RAC Attack - Oracle Cluster Database at Home/VirtualBox Windoze/Configure OS
- Click Forward on the Welcome screen.
- Click Forward on the License Agreement screen.
- Click on the dropdown next to Firewall: and choose Disabled. Click Forward.
- Click Yes on the confirmation box.
- Click on the dropdown next to SELinux Setting: and choose Disabled. Click Forward.
- Click Yes on the confirmation box.
- Click Forward leaving the check box next to Enable kdump? unchecked.
- Leave the Date and Time as it is and click Forward.
- Do not create a user on the Create User screen and click Forward.
- Click Continue on the confirmation box.
- Click Forward on the Sound Card screen.
- Click Finish on the Additional CDs screen.
- Click OK on the confirmation screen.
- After the reboot, you should be at a login screen.
- Log in with root as the username and racattack as the password.
- Open a terminal by right clicking on the screen and choosing Open Terminal.
- Type in system-config-network and press enter. Highlight the first Inactive adapter. Click the Activate button.
- Click the Edit button. In the dialog box make sure Activate device when computer starts is checked and click Ok. Repeat this process for all Inactive network adapters.
- Now all of the network adapters show as Active. Close the Network Configuration dialog box.
- Right click on the second icon in the lower right of the Virtualbox VM window. The icon resembles a CD. Note: right ctrl key releases the mouse from the guest OS.
- Arrow over IDE Controller (IDE Primary Master). Choose the Enterprise-R5-U6-Server-i386-dvd.iso file.
- Arrow over IDE Controller (IDE Primary Slave). Confirm the RAC11gR2.iso file is already chosen.
- Arrow over IDE Controller (IDE Secondary Master). Confirm the VBoxGuestAdditions.iso file is already chosen.
- Create a connection in Putty for the new VM called collabn1 with the IP Address of 192.168.78.51.
- Open the collabn1 connection by clicking Open. Click Yes on the Security Alert dialog box.
- Enter root at the login as: prompt and racattack at the password: prompt.
Putty Configuration
- Stop and disable the anacron service.
service anacron stop
chkconfig anacron off
Stopping anacron: [ OK ]
chkconfig—list anacron
anacron 0:off 1:off 2:off 3:off 4:off 5:off 6:off
anacron -n
- Stop and disable the autofs service.
service autofs stop
Stopping automount: [ OK ]
umount /media/*
chkconfig autofs off
chkconfig—list autofs
autofs 0:off 1:off 2:off 3:off 4:off 5:off 6:off
- Stop and disable the avahi service.
service avahi-daemon stop
Shutting down Avahi daemon: [ OK ]
chkconfig avahi-daemon off
chkconfig—list avahi-daemon
avahi-daemon 0:off 1:off 2:off 3:off 4:off 5:off 6:off
- Create the cdrom mount point directories.
mkdir -p /mnt/cdrom mkdir -p /mnt/cdrom5 mkdir -p /mnt/vbox ls /dev/cdrom* /dev/cdrom /dev/cdrom-had /dev/cdrom-hdb /dev/cdrom-hdc
- Add the cdrom mounts to the /etc/fstab file. Then manually mount them.
/dev/cdrom-hda /mnt/cdrom iso9660 defaults 0 0 /dev/cdrom-hdb /mnt/cdrom5 iso9660 defaults 0 0 /dev/cdrom-hdc /mnt/vbox iso9660 defaults 0 0 mount /mnt/cdrom mount /mnt/cdrom5 mount /mnt/vbox
- Install the VirtualBox VM Tools.
/mnt/vbox/VBoxLinuxAdditions.run Verifying archive integrity... All good. Uncompressing VirtualBox 4.1.20 Guest Additions for Linux......... VirtualBox Guest Additions installer Removing existing VirtualBox DKMS kernel modules [ OK ] Removing existing VirtualBox non-DKMS kernel modules [ OK ] Building the VirtualBox Guest Additions kernel modules Not building the VirtualBox advanced graphics driver as this Linux version is too old to use it. Building the main Guest Additions module [ OK ] Building the shared folder support module [ OK ] Doing non-kernel setup of the Guest Additions [ OK ] Starting the VirtualBox Guest Additions [ OK ] Installing the Window System drivers Installing X.Org 7.1 modules [ OK ] Setting up the Window System to use the Guest Additions [ OK ] You may need to restart the hal service and the Window System (or just restart the guest system) to enable the Guest Additions. Installing graphics libraries and desktop services componen[ OK ]
- Install additional packages.
rpm -Uvh /mnt/*/*/compat-libstdc++-33* */*/libaio-devel-0.* */*/unixODBC-2.* */*/unixODBC-devel-2.* */*/sysstat-7.*
- Shutdown the VM completely.
shutdown -h now
- Once the VM is completely shut down, click the Settings button. Under the General sub-menu, click the Advanced tab. Uncheck Remember Runtime Changes next to Removable Media:.
- Click the System sub-menu. In the Boot Order box, uncheck everything except for Hard Disk. Save the configuration and restart the VM.
