand alone server (not promoted to domain controller) will let you run the server services that can run on Windows server but won''t authenticate users and verify permissions (so like current XP you''d have to setup user accounts that have the same name/password for seamless operation of file shares and such or just leave them wide open). These include DHCP, RIS, and DNS. You can still use the server as a file server or print server in ''stand-alone'' status, in fact you''ll see that it''s not a good thing to have every server in an AD enviro be a DC.
The primary reason for an AD domain is it''s a security boundry, you''ll see this time and time again as you move ahead. You''re right the power of the domain lies in the ability to promote the server to AD, create user accounts map the drives and all the other bennies of running a centralized network. My wife and I can use each others computers and the stuff we know is there is there.
However if you''re going to be running this at home you want to think of the ramifications for both you and your family for when you move on. You''ll either be forced to support them from here on out or remove the nice things they''ve gotten used to (depending on what you implement).
The best way to learn any OS is practice, the problem is after a certain point in life you''ve got to fight harder and harder to make time for that practice. YOu can buy used PC''s for cheap now a days (there are ads for 50$ P2''s with 64MB of ram in our local tech rag), the power of linux is that you can run all of the services I listed above off any linux distro for FREE. Basically if you decide to go into IT you''re going to see
Paper Tigers - Those who studied the material needed to pass the tests and got certified but have no idea how it really all works.
Uncertified Geniuses - There are more of these than you know. It''s almost as if you go retarded when you get certified but at a certain point it''s like a college degree you''ll need to get some certs to get some raises.
Certified Smart People - These are the people fighting the paper tigers and the perception that you retarded when certified. You have to talk to someone for a little bit to see if they actually belong here.
And like any job you have the people naturally gifted and the total idiots who make you want to kill.
Whether you concentrate on Linux or Windows you''ve got to seek out others doing the same thing, it''s nice to have a support group when your sh*t goes haywire and someone else to push/encourage you to keep going.
Two or three workstation networks are great practice arenas, sh*t some buddies and me replicated active directory using a null modem to simulate sites. It wasn''t my idea but I learned a lot from the setup and watching it in action. Start scouring the local techrags for the ads and start thinking about investing in a KVM switch so when you start aquiring boxes you don''t need to worry about desk real estate.
If you have any more questions feel free to PM me.
Do you ever walk alone like a drifter in the dark?
I actually just bought a KVM. Its only for two PCs (mine and the one I''ll be fixing and stuff) and I love it to death. I would be severly f*cked if I didn''t have it right now (the nic on this dell keeps going in and out every minute or so not allowing remote desktop connection). I fall in between genius and paper tiger (no certs, but smart enough to get things done but not on the level as a genius). In your post you mention RIS, what is that exactly as I am not familiar with that term. As for the money for the software I dont have to worry about that. My univeristy is part of the MS dev thing, so we get all MS products for free (Server ''03, Exchange, .Net, etc...) but I know their limitations. I just picked win 2k3 since that is what we are using at work the most (mostly due to customers).
I was probably gonna pick up something on the size of a shuttle box for the server and hide it in the closet. The way we have the exchange, file server, domain controller, and other servers setup is so efficient we really only need to touch them maybe twice a year (hurricane season backups). The real main reason is for central control of my families computing needs which include email, calander, contacts, files from the digital camera, media server, anti-virus, roaming profiles for my mom who likes to run between PC''s, and for experimentation for work. I already got a print server on the way that was on sale at Best Buy for $20 (802.11b wireless print server) so that is taken care of. I''ll just throw it into the AD and connect.
Any other recommendations? Pyro, or anyone else using linux; what are you linux solutions/uses?
XBox Live|Tshirts|xfire | Last.fm
I also run a Win2k Active Directory at home. Eezy really has done an execellent job explaining it so I don''t have much to add. My primary domain controller is a reasonably beefy dual Athlon MP 2000+ with 2 GB RAM, but it also doubles as my file/mail/FTP/print/SnapStream BeyondTV server. I also have a five workstation domain, having a domain makes it easy to access a centralized server or remotely administer workstations.
If you''re looking to do this as a test environment, I strongly recommend doing it with VirtualPC or VirtualServer. It''s a lot easier to roll-back an image when it gets borked than screwing your production domain, even if it is just at the house.
