• You will first want to remove any FTP servers currently installed. This will minimize conflicts.
• Next, you will need to get the ProFTPd tarball. The current version is 1.3.4a

wget ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.4a.tar.gz

• Move it to /usr/src and untar it.

mv proftpd-1.3.4a.tar.gz /usr/src

cd /usr/src

tar -zxcf proftpd-1.3.4a.tar.gz

• You will now want to go into the newly created directory and compile ProFTPd.

cd proftpd-1.3.4a

./configure

make

make install

proftpd -v

• You now have ProFTPd! Since you will most likely use a variation of the basic configuration, copy basic.conf to /etc/proftpd.conf

cp /usr/src/proftpd-1.3.4a/sample-configurations/basic.conf /etc/proftpd.conf

• You can now configure ProFTPd by editing the proftp.conf file.

nano /etc/proftpd.conf

• Install server with Ubuntu 10.04 LTS and perform update
• We will need an IPSec daemon to provide encryption and authentication

 sudo aptitude install openswan

• You will be prompted regarding RSA keys. Since we will be using preshared keys (PSK), say no/skip the RSA prompts
• Next we will be adjusting /etc/ipsec.conf

sudo mv /etc/ipsec.conf /etc/ipsec.conf.old

sudo nano /etc/ipsec.conf

• Copy and paste the following into /etc/ipsec.conf

version 2.0
config setup
nat_traversal=yes
virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12
oe=off
protostack=netkey

conn L2TP-PSK-NAT
rightsubnet=vhost:%priv
also=L2TP-PSK-noNAT

conn L2TP-PSK-noNAT
authby=secret
pfs=no
auto=add
keyingtries=3
rekey=no
ikelifetime=8h
keylife=1h
type=transport
left=[Server IP address]
leftnexthop=[Server Gateway]
leftprotoport=17/1701
right=%any
rightprotoport=17/%any

• Now, we save the preshared key

 sudo mv /etc/ipsec.secrets /etc/ipsec.secrets.old

sudo nano /etc/ipsec.secrets

[Server IP address] %any: PSK “[Your preshared key]”

• The preshared key is anything you choose, but be sure to remember it as you will need it for authentication. EG: “testkey”
• Switch to root and input the following command to make sure that IPSec runs properly

sudo su

for each in /proc/sys/net/ipv4/conf/*
do
echo 0 > $each/accept_redirects
echo 0 > $each/send_redirects
done

su [primary user]

sudo ipsec verify

• It should say that everything is running properly except for Opportunistic Encryption Support

sudo /etc/init.d/ipsec restart

• Now let’s install and configure L2TP

sudo aptitude install xl2tpd

sudo mv /etc/xl2tpd/xl2tpd.conf /etc/xl2tpd/xl2tpd.conf.old

sudo nano /etc/xl2tpd/xl2tpd.conf

• Paste the following

[global]
ipsec saref = yes

[lns default]
ip range = 10.1.2.2-10.1.2.255
local ip = 10.1.2.1
refuse chap = yes
refuse pap = yes
require authentication = yes
ppp debug = yes
pppoptfile = /etc/ppp/options.xl2tpd
length bit = yes

• The ip range is the range of internal ip addresses. The local ip is the internal address of the server itself.
• Now we acquire and configure PPP

sudo aptitude install ppp

sudo nano /etc/ppp/options.xl2tpd

• Paste the following (don’t worry, the file is supposed to be empty)

require-mschap-v2
ms-dns 8.8.8.8
ms-dns 209.139.209.33
asyncmap 0
auth
crtscts
lock
hide-password
modem
debug
name l2tpd
proxyarp
lcp-echo-interval 30
lcp-echo-failure 4

• Now we will need to create user credentials to be used for the VPN login

sudo nano /etc/ppp/chap-secrets

• In this file, you will see something similar to this. Give it the credentials that you choose and remember them. They will be used every time you access the VPN.

user                      server           password           ip
[username]            [server]        [password]        *

•  save the file and restart the service

sudo /etc/init.d/xl2tpd restart

If you are using iptables, input the following

iptables –table nat –append POSTROUTING – jump MASQUERADE
echo 1 > /proc/sys/net/ipv4/ip_forward

