WilliamsNet Architecture: Difference between revisions
Jump to navigation
Jump to search
DrEdWilliams (talk | contribs) |
DrEdWilliams (talk | contribs) m (→Domains) Tag: visualeditor |
||
| (7 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
(include a network diagram including the three core switches, the firewall, cable modem, and internet link, blocks for each cluster/group of systems) | |||
== Networks == | == Networks == | ||
* Describe 3-switch core network | |||
* Describe which ports are dedicated for specific VLANs (iSCSINet/Storagenet) | |||
Describe which ports are dedicated for specific VLANs (iSCSINet/Storagenet) | |||
=== VLANs === | === VLANs === | ||
| Line 13: | Line 14: | ||
* Plex | * Plex | ||
=== Domains === | |||
* williams-net.org | * external wildcard DNS entries | ||
* dredwilliams.com | ** Managed/provided by enom.com | ||
* ewconsulting.com | ** williams-net.org | ||
** dredwilliams.com | |||
** ewconsulting.com | |||
* internal | |||
** williams.localnet | |||
** dev.williams.localnet | |||
** test.williams.localnet | |||
=== Firewall === | === Firewall === | ||
| Line 39: | Line 46: | ||
=== Work Filesystem === | === Work Filesystem === | ||
/work on pro6 -> EquaLogic Storage Array -> xfs -> NFS | * /work on pro6 -> EquaLogic Storage Array -> xfs -> NFS | ||
== Infrastructure Services == | == Infrastructure Services == | ||
Load Balancer/Reverse proxy - NGINX - diggle.williams.localnet | * Load Balancer/Reverse proxy - NGINX - [[Diggle|diggle.williams.localnet]] | ||
IMAP/SMTP (production cluster) [mail|smtp|imap|narnia].williams.localnet | * IMAP/SMTP (production cluster) [mail|smtp|imap|narnia].williams.localnet | ||
Log Aggregator (production cluster) rsyslog.williams.localnet | * Log Aggregator (production cluster) rsyslog.williams.localnet | ||
Config Server (production cluster) http://config.williams.localnet | * Config Server (production cluster) http://config.williams.localnet | ||
MariaDB (production cluster) database.williams.localnet | * MariaDB (production cluster) database.williams.localnet | ||
* iSpy Security Cameras - maugrim.williams.localnet | |||
== Web applications == | == Web applications == | ||
| Line 56: | Line 64: | ||
=== Production Cluster === | === Production Cluster === | ||
k3s HA install (point to config page) | |||
* | * caspian (master) | ||
* | * uvilas (master) | ||
* | * belisar (master) | ||
* | * integrated rook/ceph storage (5.7TB) | ||
=== Test Cluster === | === Test Cluster === | ||
| Line 68: | Line 76: | ||
* pro3 (master) | * pro3 (master) | ||
* pro4 (node) | * pro4 (node) | ||
* integrated rook/ceph storage | * integrated rook/ceph storage (3.1TB) | ||
=== Development Cluster === | === Development Cluster === | ||
k3s HA install (point to config page) | k3s HA install (point to config page) | ||
* rogin (master) | * rogin (GPU) (master) | ||
* duffle (master) | * duffle (GPU) (master) | ||
* compute1 (master) | * compute1 (GPU) (master) | ||
* compute8 (node) | * compute8 (GPU)(node) | ||
* storage1 (node) | * storage1 (node) | ||
* integrated rook/ceph storage ( | * integrated rook/ceph storage (18.2TB) | ||
== Desktop Systems == | |||
* aslan - Office | |||
* tumnus - kitchen | |||
* bree - Music Room | |||
* rumblebuffin - cottage office | |||
* drad - cottage office | |||
* reepicheep - Surface Tablet | |||
== Spare Servers == | == Spare Servers == | ||
* poggin (Debian 10) | * poggin (GPU) (Debian 10) | ||
* trumpkin (Debian 10) | * trumpkin (GPU) (Debian 10) | ||
* calormen (Debian 10) | * calormen (Debian 10) | ||
* lamppost (Fedora 34) | * lamppost (Fedora 34) | ||
Latest revision as of 10:59, 20 October 2021
(include a network diagram including the three core switches, the firewall, cable modem, and internet link, blocks for each cluster/group of systems)
Networks[edit]
- Describe 3-switch core network
- Describe which ports are dedicated for specific VLANs (iSCSINet/Storagenet)
VLANs[edit]
describe all three primary VLANs (Admin, StorageNet, iSCSINet) and what they are used for.
External Access[edit]
firewall pinholes
- http/https
- ssh (non-standard ports)
- Plex
Domains[edit]
- external wildcard DNS entries
- Managed/provided by enom.com
- williams-net.org
- dredwilliams.com
- ewconsulting.com
- internal
- williams.localnet
- dev.williams.localnet
- test.williams.localnet
Firewall[edit]
- pfSense software/appliance
- DHCP Server
- DNS server
- IPsec VPN
- mobile clients
- Michael's network (loneisles)
- Joshua's network (alagaesia)
- Cottage network (menagerie) menagerie.williams-net.org
Storage[edit]
EquaLogic Storage Array[edit]
Promise Storage Array[edit]
Primary File Server[edit]
- /files on storage1 -> EquaLogic Storage Array -> zfs -> NFS/SMB
- /backup on storage1 -> local disk -> zfs -> NFS/SMB
- /promise on storage1 -> Promise Storage Array -> zfs -> NFS
Work Filesystem[edit]
- /work on pro6 -> EquaLogic Storage Array -> xfs -> NFS
Infrastructure Services[edit]
- Load Balancer/Reverse proxy - NGINX - diggle.williams.localnet
- IMAP/SMTP (production cluster) [mail|smtp|imap|narnia].williams.localnet
- Log Aggregator (production cluster) rsyslog.williams.localnet
- Config Server (production cluster) http://config.williams.localnet
- MariaDB (production cluster) database.williams.localnet
- iSpy Security Cameras - maugrim.williams.localnet
Web applications[edit]
- MediaWiki (https://wiki.williams-net.org & http://wiki.williams.localnet) - Production Cluster
- WordPress (https://dredwilliams.com) - Production Cluster
- GitLab (https://gitlab.williams-net.org & https://gitlab.dev.williams.localnet) - Development Cluster
Kubernetes Clusters[edit]
Production Cluster[edit]
k3s HA install (point to config page)
- caspian (master)
- uvilas (master)
- belisar (master)
- integrated rook/ceph storage (5.7TB)
Test Cluster[edit]
k3s HA install (point to config page)
- pro1 (master)
- pro2 (master)
- pro3 (master)
- pro4 (node)
- integrated rook/ceph storage (3.1TB)
Development Cluster[edit]
k3s HA install (point to config page)
- rogin (GPU) (master)
- duffle (GPU) (master)
- compute1 (GPU) (master)
- compute8 (GPU)(node)
- storage1 (node)
- integrated rook/ceph storage (18.2TB)
Desktop Systems[edit]
- aslan - Office
- tumnus - kitchen
- bree - Music Room
- rumblebuffin - cottage office
- drad - cottage office
- reepicheep - Surface Tablet
Spare Servers[edit]
- poggin (GPU) (Debian 10)
- trumpkin (GPU) (Debian 10)
- calormen (Debian 10)
- lamppost (Fedora 34)