Page 2
Cobalt RaQ, and the terms under which it can be distributed, refer to the Cobalt Web site at http://www.cobalt.com/ . The Cobalt RaQ 3 includes software developed by the Apache Group for use in the Apache HTTP server project (http://www.apache.org/).
Read and understand all the safety and operating instructions before operating the appliance. 2. Ventilation The Cobalt RaQ 3’s vents (on the front) and the fan opening(s) (on the back panel) are provided for ventilation and reliable operation of the product and to protect it from overheating. These openings must not be blocked or covered.
Page 4
6. Operating the unit in an equipment rack If you plan to install the Cobalt RaQ 3 in an equipment rack, take the following precautions: (a) Ensure the ambient temperature around the Cobalt RaQ 3 (which may be higher than the room temperature) is within the limits specified in Appendix B.
Page 5
Both Netscape Navigator® and Microsoft® Internet Explorer have bugs that can cause intermittent, unexplained failures. When using a Web browser to interact with your Cobalt RaQ 3, you may occasionally experience a browser failure. Released product versions of the browsers are usually more reliable than beta versions, and later versions typically work the most reliably.
Phase 1: Making the connection Installing the RaQ 3 Connecting to the network Connecting the power cord Powering on the RaQ 3 Configuring the RaQ 3 for the network Using the LCD console to configure the network Setting the configuration...
Page 8
Contents Phase 2: Setting up with the Web browser Configuring the RaQ 3 with the Setup Wizard Entering the network settings Entering the administrator settings Entering the service settings Entering the time settings Completing configuration with the Setup Wizard Registering the RaQ 3 online...
Page 9
Contents Maintenance Backup Manual backup Scheduled backup Backup file locations Restore Install software Third-party software Add-on storage support Suspend a virtual site Hard suspension Reboot Shutdown Support tools Site Usage System Status System components Central processing unit (CPU) Memory Disk Network Services Web server...
Page 10
Contents Entering user email settings and aliases Mail Forwarding and Vacation Reply Email aliases Changing user settings Modify settings for a site user Modify email options for a site user Remove a site user Mailing list management Adding a mailing list Modifying a mailing list Removing a mailing list Site settings...
Page 11
Using email on the RaQ 3 Developing Web pages CGI scripts Publishing Web pages using FTP Publishing Web pages with FrontPage Using telnet 6 New Features on the RaQ 3 Add-on storage support Disaster recovery Output bandwidth management Search and sort Virtual sites...
Page 12
Contents A Using the LCD Console Changing network configuration Configuring an uninterruptible power supply (UPS) Rebooting Powering down B Product Specifications Technical data for the RaQ 3 Hardware Software Features System management Partner solutions Physical data Regulatory approvals Upgrading your RaQ 3...
Page 13
Contents D Domain Name System Basic DNS Enabling the DNS server feature Configuring a primary DNS server Specifying a reverse lookup (PTR) record Specifying a mail server (MX) record Specifying an alias (CNAME) record Configuring a secondary DNS server Advanced DNS Network Mask Notation Conversion Delegating a subdomain Delegating a subnet...
The RaQ 3 server appliance offers a full suite of Internet services with remote administration capabilities, pre-packaged in a single rack-unit (1RU) industry-standard enclosure. The RaQ 3 is pre-configured with...
Flexible platform for the development of solutions, including the development of third-party applications. All of these services can be used within an extranet or an intranet environment, or across the Internet. General Figure 1 and Figure 2 show all the RaQ 3 controls, indicators and connectors.
Disk indicates activity on the hard disk drive. 2. The Web indicator blinks to indicate Web activity. 3. The Logo Badge glows when the RaQ 3 is powered on. 4. The LCD screen displays messages and values entered. Use the arrow buttons to toggle between choices or to enter values.
Chapter 1 Rear view of the RaQ 3 Figure 2 RaQ 3 rear view Cobalt Networks and Cobalt RaQ are trademarks of Cobalt Networks, Inc. www.cobalt.com P/N 550-00135-01 100 - 240 VAC 50/60 Hz 1.4 A 60W max 1. The Security lock hole is used to lock the unit to a secure location.
(if communicating with other networks). Target audience for the RaQ 3 The user manual is for RaQ 3 Administrators who use the RaQ 3 to develop and host Web sites. RaQ 3 Administrators should be familiar with Microsoft® Windows , Macintosh®...
Page 20
• The RaQ 3 Administrator is the person who controls and runs the RaQ 3. This person sets up and maintains the RaQ 3, sets up virtual sites, and sets access privileges and provides services for the Site Administrators and site users. The RaQ 3 Administrator can also act as the Site Administrator for any virtual site.
Organization of the user manual The user manual is organized according to the user interface (UI). Chapter 3, “RaQ 3 Server Management‚” is based on the Server Management screen with the brown border on the left side. See Figure 3.
Page 22
Chapter 1 Figure 4 Site Management screen...
Page 23
Introduction Figure 5 Personal Profile screen...
FTP) and how to manage your personal directory. Chapter 6 “New Features on the RaQ 3” on page 129 explains the new features on the RaQ 3 and where to fnd further information in the manual. Appendix A “Using the LCD Console” on page 133 explains LCD console functions.
Page 25
Introduction Table 1 Icons used in the manual and UI Icon Description WebServer Only in the Service Settings table of Control Panel on the Management Screen. WebServer is always on. Simple Network Management Protocol (SNMP) Only in the Service Settings table of Control Panel on the Management Screen.
Page 26
Suspension In the Virtual Sites List on the Server Management screen; indicates that a virtual site has been suspended by the RaQ 3 Administrator. In the Users List on the Site Management screen; indicates that a user has been suspended...
Introduction Customer Service and Technical Support For Cobalt product information, visit the support section of the Cobalt Web site at http://www.cobalt.com/support/. The site includes a Knowledge Base that customers can query; a list of Frequently Asked Questions (FAQs) that provide additional information is also available through the Knowledge Base.