• openswan doesn’t appear to start after rebooting. Add this line to /etc/rc.local

sudo nano /etc/rc.local

iptables –table nat –append POSTROUTING –jump MASQUERADE
echo 1 > /proc/sys/net/ipv4/ip_forward
for each in /proc/sys/net/ipv4/conf/*
do
echo 0 > $each/accept_redirects
echo 0 > $each/send_redirects
done

/etc/init.d/ipsec restart

*** After creating the VPN, go to the VPN’s properties on the client side. Make sure that your server’s external IP is in the general tab. Next, go to the security tab. Make the “Type of VPN” Layer 2 Tunneling Protocol with IPsec. Then click Advanced settings. Make the preshared key for authentication the same as what you made it on your server. Change data encryption to “optional”. When connecting to the VPN, use the credentials from /etc/ppp/chapsecrets.

You should now be able to connect to the internet through your VPN gateway. If you are able to connect to the VPN, but it is reporting that there is no internet connectivity, rebooting the server will usually fix this.

Each new V8 server is set up to allow remote access and control using VNC Viewer Plus. You can download it by visiting the RealVNC website: http://www.realvnc.com/products/viewerplus/.

Note: You do not need to buy VNC Viewer Plus. The free version has everything needed to connect to and manage your V8 server. Additionally, after you select download, you can skip entering your personal information as none of it is required to download the software.

Once you have downloaded and installed VNC Viewer Plus (default installation is fine), open it to the following window:

AMT Server: This is where you’ll want to enter your servers KVM IP address.
Encryption: This should be set as None.
Connection Mode: Set this to Intel AMT KVM.

That’s it! You’re now ready to connect to your V8 server using remote KVM/IP. Click Connect to access your servers console and management tools.

eSecureData.com is pleased to announce a complete lineup of Generation 8 Servers for 2012. Generation 8 includes a full line of premium servers and value servers, all of which have full dedicated KVM/IP units and full power management including remote reboot, power off, power on and reset, all accessible from any web browser. This is our first generation of Value Servers to have these features included. As usual for eSecureData, we’ve been able to introduce these servers at the lowest price points in the industry for Intel KVM/IP Dedicated Servers, starting at $149/mo.

With the latest generation Intel processors (Xeon 3470s for the G8s, and i7-2600s for the V8s), super fast 120GB SSDs, no cost 3tb HD upgrades and unmetered bandwidth, these are by far  the fastest dedicated servers we’ve ever offered.  In addition to this, by using the same top-flight Intel motherboards across each range, we’ve made upgrading and downgrading as easy as it can get.  As always, our unique monitoring systems also ensure that your server is always up, 24/7/365, at no additional cost to the client.

By hosting your website or Internet business with eSecureData.com, you present yourself to the world on infrastructure equal to that of Fortune 500 companies, at price points suitable for the smallest of businesses.  We’d invite you to take a look at our website for more information.   There really isn’t a better value in the industry.

www.esecuredata.com

eSecureData.com is a leading provider of dedicated servers, managed servers, virtual servers, cloud servers and hosted infrastructure.   The company was founded in 2004 and is based in Surrey, British Columbia, Canada, just outside Vancouver.  It maintains employees and points of presence in Surrey, Vancouver and Toronto, Canada.

eSecureData.com’s Downtown Surrey Data Center is unique in the industry, with innovations in the areas of cooling, power systems and server housing. Our custom server racks permit unparalleled airflow while giving technicians ease of access to all replaceable components, allowing us to recover from individual hardware component failure faster than competitive services.   Our redundant fiber optic backbone feeds ensure maximum uptime for all servers hosted with us.

You may contact the company at any time via email at info@esecuredata.com or by telephone at +1 (800) 620-1985 or +1 (604) 800-0016.

