- Home - Features - Devellopment - Demo - Manual - Appliance - Download - Help -
Free network management
About | Background | Installation | Administration | Operating | Releasenotes | Add-ons
Google

Installation

The operating system and requirements

Sipman is mainly written in shell script(bash) and perl. Besides this you need an numbre of external programs (like fping, snmpget), which are used for different tasks. So it should run on most Unix platforms. For development, Debian is the main platform used. So the rest of this manual covers an install from scratch using an intel based platform with Debian.

Installing the Debian base system

  1. On the web, goto http://www.debian.org/CD/http-ftp/.
  2. Under Official CD/DVD images of the stable release, goto I386 Use whatever architecture your system has, Debian has a verry wide varyity of systems supported..
  3. Download the cd1 image ( eg. debian-40r3-i386-CD-1.iso )
  4. Burn this to a cd as an bootable image (may vary depending on your burner software).
  5. Insert it into your test/management machine, you will use to run Sipman, and boot from the cd.
  6. If you get an screen with an Debian logo, with the message .ENTER or boot:., just enter.
  7. Choose as language English and enter.
  8. Choose your country (for your timezone, etc.). If you are in Holland, choose other, and press 4 times an n to get Netherlands.
  9. Keymap to use, American English, or whatever keyboard you have. After this it will be scanning your cd.
  10. It will automatically try to detect dhcp. This may fail if you have a slow dhcp server. In case of failure, Continu and Retry network autoconfiguration. You can also define your IP setup manualy.
  11. When asked for an hostname, supply one (eg. Sipman), and select Continue.
  12. Enter your domain name, when asked for it ( eg. net.loc ), and select Continue. This will start the partitioner and scan for disks.
  13. When asked for the partition method, select Manual.
  14. You will need an swap file of twice the memory size (with an max of 1 Gigabyte) and at least 1 Linux partition. If you have enough room, you can create one root (/) partition of 10 GB and for example a data partition for the rest. This allows you to quickly reinstall the system, while leaving the data on your system intact. In this example, I will remove all existing partitioning info, and create 1 swap and a root partition. Be sure you do not need any data currently on your system and if necessary make sure you ha a working backup, because It will be erased in the next chapters.
  15. Select your first partition and enter.
  16. Select Delete the partition.
  17. This will create FREE SPACE, do this for all your existing partitions. If any of your partitions is oke, leave it allone. Repeat this, untile there are no partitions left.
  18. Select the FREE SPACE, to start creating your partitions.
  19. Select Create a new partition.
  20. Choose the size of your swap partition (eg 1GB).
  21. Select the partition type: Primary.
  22. Select the location of the partition: Beginning.
  23. Select Use as: enter.
  24. Choose swap area from the list and enter.
  25. Select Done setting up the partition and enter.
  26. Select the FREE SPACE, to start creating your data partition.
  27. Select Create a new partition.
  28. Choose the size of your partition and enter (it should propose the rest of your partition).
  29. Select the partition type: Primary.
  30. Select Use as: and enter.
  31. Choose ReiserFS from the list, and enter. The ReiserFS filesystem is the most efficient and fastest filesystem for use with Sipman, so use it.
  32. Choose Format the partition: Yes, format it.
  33. Choose Mount options:
  34. Select noatime with your spacebar and enter.
  35. Select Done setting up the partition and enter.
  36. Select Finish partitioning and write changes to disk, to start formatting your disk.
  37. On Write changes to disk, select Yes, and enter. The system will start formatting your disk.
  38. On Root password: enter your root password (you will need it to get access to your system in administration mode).
  39. On Re-enter password:, re-enter your password.
  40. On Full name for the new user: enter a user name ( eg. Your name ). You can use this account later, to log into the system.
  41. On Username for your account: enter the userid.
  42. On Choose a password for the new user:, enter the users password.
  43. On Re-enter password to verify: enter the password again. The system will now start installing the base system from the cd, this may take a few minutes.
  44. On Use a network mirror?, select Yes.
  45. Select your country ( eg Netherlands ).
  46. Select the mirror (eg ftp.debian.nl ). make sure all of your systems use the same mirror, so your proxyserver (or the apt-cacher) can cache requests to the internet.
  47. On HTTP proxy information: enter the name and port number of your proxy server. ( eg http://proxy.emea.xxx.com:8080 ). If all goes well, it will start scanning your mirror (retrieving the package lists).
  48. On Participate in the package survey?, simply choose No. (We will not be installing specific packages).
  49. In the Software selection window, deselect all selected packages., using the spacebar and Continue.
  50. On Install the GRUB boot loader to the master boot reccord, select Yes.
  51. The cd will be ejected on the Finish the installation screen, and by selecting Continue, you can reboot into your new system.
  52. After the reboot, at the login prompt enter the userid root, and the password you selected. You should get an prompt with <System name> #. Use the ifconfig command to determine your current ip address. 
    eth0    Link encap:Ethernet  HWaddr 00:0D:60:2C:B7:84
        inet addr:10.1.1.81  Bcast:10.1.1.255  Mask:255.255.255.0
	inet6 addr: fe80::20d:60ff:fe2c:b784/64 Scope:Link
	UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
	RX packets:191262 errors:0 dropped:0 overruns:0 frame:0
	TX packets:112927 errors:0 dropped:0 overruns:0 carrier:0
	collisions:0 txqueuelen:100
	RX bytes:224401912 (214.0 MiB)  TX bytes:9874763 (9.4 MiB)
	Base address:0x8000 Memory:c0220000-c0240000
  53. Edit the apt sources file with the command vi /etc/apt/sources.list. Commentout the line starting with deb cdrom:..... with an # at the beginning. You no longer need the cd to install packages.
  54. Run apt-get install openssh-server, to install the ssh server, so you can login.
  55. Thats all about installing the base operating system.