Cobalt Networks’ web site at http://www.cobalt.com/support/ . The technical papers cover, among others, such topics as: • disaster recovery for a RaQ 3 system • hardware and software information gestalt that tells you about hardware elements and software features.
Before you call or email, have the following information ready. • the serial number, located on the back panel, or the MAC address, accessible through the user interface, of your RaQ 3 • any additional software installed on your system •...
RaQ 3 unit. On the Server Diagnostics screen, the RaQ 3 Administrator can create and download a data dump of the configuration files on the RaQ 3. This data dump can then be emailed to diagnostics@cobalt.com. A member...
Phase 1: Making the connection Installing the RaQ 3 The RaQ 3 can either be placed on a flat surface — for example, a desk, shelf or table top — or it can be connected to a standard 19-inch equipment rack.
Page 32
Chapter 2 If you plan to use the RaQ 3 on a flat surface, attach the rubber feet to the five indentations in the bottom of the case; see Figure 6. Figure 6 Rubber feet for the RaQ 3 Rubber feet If you plan to operate the RaQ 3 in an equipment rack, first connect the...
Network connection 1 (RaQ 3i configuration only) Connecting the power cord Connect the power supply cord to the RaQ 3 and to an electrical outlet (100-240 volts AC, 50/60 Hz, as listed in “Product Specifications” on page 139). Powering on the RaQ 3 Turn on the power by pressing the On/Off switch on the back of the RaQ 3.
Using the LCD console to configure the network Figure 9 shows the LCD console for the RaQ 3. The LCD screen on the front of the RaQ 3 displays two lines of text. The top line of the LCD presents instructions on data to enter; the bottom line displays the data already entered.
Follow these steps to configure the network manually: 1. When you see the prompt ENTER IP ADDR: 000.000.000.000 enter the IP address assigned to the RaQ 3 using the arrow buttons on the LCD console. 2. Press If the IP address is valid, the next prompt appears: ENTER NETMASK: 255.000.000.000...
1. Launch a standard Web browser on any computer connected to the network. 2. Enter the IP address of the RaQ 3 (shown on the LCD screen on the front panel) into the URL field of your browser — for example:...
Figure 10 RaQ 3 Welcome screen Configuring the RaQ 3 with the Setup Wizard To configure the RaQ 3, enter information into the fields on the Setup Wizard screen (see Figure 11). These fields are described in the sections that follow.
— for example, yourdomain.com. The host name and domain name must be coordinated by the network administrator in order for you to access the RaQ 3 by its name and not just by its IP address. Primary DNS Server Address. This is the IP address of your primary domain name system (DNS) server.
Administrators, site users and services Responding to RaQ 3 email alerts to prevent potential problems To set up the RaQ 3 Administrator, you must enter a password in the Administrator Password field and then enter the same value again in the second Administrator Password field.
Chapter 2 Entering the service settings You turn the RaQ 3 services on or off through the Service Settings table. See Figure 12. The default settings for these services are suitable for most users. These services include: • Email server (default is On) •...
RaQ 3 enters the information in its configuration files. Registering the RaQ 3 online The RaQ 3 displays an online product registration page; see Figure 13. Note: If you are not connected to the Internet, you cannot register online.
Page 42
If you do not want to register online, click Register Later to proceed to the RaQ 3 default home page. Once you have registered the RaQ 3 online, you cannot register again. You receive an error window stating that the RaQ 3 has already been registered.
In the bottom right corner, click the link under Product Registration. The Product Registration screen appears. 4. Follow the steps in the previous procedure to register online. The default home page for the RaQ 3 appears; see Figure 14 . Figure 14 Default RaQ 3 home page...
RaQ 3 home page is replaced. Registering the RaQ 3 If you did not register the RaQ 3 online, fill out the registration card included in the packaging materials and return it to Cobalt Networks, Inc. By doing so, you will receive notifications of system and security upgrades and new product information.
This chapter describes the functions that the RaQ 3 Administrator normally performs. The RaQ 3 Administrator accesses these functions on the Server Management screen on the RaQ 3. The Server Management screen has a brown strip on the left side.
Page 46
RaQ 3 Admin The RaQ 3 owner with the username “admin” has full control of the RaQ 3 and is a member of the main site (which uses the IP address shown on the LCD screen of the RaQ 3). The RaQ 3 can have several Site Administrators, but only one RaQ 3 Administrator.
• Full control. If the RaQ 3 Administrator wants to control all the functions on the RaQ 3, he or she can create virtual sites without assigning any virtual Site Administrators. The RaQ 3 Administrator is responsible for managing the main site and all the virtual sites.
FTP account can only be enabled on one name-based virtual site per IP address hosted by the RaQ 3. The IP address of the RaQ 3 can be shared by many virtual sites or it can be unique to one virtual site.
FTP. The number of virtual sites that you can configure on a RaQ 3 depends on the size of the hard disk in the RaQ 3 and on the amount of disk space allocated to each virtual site.
The Virtual Site List table offers a search function and a sort function. See Figure 15. These functions are useful if you have a large number of virtual sites on your RaQ 3 and you want to restrict the display to certain virtual sites.
Page 51
RaQ 3 Server Management You can sort the list of virtual sites according to the following criteria: • by host name, in ascending or descending order • by IP address, in ascending or descending order Ascending order means from lowest value to the highest value (a–z or 1–9).
192.168.25.77 as their IP address). • Host name Each virtual site requires a host name (for example, www or ftp). If the site is connected to the Internet, the RaQ 3 Administrator must know which IP address the host name uses. •...
Page 53
• Enable Shell Accounts The users of the virtual site being created can telnet to the RaQ 3 and run commands from a Linux shell. If this feature is enabled, Site Administrators can grant shell access on a user-by-user basis.
Output bandwidth management The RaQ 3 allows you to set an output bandwidth limit for each IP address you assign to a RaQ 3. This feature is available when you create a virtual site from the Server Management screen or when you modify the settings of a virtual site.