• Install Webmin (instructions: http://www.webmin.com/rpm.html)
• Configure Linux Firewall to only allow ports 22 (ssh), 10000 (webmin), 21 (ftp) and 80 (web)

• Install the prerequisites
  yum update
  yum install php mysql-server php-mysql httpd vsftpd ntpdate gd php-gd
• Install updated version of PHP
  nano /etc/yum.repos.d/CentOS-Testing.repo
  Paste the following (remove any white space at the beginning of each line):

  # CentOS-Testing:
  # !!!! CAUTION !!!!
  # This repository is a proving grounds for packages on their way to CentOSPlus and CentOS Extras.
  # They may or may not replace core CentOS packages, and are not guaranteed to function properly.
  # These packages build and install, but are waiting for feedback from testers as to
  # functionality and stability. Packages in this repository will come and go during the
  # development period, so it should not be left enabled or used on production systems without due
  # consideration.
  [c5-testing]
  name=CentOS-5 Testing
  baseurl=http://dev.centos.org/centos/$releasever/testing/$basearch/
  enabled=1
  gpgcheck=1
  gpgkey=http://dev.centos.org/centos/RPM-GPG-KEY-CentOS-testing
  includepkgs=php*

• yum update
• Lock up MySQL.
  service mysqld start
  /usr/bin/mysql_secure_installation
  (follow the prompts)
• Create a MySQL database to use with the new wordpress site.  Create a MySQL user/pw to access it.  Localhost access is the only thing you need for a basic install.
• Create a Linux user for FTP access.  Set yourFTPusername’s  home directory to /home/yoursitename.
• Set Bootup options to turn off most services.  Make sure httpd (Apache), mysqld, vsftpd and ntpd are all set to start on boot.
• Turn off SELinux (/etc/selinux/config) or virtual hosting wont work in Apache.  There are workarounds if you want to fight them.  Be careful with CentOS as it has two editable lines lost in a bunch of comments, and it’s easy to edit the wrong one.
• Point DNS records for yoursitename (A) and www.yoursitename (CNAME) to your server.

Download WordPress

cd /tmp
wget http://wordpress.org/latest.tar.gz
gunzip latest.tar.gz
tar xvf latest.tar
rm -rf latest.tar
mv wordpress /home/yoursitename
chown -R yourFTPusername /home/yoursitename
mv /home/yoursitename/wordpress/wp-config-sample.php /home/yoursitename/wordpress/wp-config.php
mv /home/yoursitename/wordpress/* /home/yoursitename

nano /home/yoursitename/wp-config.php
(and enter your settings from above)

Set up Apache

Create a virtual host for your WordPress site and aim it to /home/yoursitename
Edit /etc/httpd/conf/httpd.conf and add the following directives:

• ServerAlias (as needed – usually www.yoursitename in addition to ServerName yoursitename)
• Inside the directory section of your virtual server section, be sure to add AllowOverride All or nothing will work.

Run the WordPress Installer

• Navigate to http://yoursitename in a browser and the installer should load.  It usually runs quickly and with almost no prompts.  Your site should now be live.
• Test FTP to your site using host: yoursitename and user:yourFTPusername.  Test changing permissions on directories using FTP.  This should work if you’ve done the chown above correctly.

Create a .htaccess File

cd /home/yoursitename
touch .htaccess
chmod 777 .htaccess
nano .htaccess

Paste this:

<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ – [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>

Remember to change permalink settings in your wp-admin to not just use a number.

For all eSecureData.com dedicated servers which are highly optimized to run WordPress, visit us at www.esecuredata.com.

eSecureData.com is pleased to announce the introduction of G7 Junior servers to complete the G7 lineup. As with all Premium G7 Dedicated Servers, the Juniors will come with permanent KVM/IP and Remote Power On/Off/Reboot.  As usual for eSecureData, we’ve been able to introduce these servers at the lowest price points in the industry for Intel Xeon KVM/IP Dedicated Servers, starting at $149/mo.

With no-cost SSD upgrades, built-in permanent KVM/IP units, and unmetered bandwidth, these are by far the fastest dedicated servers we’ve ever offered.  In addition to this, by using the same top-flight Intel motherboards across the entire G7 range, we’ve made upgrading and downgrading as easy as it can get.  As always, our unique monitoring systems also ensure that your server is always up, 24/7/365, at no additional cost to the client.