Getting Sipman

There are several ways to get Sipman on your system.
Get an copy or backup from an existing machine, running the folowing commands: 
cd /var   # this will change the directory to the /var directory.
scp -pr <serverip>:/var/sipman3 /var
ls -la    # you should be able to see the directory sipman3
Get an copy from the sipman website.
  • On your sipman system run the command apt-get install wget, to install wget.
  • Checkout which versions are available at http://www.sipman.net/downloads/sources.
  • Download the file with the command wget http://www.sipman.net/downloads/sources/sipman-yyyymmdd.tgz. The archives are created with the command tar -cvzf /tmp/sipman-20080415.tgz /var/sipman3.
  • Make sure you are in the root. If neccessary run the command cd /.
  • Test the file with the command tar -ztvf <filename>.
  • Unpack the file with the command: tar -zxvf <filename>.

Preparation

The first recommended step for using sipman would be to start monitoring your network. Sipman has a couple of ways to discover your network, but the best way is to give Sipman snmp read access to your routers and switches. This way is can discover most of your network without any further assistance. So try to get a working snmp community string.

Link the sipman.conf file

Run ln -s /var/sipman3/main/configs/sipman.conf /etc/sipman.conf to be able to run the install script.

Dependencies and the system configuration

To install sipman (on an Debian system), follow the folowing steps.
  • Run cd /var/sipman3/main/bin/ to go to the sipman binary directory.
  • Run ./install-sipman3.sh. This will show the options of the install script. 
    /var/sipman3/main/bin/install-sipman3.sh
    apt install the neccesary packages form the debian repository.
    ux  link all neccesary files and control the access-rights.
    all do everything above.
    clean empty all databases (made to create new images).
  • Run ./install-sipman3.sh apt. This will fetch and install the neccesarry dependencies using the apt process. On the question Non-authorative dhcp server confirm with OK.
  • Run ./install-sipman3.sh ux. This will create the neccessary links, set access rights to the files, etc....
  • Run cd /var/sipman3/shared/passwd to jump to the passwd directory.
  • Run ./addsipmanuser.sh netadmin. This will change the password for the netadmin user. You can replace the netadmin userid by replacing the word netadmin in the files and directories below the /var/sipman3/shared/passwd directory. (A propper usermanager will follow).
  • Open the browser on your pc and connect to http://<serverIp>/sipman3/. You can login with the user netadmin and the password you entered for this user.
(To install sipman on an different architecture like AIX, install the binaries mentioned in the file /var/sipman3/main/configs/sipman.conf. You will need the external commands like fping, mtr, snmpget, snmpwalk, rndc, named, dhcpd and rrdtool. After this you will need to create the links, directories etc, mentioned in the install-sipman3.sh script.)

