Changes
no edit summary
* Use ARP proxying or 1-to-1 NAT for IPv4
* Use an NDP proxy for IPv6-->
=== Desired Setup ===
This is what I'm hoping to migrate us to:
* OpenWrt ([https://github.com/sbyx/odhcpd odhcpd] has built-in NDP proxying) or pfSense Router
** Partial: pfSense provides NATing on [[Infrastructure:Cyberdelia|cyberdelia]]
* An internal network smaller than a /8 (room for expansion)
** Done: 10.99.0.0/16
* IPsec (point-to-point and road warrior for users)
** Can be done through openWRT or pfSense
* Each VM host has a bridged ethernet port with a global IPv4 address and performs NAT to its VMs. Additional IPv4s are assigned as VMs as needed (e.g. milton and acidburn probably need their own)
** Done on [[Infrastructure:Cyberdelia|cyberdelia]]
* All internal IPv4 addresses are static leases assigned by [[Infrastructure:temp88191|the router]] or set statically '''and documented somewhere'''; hypervisors do not have their own networks unnecessarily like wood currently does.
** Internal network on [[Infrastructure:Cyberdelia|cyberdelia]] has static IPs or long-term leases.
** Cyberdelia still has too many internal networks, most of which are unnecessary.
* Each device has a global IPv6 address
** Currently provided through tunnel
=== CVL setup (deprecated) ===
Hardware:
* "luugtemp" or "temp88191": a Poweredge 2650 with 2 NICs configured as an Ubuntu router
* dhcp-host=52:54:00:68:81:33,10.0.1.2 # crashoverride 2.0
* dhcp-host=52:54:00:40:9a:55,10.0.1.3 # Cerealkiller 2.0
[[Category:Infrastructure]]