1 / 8

LAL Site Report

LAL Site Report. Michel Jouvin LAL / IN2P3 jouvin@lal.in2p3.fr. 100 Go. Alpha PWS500. FC. FC. Alpha ES47. ESA12000 1,5 TB. HDS 9570 1,5 TB. Electronic CAD (Sun + Cadence). Alpha Experiments (8 CPUs). Linux Experiments (40 CPUs). Mac (100). Xterm. PC (250). Main Resources.

cicely
Download Presentation

LAL Site Report

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. LAL Site Report Michel Jouvin LAL / IN2P3 jouvin@lal.in2p3.fr

  2. 100 Go Alpha PWS500 FC FC Alpha ES47 ESA12000 1,5 TB HDS 9570 1,5 TB Electronic CAD (Sun + Cadence) Alpha Experiments (8 CPUs) Linux Experiments (40 CPUs) Mac (100) Xterm PC (250) Main Resources DS20 • NFS • SMB • Appletalk • www • Mail • Print DS20e Gb Ethernet 100 Mb LSF Cluster (batch + interactive) 10 Mb LAL Site Report - HEPix - Vancouver 2003

  3. Main Resources Changes • More Linux CPUs • 10 dual P4 Xeon on order (Dell PE 1750, 1U) • More TBs • HDS 9570V : 1.5 TB • Running very well • Less budget… • Budget uncertainty (always changing) • No OS upgrade since last meeting LAL Site Report - HEPix - Vancouver 2003

  4. Mail Service • Virus/Spam filtering production • Spam Assassin + MimeDefang • Message tags still processed by clients • Less efficient since September… • Late with all our main projects for mail service • SIEVE for filtering at message delivery (server based) • Upgrade IMAP server to Cyrus v2 • Required for SIEVE filtering • Authenticated SMTP LAL Site Report - HEPix - Vancouver 2003

  5. Windows Infrastructure • IN2P3 forest in production • 7 labs in production • 4 labs should join shortly (by the end of ’03) • No problem so far, even if master domain not reachable • 1 global catalog per site • Forest management not to heavy • Domain management delegated to labs • Move of LAL domain to IN2P3 forest delayed • Planned in November • Back to NT4 domain and reupgrade to ActiveDirectory LAL Site Report - HEPix - Vancouver 2003

  6. Blaster/Lovesan… • Not too much affected • Ports attacked filtered in border router • 7 PCs, infected outside LAL • Continuing… • Main tool : SMS • Rapid deployment of fixes • 2nd alert (Sept 10th) : 90% of running PCs patched in 2 hours • Detection of infected PCs based on inventory • Can take 3 days to detect an infected PC • Investigate automatic isolation of weak/infected PCs LAL Site Report - HEPix - Vancouver 2003

  7. VPN Server • Based on solution presented by CERN at FNAL • Windows 2000 server • Authentication server : AD controller • No need for a separate account • Tunneling : PPTP + CHAP/MS-CHAP • Encryption : MPPE (RSA/RC4) • Works with Macintosh (tested) and Linux (not tested) • Now in production • Current service : access to ActiveDirectory, management (RDP, SMS…) • Plan to investigate RADIUS authentication • Performance impact unclear (WAN vs server) LAL Site Report - HEPix - Vancouver 2003

  8. Miscellaneous Projects • Unattended Linux installation server • Currently based on PXE + Kickstart • Plan to investigate WP4 Quattor • Servers and desktops • Web content management • Zope abandoned • Home made solution (J. Charbonnel) • EDG/LCG/EGEE • Strong LAL involvement (3 persons) LAL Site Report - HEPix - Vancouver 2003

More Related