DEV Community

Cover image for Linux Server Infrastructure Lab
Akuson Daniel
Akuson Daniel

Posted on

Linux Server Infrastructure Lab

#ubuntu #linux #cli #tutorial

Project:Linux Server Infrastructure Lab

Environment: Ubuntu 24.04 LTS | VirtualBox | Windows 11 (Host)

Objective: From Bare Metal Installation to Remote Secure Management.

*Phase 1: Provisioning & OS Architecture *
The foundation was built by moving away from the "Desktop" mindset to a "Server" mindset.

Hypervisor Setup: Configured VirtualBox with optimized settings (2GB RAM, 2 CPUs) and enabled Hardware Virtualization (VT-x/SVM).

Minimalist OS Install: Deployed Ubuntu Server 24.04 LTS using LVM (Logical Volume Management) for flexible disk scaling.

The Shell Environment: Mastered the Linux Filesystem Hierarchy (/, /etc, /home).

Key Skills:

File CRUD operations (mkdir, touch, rm).

System updates and package management via apt.

Terminal navigation and text editing via nano.

*Phase 2: Networking & The Remote "Bridge" *
In this phase, I transitioned from local console access to a professional remote workflow.

Network Refactoring: Migrated from NAT to a Bridged Adapter to give the server a unique identity on the local network (LAN).

Remote Access (SSH): Established a secure encrypted tunnel from Windows PowerShell to the Linux server.

Network Troubleshooting: Used 'ip addr' for discovery and ping for connectivity verification.
*Phase 3: Hardening & Security *
A server is only as good as its defense. I implemented "Zero-Trust" principles for the lab.

Firewall Configuration (UFW): Implemented a "Deny-by-Default" policy.

Strategically allowed SSH traffic to prevent remote lockout.

Identity & Access Management (IAM): Created secondary user accounts (junior).

Managed administrative privileges via the sudo group.

The Linux Permissions Model: Deciphered the drwxrwxr-x permission strings.

Mastered Ownership Handover (chown) and Numerical Permissions (chmod).

Example: Utilized chmod 400 to create "Read-Only Vaults" for sensitive system files.

Phase 4: System Observability & Metrics (Current)
Monitoring the "Health" of the server to ensure uptime and performance.

Live Metrics: Utilized htop for real-time CPU and RAM visualization.

Storage Auditing: Used df -h to monitor disk consumption and prevent system crashes due to full volumes.

Session Auditing: Used last and history to track user activity and system changes.

Top comments (0)