Ịtọlite Samba na Hazie FirewallD na SELinux iji kwe ka ikesa faịlụ na Linux/Windows Clients - Nkebi 6

Ebe ọ bụ na kọmputa anaghị arụ ọrụ dị ka sistemu dịpụrụ adịpụ, a ga-atụ anya na dị ka onye na-ahụ maka sistemụ ma ọ bụ injinia, ị maara otu esi edozi ma jikwaa netwọkụ nwere ọtụtụ ụdị sava.

N'isiokwu a na n'usoro isiokwu a, anyị ga-agafe ihe dị mkpa nke ịtọlite samba na sava NFS na ndị ahịa Windows/Linux na Linux, n'otu n'otu.

Edemede a ga-aba uru ma ọ bụrụ na akpọọ gị ka ịtọlite sava faịlụ na ụlọ ọrụ ma ọ bụ ụlọ ọrụ ebe ị nwere ike ịhụ sistemụ arụmọrụ na ụdị ngwaọrụ dị iche iche.

Ebe ọ bụ na ị nwere ike ịgụ banyere ndabere na akụkụ teknụzụ nke ma Samba na NFS niile na Ịntanetị, n'isiokwu a na nke na-esote, anyị ga-ebipụ ya ozugbo na isiokwu dị n'aka.

Nzọụkwụ 1: Ịwụnye Samba Server

Gburugburu ule anyị ugbu a nwere igbe RHEL 7 abụọ na otu igwe Windows 8, n'usoro ahụ:

1. Samba / NFS server [box1 (RHEL 7): 192.168.0.18], 
2. Samba client #1 [box2 (RHEL 7): 192.168.0.20]
3. Samba client #2 [Windows 8 machine: 192.168.0.106]

Na igbe 1, wụnye ngwugwu ndị a:

# yum update && yum install samba samba-client samba-common

Na igbe 2:

# yum update && yum install samba samba-client samba-common cifs-utils

Ozugbo echichi mechara, anyị dị njikere ịhazi òkè anyị.

Nzọụkwụ 2: Ịtọlite nkekọrịta faịlụ site na Samba

Otu n'ime ihe mere Samba ji dị mkpa bụ n'ihi na ọ na-enye ndị ahịa SMB/CIFS faịlụ na ibipụta ọrụ, nke na-eme ka ndị ahịa ahụ hụ ihe nkesa ahụ dị ka a ga-asị na ọ bụ usoro Windows (Ekwesịrị m ikweta na m na-enwekwu mmetụta mmetụta mgbe ụfọdụ. na-ede banyere isiokwu a dịka ọ bụ nhazi mbụ m dị ka onye nchịkwa usoro Linux ọhụrụ afọ ole na ole gara aga).

Iji nye ohere maka imekọ ihe ọnụ, anyị ga-emepụta otu aha ego yana ndị ọrụ abụọ (user1 na user2) nwere iwu useradd yana ndekọ/ego na igbe 1.

Anyị ga-agbanwekwa onye nwe akwụkwọ ndekọ aha a ka ọ nweta ego ma debe ikike ya na 0770 (ikike ịgụ, dee na igbu mmadụ maka onye nwe ya na onye nwe otu):

# groupadd finance
# useradd user1
# useradd user2
# usermod -a -G finance user1
# usermod -a -G finance user2
# mkdir /finance
# chmod 0770 /finance
# chgrp finance /finance

Nzọụkwụ 3: Ịhazi SELinux na Firewalld

N'ịkwado ịhazi/ego dị ka òkè Samba, anyị ga-achọ ma gbanyụọ SELinux ma ọ bụ tọọ ụkpụrụ boolean na nchekwa dị ka ndị a (ma ọ bụghị, SELinux ga-egbochi ndị ahịa ịnweta òkè):

# setsebool -P samba_export_all_ro=1 samba_export_all_rw=1
# getsebool –a | grep samba_export
# semanage fcontext –at samba_share_t "/finance(/.*)?"
# restorecon /finance

Na mgbakwunye, anyị ga-ahụrịrị na ọ bụ firewalld na-anabata okporo ụzọ Samba.

# firewall-cmd --permanent --add-service=samba
# firewall-cmd --reload

Nzọụkwụ 4: Hazie Samba Share

Ugbu a ọ bụ oge ịbanye n'ime faịlụ nhazi /etc/samba/smb.conf wee tinye ngalaba maka òkè anyị: anyị chọrọ ka ndị otu ego nwee ike ịmegharị ọdịnaya nke/ego, ma chekwaa/mepụta faịlụ ma ọ bụ subdirectories n'ime ya (nke na ndabara ga-enwe ntakịrị ikike ka edobere 0770 na ego ga-abụ onye nwe ha):

[finance]
comment=Directory for collaboration of the company's finance team
browsable=yes
path=/finance
public=no
valid [email 
write [email 
writeable=yes
create mask=0770
Force create mode=0770
force group=finance