Site defaults and site settings can only be configured by the RaQ 3 Administrator. If the RaQ 3 Administrator enables either the FrontPage Server Extensions service or the Shell Accounts service, the Site Administrators can enable or disable FrontPage user webs, and enable or disable individual (per-user) shell access.
Page 56
Chapter 3 Figure 16 shows the screen for configuring the default settings of a virtual site. Figure 16 Default settings for a virtual site...
RaQ 3 Server Management To edit the default settings for a virtual site: 1. On the Server Management screen, click Site Management. Click Set Virtual Site Defaults. Enter the information for the site. See the descriptions in “Overview of virtual sites” on page 38.
Internet, because you first need to create valid DNS records for that site. If you administer your DNS records on the RaQ 3, refer to Appendix D, “Domain Name System”, on page 149 for creating DNS records. If your Internet service provider (ISP) administers your DNS records, ask your ISP to create the DNS records for the new name-based virtual site.
RaQ 3 Administrator Caution: Be sure to remember the password you enter here — otherwise, you will need to reset it (See “Resetting the RaQ 3 Administrator password” on page 46). In the Administrator section of the Server Management screen, you enter information about the RaQ 3 Administrator —...
1. Push and hold the end of a paper clip in the recessed Reset Password button (located between the LCD screen and the LCD arrow buttons, on the front of the RaQ 3). Hold the button in for approximately 2 seconds.
RaQ 3 Server Management 5. Click Administrator on the left. The Administrator Settings table appears. Enter the password twice to ensure that you have entered it as intended. For guidelines on choosing a password, see “Entering the administrator settings” on page 25.
Chapter 5. Email server The RaQ 3 supports email for each virtual site on the host. It also supports email for entire domains (for example, www.mydomain.com). By default, each registered user has an email account created on the RaQ 3.
Page 63
(DNS) server. The IP address of the DNS server must be entered in the network settings for the RaQ 3 or the SMTP protocol will not work. For more information, see “Entering the network settings” on page 24.
Page 64
• Smart Relay Host Name You can enter an optional host name in this field. With this feature, you can configure the RaQ 3 to send Internet email to a specific email server. Enter the host name of the email server through which you want to relay your email.
ISP gives you a list of 30 networks used by 30 points-of-presence (POPs) (which are regional ISP offices) across the country and your clients can dial in from any of them, then you must trust all 30 networks or these users cannot send email through your RaQ 3.
DNS working on your clients. File transfer protocol (FTP) server Using the file transfer protocol, site users can upload and download files on the RaQ 3. Users can transfer files with FTP client software such as Fetch or WS-FTP.
RaQ 3 Server Management The RaQ 3 Administrator can can enable or disable the FTP server. 1. On the Server Management screen, click Control Panel. The Service Settings table appears. 2. Click the check box next to File Transfer Protocol (FTP) Server to on or off.
5. Click Save Changes in the Service Settings table. Legato file backup You can use the Legato NetWorker® client software to support backup and restore needs on the RaQ 3. To use this feature, you must install the Legato Networker Server software. The software is available at www.legato.com.
If you have the RaQ 3 configuration, you can download the server-side software from Knox Software and install it on a different server with a local tape drive. You can then back up the RaQ 3 through the local network connection.
Chapter 3 Network The network settings make the RaQ 3 visible to other computers. If you change the IP address, the RaQ 3 reboots. IMPORTANT: Coordinate the network configuration information with your system adminstrator to ensure the integrity of your network.
Page 71
RaQ 3 Server Management Figure 20 shows the Settings tables of the Network section. Figure 20 Settings tables in the Network section...
Chapter 3 Time The RaQ 3 Administrator can configure the correct time and date and the time zone for the RaQ 3. 1. On the Server Management screen, click Control Panel on the left. The Service Settings table appears. 2. Click Time at the top. The Time Settings table appears.
Internet Explorer or use a different browser software to restore the backup file. Manual backup This feature allows administrators to manually back up data stored on the RaQ 3. Figure 21 shows the File Backup table. Figure 21 File Backup table...
Page 74
The file transfer takes several seconds to several minutes. Do not interrupt or cancel the file transfer. If the file transfer fails, delete the partial back up file from your computer. If you try to restore a partial back up file, you can corrupt the data on your RaQ 3.
Chapter 3 To schedule regular, automatic backups: 1. On the Maintenance screen, click Backup at the top. Click Scheduled Backup. 3. In “Data to Backup,” select the type of Backup, as described in step 2 in “Manual backup” on page 59. 4.
You must restore data from the same machine on which the data was backed up. Users can restore their own personal directory. Caution: The system restores data only (for example, email messages stored on the server or Web files). It does NOT restore virtual sites or site users to a RaQ 3.
Page 78
file. Caution: The system does not merge the current and backed-up data. When data is restored, any changes made to files on the RaQ 3 since the last backup are lost. Figure 23 shows the File Restore table. Figure 23...
Page 79
1. On the Maintenance screen, click Restore at the top. The File Restore table appears. 2. The RaQ 3 saves backed-up data in .raq files. Enter the path and filename of the backup file, or click Browse to select the .raq file archived on your computer which you wish to restore to the server.
Chapter 3 Install software You can add new software to the RaQ 3 from the browser. You can install new software obtained either from the Cobalt Networks Web site or from a CD supplied by Cobalt Networks. Figure 24 shows the Install Software table.
RaQ 3. To install software from a CD: Insert the CD into a computer on the same network as the RaQ 3. On the computer that has the CD, go to the Server Management screen. Click Maintenance on the left.
A virtual site cannot span multiple disks and the disk must remain connected to the RaQ 3 for proper operation of the virtual sites stored on the disk. The RaQ 3 does not automatically recognize virtual sites on an external disk transferred from another RaQ 3.
For more information, see “Adding a virtual site” on page 43. Suspend a virtual site There are two ways to suspend a virtual site on the RaQ 3: a hard suspension and a soft suspension. For more information on soft suspensions, see “Suspend a virtual site”...