- Edit /etc/sysctl.conf. Append these parameters. Then execute sysctl -p.
kernel.shmmni = 4096 # semaphores: semmsl, semmns, semopm, semmni kernel.sem = 250 32000 100 128 net.ipv4.ip_local_port_range = 1024 65000 net.core.rmem_default=4194304 net.core.rmem_max=4194304 net.core.wmem_default=262144 net.core.wmem_max=262144 sysctl -p net.ipv4.ip_forward = 0 net.ipv4.conf.default.rp_filter = 2 net.ipv4.conf.default.accept_source_route = 0 kernel.sysrq = 0 kernel.core_uses_pid = 1 net.ipv4.tcp_syncookies = 1 kernel.msgmnb = 65536 kernel.msgmax = 65536 kernel.shmmax = 4294967295 kernel.shmall = 268435456 kernel.shmmni = 4096 kernel.sem = 250 32000 100 128 net.ipv4.ip_local_port_range = 1024 65000 net.core.rmem_default = 4194304 net.core.rmem_max = 4194304 net.core.wmem_default = 262144 net.core.wmem_max = 262144
- Edit /etc/security/limits.conf. Append these parameters.
oracle soft nproc 2047 oracle hard nproc 16384 oracle soft nofile 1024 oracle hard nofile 65536
- Edit /etc/pam.d/login and insert the following lines BEFORE the selinux open line.
session required /lib/security/pam_limits.so session required pam_limits.so
- Create groups and users. Make the oracle password racattack.
groupadd oinstall groupadd dba groupadd oper groupadd asmdba groupadd asmoper groupadd asmadmin useradd -u 500 -g oinstall -G dba,oper,asmdba,asmoper,asmadmin oracle passwd oracle Changing password for user oracle. New UNIX password: BAD PASSWORD: it is based on a dictionary word Retype new UNIX password: passwd: all authentication tokens updated successfully.
- Create the oracle homes and change the owner of both to oracle.
mkdir -p /u01/grid/oracle/product/11.2.0/grid_1 mkdir -p /u01/app/oracle/product/11.2.0/db_1 chown -R oracle:oinstall /u01
- Change user to oracle. Create an ssh connection to the localhost and answer yes to continue in order to add the server fingerprint to oracle's .ssh/known_hosts file.
su - oracle ssh localhost The authenticity of host 'localhost (127.0.0.1)' can't be established. RSA key fingerprint is e8:cf:6a:b3:eb:ec:42:1d:fa:f9:4e:17:61:3a:e0:8e. Are you sure you want to continue connecting (yes/no)? yes Warning: Permanently added 'localhost' (RSA) to the list of known hosts. oracle@localhost's password: ^C cat .ssh/known_hosts localhost ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEA6Hg7ZWFKtXHeAzpz+tEID7xzNGGrKlpjJ3RktCBrIz5jaoSYc8w+ZrJ4i0lwf1HhfgHYc9s8 tqz889B81C0RUkD/ldCSUYYLJ9AQ7oYowP0+0Y7a8ZbZOTX473mo7aEzhrkyC4PC7cDr9w1A7nWHCp8W1kEFsXGzVf8gdfozO1r1FtYIzIzXVYkFuRGKVA dy+fB0C+yiSxcpMlXoDt2NnjJyFjAo3iyIdu/Aq8YSlxKP9XkVcJWl7S3n/KFwLgQYxiyMIEiZYbwymgAQNUiy5RIpaLz6MXDz4SCX/cEi6Y41lmsXz+o+ clrlTItBhKVThpD7qrWk8egzg/Kk42+Giw==
- Generate an ssh shared key pair leaving the file to save in as the default and entering no passphrase.
ssh-keygen -t rsa Generating public/private rsa key pair. Enter file in which to save the key (/home/oracle/.ssh/id_rsa): Enter passphrase (empty for no passphrase): Enter same passphrase again: Your identification has been saved in /home/oracle/.ssh/id_rsa. Your public key has been saved in /home/oracle/.ssh/id_rsa.pub. The key fingerprint is: 9a:ad:3f:a4:8e:a0:9a:b1:67:ef:ef:10:b4:be:11:d2 oracle@collabn1.vm.ardentperf.com
- Add the public key you just generated to the local .ssh/authorized_keys file.
cat ~/.ssh/id_rsa.pub >> ~/.ssh/authorized_keys cat ~/.ssh/authorized_keys ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAytN8btnrx4txOLtEy2ywZqP4rDWZ6eQ9Z2lymKQORr1hGXlBTE0SVf9TLPl6TJSXiUJaUc0zDn6OEiH 5eIuYqVE3sKOHcjhKrCt/TEaS7L6jkP+W7Tq+gIzm6pV7fabaL1IDwuW9CZM1Gabowuhd4Gtyj7wBsY7usI8eDi1bNiXZTPOjGTFuVvaoOZefALB5C5 TMdZ91m1XvHAz4YV0vOJXo96vF9oK5WBYglJ/EauZ+7ZK2UPly4R7BWv6PWeXaDxxQ5riiqC4n5s91MHDyqq7E0bl8ZfFqSsU7DZu27N1g6k8An7pyO mbe76McfZ7e+QVCawHz8CGGmUR2LQ9RUw== oracle@collabn1.vm.ardentperf.com
- Extract the fix_cssd script.
 |
In VMware test environments you usually have a very small amount of memory. Oracle CSS processes can take up a *LOT* of the memory (over 50% in this lab) because it locks several hundred MB in physical memory. In VMware (for both ASM and RAC environments) this may be undesirable. This low-level hack will make the memory swappable at runtime.
NEVER, EVER, EVER EVEN IN YOUR WILDEST DREAMS THINK ABOUT TRYING THIS ON ANYTHING CLOSE TO A PRODUCTION SYSTEM. The source code for this file can be found at https://github.com/ardentperf/racattack/blob/master/makeDVD/root/fix_cssd/fix_cssd.sh |
su - root cd / tar xvf mnt/*/fix_cssd.tar root/ root/fix_cssd/ root/fix_cssd/fix_cssd.sh
- Set the proper permissions on the fix_cssd script. Load the fix_cssd script into and reload the /etc/rc.local.
chmod 774 /root/fix_cssd/fix_cssd.sh vi /etc/rc.d/rc.local cd /root/fix_cssd nohup nice -n -20 ./fix_cssd.sh 2>&1 & /etc/rc.d/rc.local nohup: appending output to `nohup.out'