24
Tue, Dec
0 New Articles

TechTip: SME Server, the All-in-One Linux Server Distribution

Typography
  • Smaller Small Medium Big Bigger
  • Default Helvetica Segoe Georgia Times

SME Server is an open-source server distribution providing many services, including networking, routing, file sharing, email and much more, in one easy-to-administer Web panel.

 

If you're looking for a free, simple-to-set-up, ready-made Linux server, SME Server should fill your need. The current version, 7.5.1, is based on CentOS 4.8, but the next release, currently in beta, will utilize CentOS 5.5 as its base. For those unfamiliar with CentOS, it's a free re-branded version of Red Hat, so you should feel comfortable knowing it's built on a well-known enterprise platform.

 

Everything is included in an ISO file that fits on one CD, so it contains only the minimum necessary to provide many services—from managing a network with domains, DHCP, LDAP, and routing, to providing external access with Web proxies, Web servers, and VPNs.

Installation

Visit the SME Server Web site to download the latest stable or beta ISO images. As with most canned OS distributions, the installation expects to be the only OS residing on the hard drive. Also, installation is extremely simple, so you get everything as is, with no optional or modular installation options available. Simply pop the CD in, answer a few basic questions, and everything will be installed. SME Server does have some software RAID capabilities, so if you have two identical disks, a RAID 1 mirror will be created automatically.

 

You can choose from three types of server during installation: server and gateway, private server and gateway, and server-only. In both "server and gateway" and "private server and gateway," SME Server is going to require that it be the Internet gateway for the LAN. In this mode, the server will need to have two NICs. One is for the gateway address, the other for the local LAN. In "server and gateway" mode, one of the Ethernet ports will be on a public IP address, so you can utilize included Web mail, Web server, and VPN services to the outside world. The "private server and gateway" mode is identical, but all outside access is blocked. The simplest install, server-only, will not include any firewall and routing, so it should be used only when it's behind another firewall.

 

After the installation completes and the machine reboots, there will be a login on the server console. You can administer the server from the command line, but all changes and configurations can be managed from the Web interface at this point. Open up a Web browser and navigate to the IP address of the server (http://IP_ADDRESS/server-manager). You'll be presented with the Web interface screen, where you can start configuring the server. The username is admin, and the password is whatever you chose during installation.

 

031111Hetricksme1 

Figure 1: This is the SME administration Web interface. (Click images to enlarge.)

 

Configuration

From here, configuration and setup is really easy and rather self-explanatory. You can create users and groups, and even set up quotas on those accounts. Under the administration section, the backup and restore process offers a few options. The security section allows remote access connection, configuration of networks, port forwarding, and proxy settings for HTTP and SMTP services. Configuration for FTP, SSH, and PPTP (Point-to-Point Tunneling Protocol) can be found under the Remote Access screen.

 

Before you enable PPTP as a VPN method, it may be wise to research the protocol. It's often criticized for security concerns, but it still continues to be a widely used protocol for remote VPN access. By default, mostly all of these types of remote access features are disabled.

 

The current version of Samba included in the stable release of SME Server is rather old. As such, it will not currently support joining Windows 7 and Windows Server 2008 machines into the Samba domains. The new version of SME Server 8 will fix this issue by including a newer Samba 3.3 or 3.4 release to replace Samba 3.0. Windows XP machines have no issues joining the older Samba domains.

 

All of the Samba, LDAP, and email screens are located under the configuration screen. Fill in all the details of a Windows workgroup, the option for the server to act as a domain controller on the network, and the use of roaming profiles at the workgroup page. Be cautious about implementing roaming profiles in a Linux environment. Roaming profiles are great for users to go from PC to PC and have all their files and settings, but management of roaming profiles from Linux servers to the Windows desktops can be a bit tricky. Many options that are available in Active Directory environments to allow control and configuration are missing when Samba is used.

 

Also, if you have multiple locations being managed from one location, and the LAN link speeds to those locations are slow, you're going to have long and slow wait times for user logins as roaming profile sizes often grow. If none of these concern or apply to you, then roaming profiles are a great thing and offer wonderful backup options to the server, but keep these issues in mind.

 

031111Hetricksme2

Figure 2: This is the Samba domain controller settings screen.

 

I won't bore you by going over every screen, as each explains very clearly what it's for. LDAP settings are under the directory pages; printers can be shared out under the printers page; and email POP3, IMAP, and Web mail access are configured under the email page. The Web mail package included in SME Server is Horde. Sadly, there is no calendar support, which I think may be a deterrent to many Web mail users.

Final Points

What's nice about SME Server is that it combines many of the pieces of Linux networking into one already-installed location. Often, individual set up of Linux servers is time-consuming and difficult, especially for those with little to no experience in Linux networking. SME Server offers small to medium-sized businesses a packaged solution with many great services in one easy-to-manage bundle.

 

As with any pre-rolled distribution, the pitfalls are the lack of options you, the administrator, have a say in. What one persons needs may not be what the next wants, but SME Server has done a decent job of including many commonly used pieces of networking in one OS. If you have a budget to deal with or are simply looking to start learning and experimenting with some Linux networking components, SME Server offers a great tool to handle that.

 

BLOG COMMENTS POWERED BY DISQUS

LATEST COMMENTS

Support MC Press Online

$

Book Reviews

Resource Center

  • SB Profound WC 5536 Have you been wondering about Node.js? Our free Node.js Webinar Series takes you from total beginner to creating a fully-functional IBM i Node.js business application. You can find Part 1 here. In Part 2 of our free Node.js Webinar Series, Brian May teaches you the different tooling options available for writing code, debugging, and using Git for version control. Brian will briefly discuss the different tools available, and demonstrate his preferred setup for Node development on IBM i or any platform. Attend this webinar to learn:

  • SB Profound WP 5539More than ever, there is a demand for IT to deliver innovation. Your IBM i has been an essential part of your business operations for years. However, your organization may struggle to maintain the current system and implement new projects. The thousands of customers we've worked with and surveyed state that expectations regarding the digital footprint and vision of the company are not aligned with the current IT environment.