RaQ 3 unit. On the Server Diagnostics screen, the RaQ 3 Administrator can create and download a data dump of the configuration files on the RaQ 3. This data dump can then be emailed to diagnostics@cobalt.com. A member...
Site Usage The Site Usage feature allows the RaQ 3 Administrator to monitor the amount of bandwidth consumed by Web, email and FTP traffic generated by the virtual sites on a RaQ 3.
Page 87
RaQ 3 Server Management Figure 26 shows the a sample of a Total Usage summary report. Figure 26 Sample of a Total Usage summary report...
CPU, memory, disk and network status, as well as the services running on RaQ 3. In all cases, the RaQ 3 monitors the status of each of the subsystems and displays a green, amber, red or grey circle beside each item.
The CPU Usage chart provides a real-time chart of CPU load. It indicates the number of tasks waiting to be executed. This chart helps you evaluate whether the RaQ 3’s CPU is being used heavily or lightly. Memory The memory status chart tells you whether there is physical memory available.
Chapter 3 Services The Service Status section allows you to monitor Web, email, FTP, telnet, DNS and SNMP services. It follows the same LED conventions as the System Status section. Web server The Web server status chart displays the status of the Web server (green, amber, red or grey).
RaQ 3 Server Management Active Monitor The RaQ 3 uses Active Monitor software. Active Monitor is a Cobalt Networks utility that runs on a RaQ 3 and updates key system information every 15 minutes. Active Monitor checks: • the status of the RaQ 3 (functioning, warning of failure, failed or inactive) •...
Chapter 4 Site Management There are three types of users on the RaQ 3: the RaQ 3 Administrator, Site Administrators and site users. This chapter describes the functions that the Site Administrator normally performs. The Site Administrator accesses these functions from the Site Management screen on the RaQ 3.
Page 94
Chapter 4 The User List has five columns which display information about the each site user, and allow the RaQ 3 Administrator or Site Administrator to manage or remove a site. • The first column displays the full name of the site user.
Before assigning the default values for a site user, you must decide on the needs of your users. Both the Site Administrator and the RaQ 3 Administrator can configure the site user default settings. Figure 28 shows the screen for configuring the default settings of a site user.
Page 96
— last name — first name You can also enable or disable services for telnet/shell access, FrontPage user Web and Secure POP3 (APOP), if the RaQ 3 Administrator has enabled them for the virtual site. 3. Click Save Changes. Once you have configured the default settings, you can adjust the...
Caution: On the Site Management screen for the main site (for the main site, the trashcan icon is grayed-out, meaning that you cannot delete it), the user settings for the RaQ 3 Administrator can be modified, including name and password.
The User List table offers a search function and a sort function. See Figure 27. These functions are useful if you have a large number of site users on your RaQ 3 and you want to restrict the display to certain site users.
Page 99
Site Management You can sort the list of site users according to the following criteria: • by full name, in ascending or descending order • by user name, in ascending or descending order Ascending order means from lowest value to the highest value (a–z or 1–9).
Entering user email settings and aliases Mail Forwarding and Vacation Reply Individual site users can choose to have their RaQ 3 email forwarded to another email account. Site users can also choose to enable a vacation-reply message that is automatically sent to each person who sends the user an email.
Page 101
Each registered user on the RaQ 3 must have a username that is unique across all virtual sites on the RaQ 3. You cannot create two users with the same name on different virtual sites because all users share the same password database file ( /etc/passwd ).
Page 102
Chapter 4 To enable an email alias: To enable an alias for a site user: 1. On the Site Management screen, click Site Settings. Click the check box for “Accept email for domain.” Note: If this option is not selected, a sender must include the host name in the recipient’s email address, for example <alias>@www.abc.com.
Page 103
Site Management Modify email options for a site user To set up or modify the email options for a site user (to enter a forwarding email address, email aliases and an automatic vacation reply), click the blue envelope icon. These options are described in “Entering user email settings and aliases”...
Page 104
The mailing list is given a name, for example AlphaProject. The mailing list can include users on the RaQ 3 as well as external users. A message addressed to the name of the mailing list is delivered to each person on the list.
Page 105
To add external recipients to the mailing list, enter the email addresses in the “External Recipients” field. • To include existing registered site users on the RaQ 3 in the list, click the username in the scrolling window. To select all the registered site users, click Select All.
Page 106
Chapter 4 Figure 31 shows the Add Mailing List table in the List Management section. Figure 31 Add Mailing List table Modifying a mailing list To modify a mailing list: 1. On the Site Management screen, click List Management. The Mailing List table appears.
Page 107
A confirmation dialog box appears. Click OK to delete the mailing list. Site settings Only the RaQ 3 Administrator can modify virtual site settings. For Site Administrators who are not the RaQ 3 Administrator, the Site Settings section is a read-only status page.
Page 108
38. Note: Only the RaQ 3 Administrator can modify the settings for a virtual site. For Site Administrators who are not the RaQ 3 Administrator, the Site Settings section is a read-only status page.
Page 109
HTML pages in response to specific user inputs. CGI scripts can be created on a user’s desktop computer and then transferred to the RaQ 3 with a file transfer protocol (FTP) application (as explained in Chapter 5). CGI scripts must have a .pl or .cgi filename extension.
Page 110
Chapter 4 Suspend a virtual site There are two ways to suspend a virtual site on the RaQ 3: a hard suspension and a soft suspension. For more information on hard suspensions, see “Suspend a virtual site” on page 69.
Page 111
Site Management FTP settings Only the RaQ 3 Administrator can modify virtual site settings. For Site Administrators who are not the RaQ 3 Administrator, the FTP Settings section is a read-only status page. The RaQ 3 Administrator can enable the anonymous FTP server for the site, set limits on the size of files that can be uploaded and set the...
Page 112
A secure connection means two things: encryption and authentication. Encryption ensures that no one can snoop the connection between the browser and the RaQ 3; authentication ensures the client, through a certificate, that the server is who they say they are. The security is...
Page 113
Site Management At the network level, the first time the browser connects to a server, the browser stores the server’s certificate. This is the encryption part of the secure connection. Each time the browser “thinks” that it is communicating with this same server, it verifies that this same certificate is used to assure the secure connection.
Page 114
IP address. The UI does not allow you to enable SSL on a second name-based virtual site that shares the same IP address. Only the RaQ 3 Administrator can enable SSL on a virtual site; a Site Administrator who is not the RaQ 3 Administrator cannot enable SSL.
Page 115
Note: This feature only enables the public web server; it does not enable the SSL administrative server. See “SSL certificate for the main site” on page 105. 5. Click Save Changes. The RaQ 3 saves the configuration of the virtual site. Figure 34 Site Settings table: Enable SSL...
Page 116
Chapter 4 Generate a self-signed certificate Once the RaQ 3 Administrator has enabled SSL, the user must now create a self-signed certificate. The self-signed certificate can be signed later by an external authority. 1. On the Site Management screen, click SSL Settings on the left side.
Page 117
Site Management Figure 35 shows the blank form for generating an SSL certificate. Figure 35 Blank form for generating an SSL certificate...
Page 118
Chapter 4 Figure 36 shows the processed information of a self-signed SSL certificate. Figure 36 Processed information of a self-signed SSL certificate...
Page 119
The Cobalt RaQ 3 supports secure administration. The certificate generated for the main site is also used for secure administration. Therefore, to enable secure administration on a virtual site, generate a certificate for the main site on the RaQ 3 (if this has not already been done.)
Page 120
1. Highlight and copy the information received from the external certification authority. 2. On the SSL settings screen on your RaQ 3, highlight and remove the information currently in the “Certificate” window. Caution: DO NOT choose Delete certificate from the pull-down menu at the bottom.
Page 121
The Site Management screen appears. Click SSL Settings on the left side. Select Delete certificate from the pull-down menu at the bottom. Click Save Changes. The RaQ 3 processes the information and regenerates the screen; the Certificate Request and Certificate windows are now blank.
Page 122
Chapter 4 Site Usage The Site Usage feature allows the Site Administrator to monitor the amount of bandwidth consumed by Web, email and FTP traffic generated by a virtual site as well as disk usage for the virtual site. For the Site Usage feature on the Server Management screen, see “Site Usage”...
Page 123
Site Management To use the Site Usage function: 1. On the Site Management screen, click Site Usage on the left. The Web Usage table appears. • Web displays the Web Usage table for the virtual site. • FTP displays the FTP Usage table for the virtual site. •...
Page 124
Chapter 4 Manual backup A Site Administrator can manually back up data stored on the RaQ 3. 1. On the Site Management screen, click Backup. The File Backup table appears. See Figure 38. In “Data to Backup,” select the type of backup: •...
Page 125
Site Management Figure 38 shows the File Backup table for a virtual site. Figure 38 Backup table for a virtual site Scheduled backup A Site Administrator can schedule regular automatic backups. To schedule regular, automatic backups: 1. On the Site Management screen, click Backup. The File Backup table appears.
Page 126
Chapter 4 6. Choose a backup method. • FTP Server writes the backup file to an FTP server. • NFS places the backup file on a mountable NFS resource. • SMB Server (Windows File Sharing) places the backup file onto a directory shared from a Windows machine. 7.
Page 127
Site Management Backup file locations For a backup by an FTP Server: • A location of puts the backup file in <username>@ftp.server.com the initial login directory. • A location of <username>@ftp.server.com/path/to/backups/ puts the backup file in the specified path on the server, using to login.
Page 128
Caution: The system restores data only (for example, email messages stored on the server or Web files). It does NOT restore virtual sites or site users to a RaQ 3. Caution: You can use Microsoft Internet Explorer 3.0 to back up a Cobalt server but not to restore a backup file.
Page 129
Server management If you are the RaQ 3 Administrator, you can return to the RaQ 3 Server Management screen. On the Site Management screen, click Server Management on the left.
Page 131
This chapter describes the functions that site users can perform on the RaQ 3. As a site user, you can change your user name and password, set email options, monitor the use of disk space in your directory, back up and restore your files, send and receive email, and create and upload...
Page 132
Chapter 5 Figure 40 Modify User table Modify site user You can change your full name and password. To modify your settings: 1. On the Personal Profile screen, click Modify User. The Modify User table appears. See Figure 40. 2. Change the settings. 3.
Page 133
3. Click Save Changes. Forward email to You can forward your RaQ 3 email to another email account. In the Email Settings table, enter the destination email address in the Forward Email To field. Click Save Changes.
Page 134
Chapter 5 Vacation reply You can create a vacation-reply message that is automatically sent to each person who sends you email. This feature is useful when you know that you will not be reading or responding to incoming email messages for a period of time.
Page 135
Using Services on a Site Backup As a site user, you can back up your files. When you click “Backup My Files”, your Web browser provides a default filename and path. This file contains all of your backup data, including your home directory files, your email inbox and your vacation autoresponder message.
Page 136
Web files). It does NOT restore virtual sites or site users to a RaQ 3. To restore the backed-up files (from your local disk to your RaQ 3 home directory): 1. On the Personal Profile screen, click Restore on the left. The File Restore table appears.
Page 137
Using Services on a Site Using email on the RaQ 3 To use all of the email capabilities on the RaQ 3, the email parameter settings must be correct; see “Email server” on page 48. You must also configure your email application to send and retrieve email from the RaQ 3.
Page 138
“Executable”. Use FTP to upload .cgi and .pl files; use ASCII mode to upload CGI files. Once the file is on the RaQ 3, use your FTP program to make the script executable. You can also use the telnet command: chmod 775 <filename>.cgi.
Page 139
Using Services on a Site Publishing Web pages using FTP After creating your Web pages, you can publish them on the RaQ 3 using FTP. Make sure you have the following information: • the host name or the IP address of your RaQ 3 •...
Page 140
Chapter 5 Publishing Web pages with FrontPage If FrontPage Server Extensions are enabled on a site, a Site Administrator can open the site “root web” using Microsoft FrontPage software. To publish a Web page using FrontPage: 1. Using FrontPage Explorer on a personal computer, select Open FrontPage Web.
Page 141
Enter the administrator’s password at the password prompt. Only the RaQ 3 Administrator can su - to root. The RaQ 3 Administrator can enable the telnet feature for a virtual site. If the telnet feature has been enabled, the Site Administrator can then enable telnet access for individual site users;...
Page 143
Disaster recovery The RaQ 3 uses Arkeia software. The Arkeia software can be used to back up the content and data on the RaQ 3. In case of failure, this data can then be restored to the RaQ 3. For more information, see “Arkeia file backup” on page 54.
Page 144
Secure administration (SSL) The RaQ 3 provides an optional 128-bit secure sockets layer (SSL) for RaQ 3 administration. SSL can be used for both Web servers on the Cobalt RaQ 3, the main virtual sites and the admin server. SSL functions only with IP-based virtual sites.
Page 145
RaQ 3 unit. On the Server Diagnostics screen, the RaQ 3 Administrator can create and download a data dump of the configuration files on the RaQ 3. This data dump can then be emailed to diagnostics@cobalt.com. A member...
Page 146
Chapter 6 Suspend a virtual site There are two ways to suspend a virtual site on the RaQ 3: a hard suspension and a soft suspension. A hard suspension occurs when a storage device is disabled through the UI or is disconnected from the RaQ 3. In this case, all virtual sites on that storage device are inaccessible.
Page 147
• reboot, which restarts the entire RaQ 3 • power down in a way that allows the RaQ 3 to close all open files, and minimizes startup time the next time the RaQ 3 is powered on • exit from the LCD commands without making any changes IMPORTANT: Before turning off the RaQ 3, follow the proper power-down procedure, as described in “Powering down”...
Page 148
[C]ancel. 10. Press the button. If you select the Save option, the RaQ 3 reboots using the new network configuration. If you select Cancel, you return to step 1 of this procedure. You can also change the network configuration of the RaQ 3 through the Web browser: 1.
Page 149
The slave (or slaves) communicates with the master to verify the status of the power supply. To configure a RaQ 3 as the master, you must first connect the RaQ 3 to the UPS through the serial port. If you configure a RaQ 3 as the master, the RaQ 3 configures itself automatically.
Page 150
Appendix A First, configure the RaQ 3 that will serve as the master. To configure the RaQ 3 for the UPS: 1. On the LCD console, hold down the button for approximately 2 seconds. The LCD screen displays: SELECT: SETUP NETWORK 2.
Page 151
RaQ 3 units monitoring the UPS displays on the LCD screen: UPS: ON BATTERY 3. Plug the UPS into the wall socket again. Each of the RaQ 3 units monitoring the UPS displays on the LCD screen: UPS: POWER RESTORED...
Page 152
Caution: To prevent the potential loss of data, it is important to follow the proper power-down procedure before turning off the RaQ 3. To power down the RaQ 3: 1. On the LCD console, hold down the button for approximately 2 seconds.
Page 153
Appendix B Product Specifications Technical data for the RaQ 3 Hardware The RaQ 3 has the following hardware components. • x86-compatible superscalar processor • Up to 512 KB of L2 cache • 64-MB to 512-MB PC-100 SDRAM DIMMs (2 slots) (3.3 v, 168-pin, non-parity, unbuffered)
Page 154
SSL support for secure administration • Simple Network Management Protocol (SNMP) management support • Browser-based Setup Wizard • Browser-based RaQ 3 server management and individual virtual site management interfaces • Online ActiveAssist real-time help • ActiveMonitor maintenance agents • Advanced management using telnet •...
Page 155
• Analysis and usage statistics Physical data The RaQ 3 has the following physical characteristics. • Dimensions: 17.00 in. x 12.50 in. x 1.75 in. (43.2 cm x 31.8 cm x 4.5 cm; fits in a standard single-unit, 19-in. equipment rack) •...
Page 156
1. Power down the RaQ 3. See “Powering down” on page 138. 2. Unplug the RaQ 3. 3. Remove the power cord from the rear of the RaQ 3. The cable is located beside the power switch. See Figure 2 on page 4.
Page 157
Secure the top cover properly and replace the ten screws that hold the top cover in place. See Figure 43. Figure 43 shows how to remove the top cover of the RaQ 3. Figure 43 Top cover on the RaQ 3...
Page 158
Appendix B Printed circuit board Figure 44 shows the layout of the printed circuit board in the RaQ 3. Figure 44 Layout of the printed circuit board...
Page 159
Serial console port You can connect a console terminal to the DB-9 connector on the back panel of the RaQ 3. The terminal can be either an ASCII terminal or a PC running terminal software. The console terminal should have the following communications parameters —...
Page 160
RedHat Linux 6.0 distribution for x86-compatible processor systems. You can run most pre-compiled x86-based commercial software packages on the RaQ 3, as long as the software does not require a mouse, keyboard or monitor. Ensure that the software is compatible with the Linux 2.2 kernel and the glibc library.
Page 161
/etc/proftpd.conf • /etc/httpd/conf/*.conf Directory structure The disk on the RaQ 3 is partitioned into four segments. Most of the available disk space is on the partition mounted from It is /home. recommended to do most of your work under this partition. By default, quotas are turned on in this partition and are used extensively by the system software.
Page 162
Appendix C For example, a file saved as: /home/sites/<sitename>/web/testdir/test.html is accessed through the URL: http:/</sitename>/testdir/test.html Note: <Sitename> refers to the hostname.domainname of the corresponding virtual site. Site user home page When a user on the main site is created through the Web-based administration screens, the home directory for that site user is created /home/sites/home/users/username/web The content of their web pages can be viewed at:...