Change within the folowing files

  1. /etc/snmp/snmpd.conf 
    #com2sec paranoid  default         public
com2sec readonly  default         public
    You can change the community to whatever you feel comfortable with. Readonly will only allow readonly access to your system.
  2. /etc/default/snmpd 
    #SNMPDOPTS='-Lsd -Lf /dev/null -u snmp -I -smux -p /var/run/snmpd.pid 127.0.0.1'
# by removing 127.0.0.1, the snmp deamon listenes on all ports.
SNMPDOPTS='-Lsd -Lf /dev/null -u snmp -I -smux -p /var/run/snmpd.pid'
    This makes the deamon listen on all ports.
  3. /etc/default/tftpd-hpa 
    # start the tftp deamon.
RUN_DAEMON="yes"
# point the tftp boot directory to /tftpboot .
# -c allows to create files which do not exist (sipman creates random filenames)
OPTIONS="-l -c -s /tftpboot"
    (Re)start the tftpserver with /etc/init.d/tftpd-hpa restart. You can check if the tftp server is running with the command ps -ef|grep tftp.
  4. /etc/network/interfaces 
    Sample fixed config
iface eth0 inet static
        address 10.1.1.90
	netmask 255.255.255.0
	network 10.1.1.0
	broadcast 10.1.1.255
	gateway 10.1.1.1

Sample dhcp config
iface eth0 inet dhcp
Run the following steps.
  • Run: /etc/init.d/snmpd restart. The server should respond with Restarting network management services: snmpd.
  • Run visudo and add the content from the file /var/sipman3/main/configs/sudoers.txt. You can leave visudo with ctrl x, y followed by enter.
  • Add the content from the file /var/sipman3/main/configs/crontab.txt to the file /etc/crontab (eg. cat /var/sipman3/main/configs/crontab.txt >> /etc/crontab). All background processes are started from the crontab. You can tweak the intervals as you like.
  • Edit the file /var/sipman3/data/local/configs/snmp-strings.txt and add or change the line like default s1ppAr. Default means, the communitystring is tested on any devicetype, s1ppAr is a sample communitystring. The tool will test all communitystrings starting from specific (eg. if nodetype is net, try the strings of the type net, etc...) and then the default ones.
  • Within Sipman, goto monitor (black bar) ==> add (grey bar) ==> Add nodes from range:: <ip adress node>. This will discover all pingable nodes on your subnet (if they are pingable).
  • Then run extra (black bar) ==> starter (grey bar) ==> run-discover. After running this scrip a few times, you should have discovered a large part of your network, if your network nodes are snmp manageable.
  • Edit the file /etc/logrotate.d/apache2, and change the filemask to 644, or change the group to www-data, to allow the Sipman process te read the apache log files.

Installing an dhcp/snmp node.

If you wish to use Sipman as your primary dns and dhcp tool, it is reccommended to install 2 dedicated dns/dhcp machines (either physical or virtual) running the service for your client. Why? There are 2 important reasons:
  1. Because this allows you to run your actual dns/dhcp servers on an super stable base environment, which hardly needs any updates / care (except for the regular security fixes). The actual management system will probably get frequent updates because of feature enhancements, bug fixes etc.. The basic dns/dhcp service code has had verry little changes over the last five years.
    The last thing you want is for either of these environments to go down. These systems can easily be run on an qemu or vmware applyance, if you don't want to install any additional hardware.
  2. This will allow you to run your Sipman as an hidden primary DNS server. The advantage of this approach is, your primary dns server is unknown to your clients, which means you can move, upgrade and/or replace this system without your community ever knowing it exists. This will also allow you to protect your primary dns system from attacks. You user don't know the system and don't need access to it, so you can filter access to this box (eg in an management environment).
To instal such a system, follow the steps "Installing the Debian base system" and run the folowing additional steps.
  • Download your copy for the Sipman dns and dhcp process from http://www.sipman.net/downloads/sources/.
  • Install this copy by running tar -zxvf <Filename> in the /var directory.
  • Goto the /var/sipman/bin directory and run ./install-dns-dhcp.sh apt. This will install the neccesary dependencies. If the install complains abaout an non authorative install, don't bother. The config files will be generated by Sipman.
In case of questions please contact us at: info@sipman.net