  • SB HelpSystems ROBOT Generic IBM announced the E1080 servers using the latest Power10 processor in September 2021. The most powerful processor from IBM to date, Power10 is designed to handle the demands of doing business in today’s high-tech atmosphere, including running cloud applications, supporting big data, and managing AI workloads. But what does Power10 mean for your data center? In this recorded webinar, IBMers Dan Sundt and Dylan Boday join IBM Power Champion Tom Huntington for a discussion on why Power10 technology is the right strategic investment if you run IBM i, AIX, or Linux. In this action-packed hour, Tom will share trends from the IBM i and AIX user communities while Dan and Dylan dive into the tech specs for key hardware, including:

  • Magic MarkTRY the one package that solves all your document design and printing challenges on all your platforms. Produce bar code labels, electronic forms, ad hoc reports, and RFID tags – without programming! MarkMagic is the only document design and print solution that combines report writing, WYSIWYG label and forms design, and conditional printing in one integrated product. Make sure your data survives when catastrophe hits. Request your trial now!  Request Now.

  • SB HelpSystems ROBOT GenericForms of ransomware has been around for over 30 years, and with more and more organizations suffering attacks each year, it continues to endure. What has made ransomware such a durable threat and what is the best way to combat it? In order to prevent ransomware, organizations must first understand how it works.

  • SB HelpSystems ROBOT GenericIT security is a top priority for businesses around the world, but most IBM i pros don’t know where to begin—and most cybersecurity experts don’t know IBM i. In this session, Robin Tatam explores the business impact of lax IBM i security, the top vulnerabilities putting IBM i at risk, and the steps you can take to protect your organization. If you’re looking to avoid unexpected downtime or corrupted data, you don’t want to miss this session.

  • SB HelpSystems ROBOT GenericCan you trust all of your users all of the time? A typical end user receives 16 malicious emails each month, but only 17 percent of these phishing campaigns are reported to IT. Once an attack is underway, most organizations won’t discover the breach until six months later. A staggering amount of damage can occur in that time. Despite these risks, 93 percent of organizations are leaving their IBM i systems vulnerable to cybercrime. In this on-demand webinar, IBM i security experts Robin Tatam and Sandi Moore will reveal:

  • FORTRA Disaster protection is vital to every business. Yet, it often consists of patched together procedures that are prone to error. From automatic backups to data encryption to media management, Robot automates the routine (yet often complex) tasks of iSeries backup and recovery, saving you time and money and making the process safer and more reliable. Automate your backups with the Robot Backup and Recovery Solution. Key features include:

  • FORTRAManaging messages on your IBM i can be more than a full-time job if you have to do it manually. Messages need a response and resources must be monitored—often over multiple systems and across platforms. How can you be sure you won’t miss important system events? Automate your message center with the Robot Message Management Solution. Key features include:

  • FORTRAThe thought of printing, distributing, and storing iSeries reports manually may reduce you to tears. Paper and labor costs associated with report generation can spiral out of control. Mountains of paper threaten to swamp your files. Robot automates report bursting, distribution, bundling, and archiving, and offers secure, selective online report viewing. Manage your reports with the Robot Report Management Solution. Key features include:

  • FORTRAFor over 30 years, Robot has been a leader in systems management for IBM i. With batch job creation and scheduling at its core, the Robot Job Scheduling Solution reduces the opportunity for human error and helps you maintain service levels, automating even the biggest, most complex runbooks. Manage your job schedule with the Robot Job Scheduling Solution. Key features include:

  • LANSA Business users want new applications now. Market and regulatory pressures require faster application updates and delivery into production. Your IBM i developers may be approaching retirement, and you see no sure way to fill their positions with experienced developers. In addition, you may be caught between maintaining your existing applications and the uncertainty of moving to something new.

  • LANSAWhen it comes to creating your business applications, there are hundreds of coding platforms and programming languages to choose from. These options range from very complex traditional programming languages to Low-Code platforms where sometimes no traditional coding experience is needed. Download our whitepaper, The Power of Writing Code in a Low-Code Solution, and:

  • LANSASupply Chain is becoming increasingly complex and unpredictable. From raw materials for manufacturing to food supply chains, the journey from source to production to delivery to consumers is marred with inefficiencies, manual processes, shortages, recalls, counterfeits, and scandals. In this webinar, we discuss how:

  • The MC Resource Centers bring you the widest selection of white papers, trial software, and on-demand webcasts for you to choose from. >> Review the list of White Papers, Trial Software or On-Demand Webcast at the MC Press Resource Center. >> Add the items to yru Cart and complet he checkout process and submit

  • Profound Logic Have you been wondering about Node.js? Our free Node.js Webinar Series takes you from total beginner to creating a fully-functional IBM i Node.js business application.

  • SB Profound WC 5536Join us for this hour-long webcast that will explore:

  • Fortra IT managers hoping to find new IBM i talent are discovering that the pool of experienced RPG programmers and operators or administrators with intimate knowledge of the operating system and the applications that run on it is small. This begs the question: How will you manage the platform that supports such a big part of your business? This guide offers strategies and software suggestions to help you plan IT staffing and resources and smooth the transition after your AS/400 talent retires. Read on to learn: