Scribd
Upload
994 views5 pages

RH342 Study Sheet: System Boot

This document provides a summary of commands and procedures for various tasks on a Linux system, including system boot, Grub configuration, performance monitoring, package management, file systems, LVM, encryption, networking, firewall configuration, debugging, and security. It is intended as a study sheet and does not contain comprehensive documentation.

Uploaded by

dchikumba
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
994 views5 pages

RH342 Study Sheet: System Boot

This document provides a summary of commands and procedures for various tasks on a Linux system, including system boot, Grub configuration, performance monitoring, package management, file systems, LVM, encryption, networking, firewall configuration, debugging, and security. It is intended as a study sheet and does not contain comprehensive documentation.

Uploaded by

dchikumba
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 5

RH342 Study Sheet

This is a short list of information to assist in review prior to the exam. This is not a comprehensive list of
objectives or commands.

System Boot
Regain root control

rd.break within Grub


boot system
mount -oremount,rw /sysroot
chroot /sysroot
passwd
load_policy -i && restorecon -Rv /etc

Reinstall Grub Config (BIOS)

`grub2-mkconfig -o /boot/grub2/grub.cfg

Performance Co-Pilot
List metrics w/ terse descriptions pminfo -t

Query metric pmval <metric>

Query for time interval pmval -T 5m <metric>

Query archive interval values pmval -t 5m <metric> -a <file>

Remote Logging
Config /etc/rsyslog.conf

Package Management
Query file for package rpm -qf <file>
List content of package rpm -qp <package>

List package dependencies rpm -qR or yum deplist <package>

Package that will provide yum provides */<file>

Exclude a packge exclude=<package> in /etc/yum.conf

Version locking yum install -y yum-plugin-versionlock && yum versionlock <package>

RPM Database
Verify RPM database /usr/lib/rpm/rpmdb_verify /var/lib/rpm/Packages

Create a new RPM database from existing


/usr/lib/rpm/rpmdb_dump <existing> | /usr/lib/rpm/rpmdb_load <new>

Rebuild the database rpm --rebuilddb

Kernel Modules
List loaded modules lsmod

List module options modinfo -p <module>

Load a module modprobe <module> <parameters>

Remove a module modprobe -r <module>

Loaded module parameters cat /sys/module/<module>/parameters/<parameters>

File System Issues


Recover an XFS filesystem xfs_repair /dev/<filesystem>

Recover an ext4 filesystem fsck.ext4 /dev/<filesystem>

List LVM archived metadata vgcfgrestore -l <volume group>

Undo an LVM change vgcfgrestore -f <file from metadata> <volume group>


Deactive a logical volume lvchange -an /dev/<volume group>/<logical volume>

Active a logical volume lvchange -ay /dev/<volume group>/<logical volume>

View LUKS key slots cryptsetup luksDump /dev/<LOCKED DEVICE>

Restore a LUKS header


cryptsetup luksHeaderRestore /dev/<DEVICE> --header-backup-file <file>

Manually open a lUKS volume cryptsetup luksOpen /dev/<device> <luks name>

LUKS name in /etc/crypttab must match /dev/mapper name in /etc/fstab

iSCSI
/etc/iscsi/initiatorname.iscsi value ust match ACL in targetcli

Security settings must match targetcli | /etc/iscsi/iscsid.conf

Discovery targets iscsiadm -m discovery -t sendtargets -p <host>

List targets iscsiadm -m node

Delete discoveries iscsiadm -m node -o delete

Login to target iscsiadm -m node -T <target> -l

Networking

DNS

Verify /etc/resolv.conf for valid DNS host

Verify /etc/nsswitch.conf for dns entry in hosts

Verify /etc/hosts for collisions

Connectivity Testing

Connect to on telnet <host> <post>


Listen on nc -l <port>

Firewalld

List running config firewall-cmd --list-all

Add firewall-cmd --permanent --add-port=<tcp port>/tcp && firewall-cmd --reload

Pack Captures

Read a packet capture tcpdump -r <file>

Read a packet capture and display ASCII values tcpdump -Ar <file>

Create a packet capture tcpdump -i <interface> -w <file>

Application Troubleshooting
List libraries used by application ldd $(which <appplication>)

Test for memory leaks valgrind <application>

Debug strace <application>

SELinux
Use sealert on audit log sealert -a /var/log/audit/audit.log

List booleans getsebool -a

Set a permanent boolean setsebool -P <boolean> <0|1>

Restore context of file/dir restorecon -Rv <file/dir>

Authentication
View LDAP/Kerb settings cat /etc/sysconfifg/authconfig

Modify LDAP/Kerb settings authconfig-tui

Obtain a Kerberos ticket kinit


List Kerberos cache klist

PAM - check package verification

SystemTap
Run a script stap <script>

Compile a script into a module

stap -p 4 -m <module name> <script>


create a systemtap directory under /lib/modules/$(uname -r)/
move module to new directory
run module with staprun <module>

Grant user access to run stap modules usermod -aG stapusr <user>

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy