Open main menu

Linux and Unix Users Group at Virginia Teck Wiki β

Changes

Project Bringing Sexy Back

188 bytes added, 02:34, 10 January 2019
no edit summary
'''Note''': This page does '''not''' reflect current infrastructure. It is was for planning purposes. As of 2019 everything has been migrated to new infra, as explained in [[Infrastructure]].
This is an effort toward the end of Fall 2017 and early Spring 2018 to get new hardware, determining if we can use old hardware If you're looking for anything, bring many vtluug services back to life plus add new services, fix major problems relating to the current infrastructure, make managing the current infrastructure easierolder project [[User:telnorattti|telnoratti]] proposed, and to provide enough documentation so that anybody can have a very good understanding of how everything works without having to ask the officers details about every little thing. This will be summarized in the it are at [[Sysadmin HandbookSummer_2013_New_Machines]].
One major change This is running an Proxmox cluster effort toward the end of Fall 2017 and early Spring 2018 to get new hardware, determining if we can use old hardware for anything, bring many vtluug services back to life plus add new services, fix major problems relating to the current infrastructure, make managing the current infrastructure easier, and to provide enough documentation so that anybody can have a very good understanding of how everything, along with works without having to ask the officers about every little thing. This will be summarized at https://vtluug.org/rtfm.txt One major change offering a VPS service in addition to shell accounts on [[Infrastructure:Acidburn|Acidburn]]. This is not possible with the current hardware.
<!--TODO talk about doing stuff from the project list-->
We are still working on exactly what to ask for, but here are some desirable things:
//TODO link items
{| class='wikitable' id='sortMe'
!Priority
* Router/DNS Server: joey (sry temp88191 is too old)
* NAS: [[Infrastructure:Cyberdelia|Cyberdelia]] due to its HDD capacity
* Proxmox hosted-engineLibvirt hosts: Both R620s, PhantomphreakMeltdown & Spectre
* HPC: [[Infrastructure:Wood|Wood]] due to its 4U height that can easily fit gpus
== Networking ==
See [[Infrastructure:Network]] for a mostly up to date networking layout.
This section reflects Public IPv4s are the services decscribed in same except for a few, the following sectionlocal IPv4 network is different, and IPv6 is completely different because we have a prefix.
==== Public IPv4 addresses ====
|128.173.88.191
|-
|Proxmox ControllerOne Libvirt Node (out of 2)
|meltdown.vtluug.org
|128.173.89.244246
|-
|WebserverWeb/Proxy server
|sczi.vtluug.org
|128.173.88.78
|-
|FreeIPA
|zerocoolchimera.vtluug.org
|128.173.89.247
|-
|MirrorPrimary NFS server|mirrordirtycow.vtluug.org|128.173.89.246244
|-
|Matt's server
As per [[User:echarlie|echarlie]], "check rdns. if there isn't an entry, and it's in ece's allocated block, we can use it."
 
==== Private IPv4 addresses ====
We also use private addresses for things like NAS. This isn't 100% figured out yet, but we will probably do something like use 10.0.0.0-100 as static IPs and run DHCP on 10.0.0.101+.
 
==== IPv6 addresses ====
See [[Infrastructure]].
== Service Importance ==
'''Note''': This section's PoV does '''not''' taking into account the current state of service. Instead, it assumes services are being installed to a new infrastructure.
'''All''' necessary services send notifications to officers for alerts.Syntax:* Overall service (hostname)
Syntax:* Host (hostname)** Services running on each hostare covered in the following sections
=== Urgent Essential ===
==== Bare Metal ====
* Routing (joey)
* DNS (joey)
* Firewall (joey)
* NAS ("new" dell 2900 - ryzenfalldirtycow, dell 2900 - cyberdelia, r310 - falloutshellshock)* Proxmox VE Libvirt hosts (meltdown,spectre,phantomphreak)
==== VMs ====
* FreeIPA (chimera)
* Sczi Web services (sczi)** vtluug.org** wiki.vtluug.org** hokieprivacy.org** linx.vtluug.org + linx.li** bash.vtluug.org** pSQLShell (acidburn)
=== Very Important ===
==== Bare Metal ====
* VPS system via ProxmoxLibvirt
** Somewhat automated system where a user is given a VM
** Give each user an ipv6 address
==== VMs ====
* Shell (acidburn)** Wadsworth ** duckhunter9000** multimediamanv2** Produces /files/irc-vtluug.org** mail** Member pages @ vtluug.org/~user* rsyslog elk (theplague)
** Need to research this a bunch
 * Sczi jitsi.vtluug.org (sczijitsi)** Probably better on separate host; need to research:Proxy through sczi*** jitsiemby.vtluug.org(emby)**Proxy through sczi* embymirror.vtluug.org(mirror)* syncthing discovery server (sync)
=== Important ===
==== VMs ====
* mirror.vtluug.org (mirror)
* syncthing discovery server (sync)
* Tahoe-LAFS (crashoverride)
* telnet BBS
=== Other things to consider ===
* diaspora*
* finger (kerberos-based)
* talkd
== Migration ==
'''NOTE''': We're not going to use docker //TODO
 
 
 
 
=== VTLUUG Site ===
* Migrate to docker === VTLUUG wiki ===* Backup content* Migrate to dockerSetup on sczi via the web ansible role
=== VTLUUG & Gobblerpedia wiki ===* Backup contentusing dumpBackup.xml script* Migrate Setup on sczi via the web ansible role* Restore content to dockernew wiki
=== Wadsworth/phenny ===
* Backup db (for .in)Use irc3 module instead* Migrate to dockerSetup on acidburn via the small-services ansible role
=== VTBash ===
* Migrate to dockerSetup on sczi via the web ansible role
=== Hokieprivacy ===
* Migrate to dockerSetup on sczi via the web ansible role
=== Linx ===
* Move files to NAS* Migrate to dockerSetup on sczi via the web ansible role
=== Acidburn ===
* Migrate homedirs to dirtycow NAS* Currently have a ton of users - most Implement background tmux irc systemd service (or just tell people don't to use it anymorecrontabs @reboot (sounds like u got a problem w/ systemd)) === User Accounts ===** Have people reSetup on chimera via freeipa-register with FreeIPAserver ansible role* Implement background tmux irc systemd serviceImport LDAP accounts to freeipa
=== /tank ===
* Backup then clean upMove main stuff to dirtycow** Either to tardis or Clean up a temporary NASbit
== Issues with current services ==
=== Gobblerpedia ===
* Lots of out of dat date information* Building templates(populate automatically from database)
=== Wadsworth/phenny ===
=== Hokieprivacy ===
* Mobile formatting is fucked, at least for FF on Android-- someone should look into the hugo templates and fix
* Out of date
=== vtluug.org/files ===
* Need easy way fo non-root to add stuff here
 
=== vtluug.org/users/~$USERNAME ===
* should document for users
* maybe support dynamic server-side content (probably not; use js)
=== mail ===
* Train spamassassin(use corpus)
* Sieve doesn't seem to work
=== gopherspace ===
* who tf uses gopher(fwiw, gopher was 90% of the goal of project bringing sexy back)* legacy IP only, b/c pygopherd is shite
=== TOR services ===
Retrieved from "https://vtluug.org/wiki/Special:MobileDiff/6658...7622"