Page 163
Appendix D Domain Name System Basic DNS The Internet uses a distributed naming system called the Domain Naming System (DNS). DNS allows us to refer to computers by host names as well as by Internet Protocol (IP) addresses. IP addresses are hard to remember and are inconvenient to use. DNS allows us to use host names and domain names which can resolved to IP addresses.
Page 164
Your Internet service provider (ISP) can help you register your Internet server. To configure a primary DNS server for your RaQ 3: 1. On the Server Management screen, click Control Panel. The Service Settings table appears.
Page 165
Domain Name System 7. You can enable Automatic Reverse Lookup Generation for this IP address and host name pair so that IP address/host name pairs can be resolved in both directions. Reverse lookup (PTR) records that are generated automatically assume the network mask of 255.255.255.0 (24 bits.) 8.
Page 166
Appendix D Specifying a mail server (MX) record To specify a mail server (MX) record: 1. On the Server Management screen, click Control Panel. The Service Settings table appears. 2. Click Parameters next to the DNS service in the Service Settings table.
Page 167
6. Click Save Changes to DNS Server. Configuring a secondary DNS server The RaQ 3 Administrator can configure a secondary DNS server to provide redundant DNS service to your computers. If the primary DNS server is turned off, a computer can use the secondary DNS server with no loss of performance.
Page 168
Appendix D Advanced DNS Network Mask Notation Conversion Use Table 4 to convert between dot-quad and bit-count subnet mask and network size notations Table 4 Network Mask Notation Conversion. Dot-Quad Bit count 255.0.0.0 255.128.0.0 255.192.0.0 255.224.0.0 255.240.0.0 255.248.0.0 255.252.0.0 255.254.0.0 255.255.0.0 255.255.128.0 255.255.192.0...
Page 169
Delegating a subdomain DNS servers are organized hierarchically. You can delegate the name server authority for subdomains of any domain served by the RaQ 3 to other name servers. For example, domain.com can be served authoritatively by a RaQ 3 by defining an Address (A) Record using that domain.
Page 170
Select Server Settings from the Add... pull-down menu. If the RaQ 3 is being used on a private network or in conjunction with a restrictive firewall, you can specify forwarding servers. Enter the IP address of the Forwarding Server and, if you want, the...
Page 171
(SOA) record. Click the green pencil icon to modify the SOA record. The SOA record defaults to acceptable values in the majority of RaQ 3 configurations. You can fine tune the values for the following parameters: • Primary name server host name •...
Page 172
Appendix D Name server (NS) The primary name server defaults to the host name of the RaQ 3. You can specify the qualified host name of the secondary DNS server for that domain in the Secondary Name Server (NS) host name field. Some top-level domain registration organizations require that the secondary name server record be defined.
Page 173
Corporation for Assigned Names and Numbers (ICANN) at http://www.icann.org. 2. You have created the Web site on the RaQ 3. For instructions on how to do this, see “Adding a virtual site” on page 43. In the following examples, we will configure a sample domain called “mydomain.com”...
Page 174
Appendix D These records allow anyone on the Internet to type either “mydomain.com” or “www.mydomain.com” in order to access your Web site. To set up these records, go to the Parameters section of the DNS server in the Cobalt user interface (UI). 1.
Page 175
Domain Name System 5. Create an Address (A) Record for mydomain.com. • Select Address (A) Record from the Add... pull-down menu • Leave the Host Name field blank. • In the Domain Name field, type mydomain.com. • In the IP Address field, type 192.168.10.10. •...
Page 176
Appendix D 6. Create an Address (A) Record for “www.mydomain.com”. • Select Address (A) Record again from the Add... pull-down menu. • In the Host Name field, type www. • In the Domain Name field, type mydomain.com. • In the IP Address field, type 192.168.10.10. •...
Page 177
Domain Name System 7. To receive mail for “mydomain.com”, create a Mail Server (MX) Record. An MX record is similar to a A record but points to a name rather than an IP address. It is critical that the MX record point to a name which has a corresponding A record with the proper IP address.
Page 178
Appendix D To edit another domain, select another domain from the Select Domain or Network... pull-down menu. You can select any domain that you have configured for the DNS server. To add a new domain, use the Add... pull-down menu again. In the Domain Name field, replace the default domain name with the new domain name that you want to create.
Page 179
Domain Name System DNS is a distributed database that allows local administration of the segments on the overall database. Data in each segment of the database are available across the entire network through a client-server scheme consisting of name servers and resolvers. What is a DNS record? People are much more comfortable dealing with names rather than strings of numbers.
Page 180
Appendix D To determine which primary name server contains your domain name: 1. The local name server (the DNS resolver/browser machine) contacts the root domain name server maintained by the serveral Internet root server authorities. 2. The root domain name server returns the IP address of the primary name server responsible for the requested domain name.
Page 182
Appendix E GNU GENERAL PUBLIC LICENSE Version 2, June 1991 Copyright (C) 1989, 1991 Free Software Foundation, Inc. 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION This License applies to any program or other work which contains a notice placed by the copyright holder saying it may be distributed under the terms of this General Public License.
Page 183
Licenses These requirements apply to the modified work as a whole. If identifiable sections of that work are not derived from the Program, and can be reasonably considered independent and separate works in themselves, then this License, and its terms, do not apply to those sections when you distribute them as separate works.
Page 184
Appendix E You are not required to accept this License, since you have not signed it. However, nothing else grants you permission to modify or distribute the Program or its derivative works. These actions are prohibited by law if you do not accept this License. Therefore, by modifying or distributing the Program (or any work based on the Program), you indicate your acceptance of this License to do so, and all its terms and conditions for copying, distributing or modifying the Program or works based on it.
Page 185
Licenses 10. If you wish to incorporate parts of the Program into other free programs whose distribution conditions are different, write to the author to ask for permission. For software which is copyrighted by the Free Software Foundation, write to the Free Software Foundation; we sometimes make exceptions for this.