Chekwaa faịlụ ahụ wee jiri ngwa testparm nwalee ya. Ọ bụrụ na enwere njehie ọ bụla, mmepụta nke iwu na-esonụ ga-egosi ihe ị ga-edozi. Ma ọ bụghị ya, ọ ga-egosipụta nyocha nke nhazi nkesa Samba gị:

Ọ bụrụ na ịchọrọ ịgbakwunye òkè ọzọ nke mepere ọha (nke pụtara na-enweghị nkwenye ọ bụla), mepụta ngalaba ọzọ na /etc/samba/smb.conf na n'okpuru aha òkè ọhụrụ detuo ngalaba dị n'elu, na-agbanwe naanị ọha = mba gaa ọha = ee na gụnyeghị ndị ọrụ ziri ezi yana dee ntuziaka ndepụta.

Nzọụkwụ 5: Tinye ndị ọrụ Samba

Na-esote, ị ga-agbakwunye user1 na user2 dị ka ndị ọrụ Samba. Iji mee nke a, ị ga-eji iwu smbpasswd, nke na-emekọrịta ihe na nchekwa data ime Samba. A ga-akpali gị itinye paswọọdụ nke ị ga-emecha jiri jikọọ na òkè ahụ:

# smbpasswd -a user1
# smbpasswd -a user2

N'ikpeazụ, malitegharịa Samba, mee ka ọrụ ahụ malite na buut, ma hụ na òkè ahụ dị maka ndị ahịa netwọk:

# systemctl start smb
# systemctl enable smb
# smbclient -L localhost –U user1
# smbclient -L localhost –U user2

N'oge a, arụnyerela ihe nkesa faịlụ Samba nke ọma ma hazie ya. Ugbu a ọ bụ oge iji nwalee ntọlite a na ndị ahịa RHEL 7 na Windows 8 anyị.

Nzọụkwụ 6: Ịkwalite Samba Share na Linux

Nke mbụ, hụ na òkè Samba nwere ike ịnweta n'aka onye ahịa a:

# smbclient –L 192.168.0.18 -U user2

(megharịa iwu dị n'elu maka onye ọrụ1)

Dịka mgbasa ozi nchekwa ọ bụla ọzọ, ị nwere ike ibugo (ma emechaa bupụ) òkè netwọk a mgbe achọrọ ya:

# mount //192.168.0.18/finance /media/samba -o username=user1

(ebe /media/samba bụ akwụkwọ ndekọ aha dị)

ma ọ bụ na-adịgide adịgide, site na ịgbakwunye ntinye na /etc/fstab faịlụ:

//192.168.0.18/finance /media/samba cifs credentials=/media/samba/.smbcredentials,defaults 0 0

Ebe faịlụ zoro ezo /media/samba/.smbcredentials (nke ikike ya na ikike ya ka edobere 600 na mgbọrọgwụ: mgbọrọgwụ, n'otu n'otu) nwere ahịrị abụọ na-egosi aha njirimara na paswọọdụ nke akaụntụ e kwere ka iji òkè ahụ:

username=user1
password=PasswordForUser1

N'ikpeazụ, ka anyị mepụta faịlụ n'ime/ego wee lelee ikike na nwe:

# touch /media/samba/FileCreatedInRHELClient.txt

Dịka ị na-ahụ, e jiri ikike 0770 mepụta faịlụ a yana nweziri ya na onye ọrụ1: ego.

Kwụpụ 7: Ịkwalite Samba Share na Windows

Iji bulie òkè Samba na Windows, gaa na PC m wee họrọ Kọmputa, wee draịva netwọkụ Map. Na-esote, kenye akwụkwọ ozi maka draịva ka a ga-edepụta wee lelee Jikọọ site na iji nzere dị iche iche ( nseta ihuenyo dị n'okpuru bụ n'asụsụ Spanish, asụsụ obodo m):

N'ikpeazụ, ka anyị mepụta faịlụ wee lelee ikike na nwe:

# ls -l /finance

Oge a faịlụ bụ nke onye ọrụ2 ebe ọ bụ akaụntụ ahụ anyị ji jikọọ na onye ahịa Windows.

Nchịkọta

N'isiokwu a, anyị akọwala ọ bụghị naanị otu esi edozi ihe nkesa Samba na ndị ahịa abụọ na-eji usoro arụ ọrụ dị iche iche, kamakwa SELinux na ihe nkesa ahụ iji kwe ka ikike imekọ ihe ọnụ otu chọrọ.

N'ikpeazụ, ma ọ dịghị ihe ọzọ, ka m kwadoro ịgụ akwụkwọ ntanetị nke smb.conf iji chọpụta ntụziaka nhazi ndị ọzọ nke nwere ike ịdị mma maka ikpe gị karịa ọnọdụ a kọwara n'isiokwu a.

Dị ka oge niile, nweere onwe gị iji mpempe akwụkwọ dị n'okpuru dobe okwu ma ọ bụrụ na ị nwere okwu ọ bụla ma ọ bụ aro.