By hosting your website or Internet business with eSecureData.com, you present yourself to the world on infrastructure equal to that of Fortune 500 companies, at price points suitable for the smallest of businesses.  We’d invite you to take a look at our website for more information.   There really isn’t a better value in the industry.

http://www.esecuredata.com/pricing/premium-dedicated-servers-with-kvm-ip/

eSecureData.com is a leading provider of dedicated servers, managed servers, virtual servers, cloud servers and hosted infrastructure.   The company was founded in 2004 and is based in Surrey, British Columbia, Canada, just outside Vancouver.  It maintains employees and points of presence in Surrey, Vancouver and Toronto, Canada.

eSecureData.com’s Downtown Surrey Data Center is unique in the industry, with innovations in the areas of cooling, power systems and server housing. Our custom server racks permit unparalleled airflow while giving technicians ease of access to all replaceable components, allowing us to recover from individual hardware component failure faster than competitive services.   Our redundant fiber optic backbone feeds ensure maximum uptime for all servers hosted with us.

You may contact the company at any time via email at info@esecuredata.com or by telephone at +1 (800) 620-1985 or +1 (604) 800-0016.

To implement a temporary solution you can execute the command

Command:  ifconfig eth0:1 IP.ADDRESS.HERE. (Note IP.ADDRESS.HERE is the  additional IP you want linked to your machine.)

Note that:

Main IP: eth0:0

Secondary IP: eth0:1

Third IP: eth0:2

Fourth IP: eth0:3

Further note that computers start counting at 0 being a element number and up. Meaning 1 = 0 2=1 3=2 etc.

To make these changes Permit we will have to configuration the networking files to reflect these actions.

Starting out make sure that the ifcfg-eth0 file does not consist of any gateway=parameter. If it does remove this statement. The root to find this file is as following: etc/sysconfig/network-scripts/ifcfg-eth0

Next, copy the file ifcfg-eth0 and name it ifcfg-eth0:1

Command: cp /etc/sysconfig/network-scripts/ifcfg-eth0 /etc/sysconfig/network-scripts/ifcfg-eth0:1

Once you have copied the file edit the ifcfg-eth0:1 and change the statement Device=eth0 to device eth0:1 and change the IPAddr= to the addon IP you want, that is assigned to your machine.  Start the Secondary interface with: ifup eth0:1

Repeat this step to add as many IP addresses as you desire.

I will be showing you how to install Apache, MySQL ,PHPMyAdmin and PHP.

Apache is the a software that responses to enquirys and replies. This means this is the script that displays your website.

To install Apache:

yum install httpd httpd-devel

If at the end of the installation the apache is not running you may need to manually start it.

/etc/init.d/httpd start

MySQL is a dynamic data stored in a table format. each table, column and rows can be called to display or store information.

To install MySQL Database Server.

yum install mysql mysql-server mysql-devel

This will install MySQL and the Username and password will be on the lines of the default.

To set the password to a new installed MySQL:

mysqladmin -u root password NEWPASSWORD

Install PHP MyAdmin

phpMyAdmin is a web control panel that allows you to manage your SQL databases and users.

yum install phpmyadmin

Access:

http://yourip/phpmyadmin

Note: pay close attention to the installation process due to a error can easily make this installation very complicated. When it requests username and password these are are the details of the root MySQL which you set earlier.

Installing PHP:

This command installs everything you need for PHP:

yum install php php-mysql php-common php-gd php-mbstring php-mcrypt php-devel php-xml

This completes the entire installation of what is computationally stated to be LAMP.

Your web server is now ready and running.

At the office and data center, I went with Polycom 670s. Polycom touts its HD Voice technology and rightly so. They’re easily the best-sounding phones I’ve ever heard.

At home, just to try something different, I got a Cisco SPA525G. It has a nicer display than the Polycoms, but the voice quality isn’t quite as good. It’s still totally usable, though. It’s also nice how well the Polycoms and Ciscos both work together on the same SIP Virtual PBX.

I even configured one line on the customer service phone to answer our Skype calls using their new SIP feature, although I may not bother leaving that up as very few people call us on Skype and our Skype phone works just fine for that.

The great thing about a system like this for a distributed company like ours is that it makes everyone feel a bit closer to each other. I just touch one button to talk to the office or the data center, and they do the same to talk to me or each other.

Improved, easier and higher quality communications can’t help but improve any organization.