Page 186
Appendix E SSL LICENSE Copyright (c) 1998-1999 Ralf S. Engelschall. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
Page 187
Appendix F Glossary 10/100 BaseTX An Ethernet connection over twisted-pair cables with a throughput of 10 Mb/s or 100 Mb/s. 10BaseT A 10-Mb/s baseband Ethernet specification using two pairs of twisted-pair cabling (Category 3, 4, or 5): one pair for transmitting data and the other for receiving data.
Page 188
Appendix F Authentication Post Office Protocol (APOP) Authentication POP is a challenge-response authentication scheme built on top of the standard POP protocol. APOP is designed in a way that protects your password from being sent across the network. To keep your password safe, the server stores your password in a file on local disk.
Page 189
Glossary Dynamic Host Configuration Protocol (DHCP) A protocol that provides a mechanism for allocating IP addresses dynamically so that an address can be reused when a host no longer needs it. Encryption The transformation of data into a form unreadable by anyone without a secret decryption key.
Page 190
Appendix F IEEE 802.3 IEEE local area network (LAN) protocol that specifies an implementation of the physical layer and the media access control (MAC) sublayer of the data link layer. IEEE 802.3 uses CSMA/CD access at a variety of speeds over a variety of physical media. Extensions to the IEEE 802.3 standard specify implementations for Fast Ethernet.
Page 191
Glossary IP address A 32-bit address assigned to hosts using Transmission Control Protocol/ Internet Protocol (TCP/IP). An IP address belongs to one of five classes (A, B, C, D or E) and is written as four octets separated by periods (for example, 192.168.10.10), also called the dotted decimal format.
Page 192
Appendix F Name server Programs called name servers constitute the server half of the DNS client-server mechanism. A name server contains information about a segment of the DNS database and makes it available to a client called a resolver. A resolver is often just a library routine that creates queries and sends them across a network to a name server.
Page 193
Glossary Secure Sockets Layer (SSL) Secure Sockets Layer is a program layer created by Netscape Communications for managing the security of message transmissions in a network. Netscape’s idea was that the programming for keeping your messages confidential ought to be contained in a program layer between higher-level protocols (such as HTTP or IMAP) and the TCP/IP layers of the Internet.
Page 194
Appendix F Server A system program that awaits requests from client programs across a network, and services those requests. A server can be dedicated, in which case this is its sole function, or non-dedicated, where the system can be used in other ways, such as a workstation. Server Message Block (SMB) A protocol that enables client applications in a computer to read and write files on a computer network and to request services from server...
Page 195
Glossary Subnet mask A number that, in conjunction with an IP address, defines the set of IP addresses that are considered “local.” For example, if your IP address is 192.168.25.77 and your subnet mask is 255.255.255.0, then addresses between 192.168.25.1 and 192.168.25.255 are considered local. Swap file A space on a hard disk used as the virtual memory extension of a computer's random access memory (RAM).
Page 196
FTP account can only be enabled on one virtual site per IP address hosted by the RaQ 3. The IP address of the RaQ 3 can be shared by many virtual sites or it can be unique to one virtual site.
Page 197
43 RaQ 3 58 Add-on storage 68 backup file locations 62 Address (A) record 159 manual 59 Administration of RaQ 3 scheduled 61 distributed control 33 site user 121 full control 33 virtual site 109 hybrid control 33...
Page 198
Arkeia file backup 54 users/hosts/domains DNS 55 Browser email server 48 requirements v FTP server 52 setting up the RaQ 3 22 Legato file backup 54 Setup Wizard 23 SNMP agent 53 BSD Copyright 167 telnet server 53 web server 48...
Page 199
Index Network Mask Notation configuring Conversion 154 primary DNS server 150 refresh interval 158 secondary DNS server 153 retry interval 158 server settings 156 Start of Authority (SOA) delegating configuration 157 subdomain 155 time-to-live period 158 subnet 156 Domain administrator email description 149 address 158 domain administrator email...
Page 200
Index Forwarding email 86, 119 Icons 10 Front view 3 Install software on RaQ 3 66 LCD arrow buttons 3 CD-ROM 67 LCD screen 3 Cobalt web site 66 logo badge 3 remotely 67 reset password 3 Installing the RaQ 3 17...
Page 201
110 secondary DNS server address 24 virtual site, scheduled 111 Network status 75 install software 66 New features on the RaQ 3 129 CD-ROM 67 add-on storage 129 Cobalt web site 66 Arkeia file backup remotely 67...
Page 202
Power cord iv, 19 network 56 Power socket 4 services 47 Power switch 4 time 58 Powering down the RaQ 3 138 domain name 38 Powering on the RaQ 3 19 front view 3 Primary DNS server host name 38...
Page 203
4 battery, lithium iii serial connector 4 electric shock iv serial console port 4, 145 equipment rack iv Rebooting the RaQ 3 70, 137 ventilation iii Record, DNS SCSI connector 4 address (A) 159 Search alias (CNAME) 152...
Page 204
SNMP agent 53 certificate 102 telnet server 53 license 172 web server 48 main site certificate 105 Setting up the RaQ 3 17 settings 98 Setup Wizard 23 submit to external network settings 24 certification registration, online 27...
Page 205
Index Site user generate self-signed certificate adding 83 backup 121 license 172 changing email options 89 main site certificate 105 changing user settings 88 settings 98 default settings 81 submit to external certification directory structure authority 106 home page 148 virtual site 39 email options 118 SSL License 172...
Page 206
Index backup 109 file location 113 Target audience, RaQ 3 5 manual 110 Technical data 139 scheduled 111 Technical Support 13 bandwidth management 38, 40 contact information 13 changing site settings 94 developers 15 default settings 41 discussion groups 14...
Page 207
172 FTP 125 main site certificate 105 Web access by domain 39 settings 98 Web browser submit to external requirements v certification setting up the RaQ 3 22 authority 106 Setup Wizard 23 Web server control panel 48 status 76...