Live: LiquidmantisGWJ | PSN: LiquidmantisGWJ
Web: Mantis on the Mountain
--
Women can't be in the same room with me without abandoning men forever - rabbit
RIS is Remote Installation Server, it got introduced with windows 2000. It truly is what it sounds like you copy a cd of OS to a network share, slipstream your sp''s and patches into. Boot up a machine that needs to be ''imaged'' (you can use images with this too but it''s out of scope here) and with the NICs PXE (pronounced pixie) capability it will boot from the network and start to install win2k Pro, server or XP. You can use text ''answer'' files to have it be auto install with no human interaction. When you start doing your tests you''ll find all this out and then some. Once again you can use a linux samba share and open source software to flesh this system out. A buddy of mine has done it at his work.
Do you ever walk alone like a drifter in the dark?
Well I wasn''t really knocking Windows as I was the terminology renaming it likes to perpetrate.
For instance
Windows Domain vs Real Domain
"Poor Eli Nooo... *child starts crying*"
"Come on now, there's no need to make that kind of noise. It sounds awful and you'll upset other people." - Ionae from Spirit Engine 2
I have a p2-300 box with 192 mb of RAM or something in it running RedHat 9. It houses my home web site and an IMAP server that just fetches my email from the outside and acts as a big hard drive for it so I don''t have to worry about running over quota. I run the postgresql database server on it for my forum, and I just installed mysql the other day for a little side project. I use an awesome spam filtering service called mymailman.com.
I use the gallery for PHP to host zillions of digital photos of my daughter for my family to see. How many zillions? It takes 7 CD-Rs to back up just the gallery, and it''s creaking mightily under the weight of all those albums and sub-albums. I''m looking forward to version 2 which will allegedly be database driven.
My desktop is also a dual boot RedHat 9 and Windows 2000 box. I do almost everything productivity-wise in RH9. I''ve been running RedHat distros at home since RedHat 5 or so.
Eventually I''ll bump them up to Fedora Core 2 or I guess 3 when it shows up. I''m leaving the server as-is because of the low RAM.
The budgetary committee is not excited about the overdue changing of the computer guard -- the 3-year lifespan of desktops is already up, as my p4-1.5ghz desktop with 384mb of holy-shnikes-no-way-I''m-paying-$800-to-get-all-2GB RDRAM in it. The plan is instead of handing my wife the 1.5ghz box and taking her p2-400 box and making it the web server is to take my 1.5ghz box, make it the server when I get a new desktop, and leave my wife''s machine alone until she gets jealous and asks for one or a laptop.
I don''t manage my web server all that well. I''m running the Cyrus IMAPD on it but I''m looking closely at dbmail. Sendmail is a frightening creature to me, so my domain doesn''t have email service. I used recipe-like instructions to get it working with Cyrus.
Oh I also run a Jabber 1.4 server, which is probably the software I use most after Squirrelmail talking to the Cyrus mail software every day.
I use dyndns.org to manage the domain, and registered it and others at godaddy.com. Cheapy cheap domains there.
My biggest challenge at home is doing backups. I need to back up my wife''s data, my desktop data, and my server data a lot more often.
PSN: InfinityDevil
Gone completely farbot.
I have to disagree, there''s no terminology renaming (here at least), just use of the generic term ""domain"" which is accurate. e.g., Also from your linked site broadcast domain.
Live: LiquidmantisGWJ | PSN: LiquidmantisGWJ
Web: Mantis on the Mountain
--
Women can't be in the same room with me without abandoning men forever - rabbit
I know but I respect what everyone else calls a domain and know MS likes to hijack these terms.
Do you ever walk alone like a drifter in the dark?
I''ll have to find it somewhere but I have a spare Seagate Hornet Travan 20/40 in the house someplace. If you''re interested I can let it go for 50$ and shipping.
For Edwin, Technet (although they''ve changed its format and it seems harder to find things) is your friend. An overview of RIS from MS.
Do you ever walk alone like a drifter in the dark?
The generic use of the word ""domain"" in technical circles referred to an internet domain until Windows hijacked it by creating a ""Windows domain"". Now all the people who know very little outside of Windows think ""domain"" can only refer to ""Windows domain"". Since there''s so many of these people, the rest of us have to play along. Technically, they''re all domains, but the common usage got hijacked when Windows got popular, helped by Microsoft who wants you to think of a Windows server whenever you see the word ""domain"". It''s just annoying, marketing rewriting the accepted conversational norms of the tech community.
"Poor Eli Nooo... *child starts crying*"
"Come on now, there's no need to make that kind of noise. It sounds awful and you'll upset other people." - Ionae from Spirit Engine 2
I know the difference between a web domain and a net domain, but at the time of posting it was late and I was tired. So for the sake of being cheap I copped out.
XBox Live|Tshirts|xfire | Last.fm