398
edits
Changes
no edit summary
'''Note''': This page does '''not''' reflect current infrastructure. It is was for planning purposes. As of 2019 everything has been migrated to new infra, as explained in [[Infrastructure]].
<!--TODO talk about doing stuff from the project list-->
We are still working on exactly what to ask for, but here are some desirable things:
{| class='wikitable' id='sortMe'
!Priority
* [[Infrastructure:Wood|Wood]]
* 2x SGI (Phantomphreak/Joey)
* 2x R620s (Names TBDMeltdown/Spectre)
==== Configuration ====
* Router/DNS Server: joey (sry temp88191 is too old)
* NAS: [[Infrastructure:Cyberdelia|Cyberdelia]] due to its HDD capacity
* oVirt hosted-engineLibvirt hosts: Both R620s, PhantomphreakMeltdown & Spectre
* HPC: [[Infrastructure:Wood|Wood]] due to its 4U height that can easily fit gpus
Diagrams in progress
== Networking ==
See [[Infrastructure:Network]] for a mostly up to date networking layout.
==== Public IPv4 addresses ====
|128.173.88.191
|-
|oVirt ControllerOne Libvirt Node (out of 2)
|meltdown.vtluug.org
|128.173.89.244246
|-
|WebserverWeb/Proxy server
|sczi.vtluug.org
|128.173.88.78
|-
|FreeIPA
|zerocoolchimera.vtluug.org
|128.173.89.247
|-
|MirrorPrimary NFS server|mirrordirtycow.vtluug.org|128.173.89.246244
|-
|Matt's server
As per [[User:echarlie|echarlie]], "check rdns. if there isn't an entry, and it's in ece's allocated block, we can use it."
== Service Importance ==
'''Note''': This secionsection's PoV does '''not''' taking into account the current state of service. Instead, it assumes services are being installed to a new infrastructure.
=== Urgent Essential ===
==== Bare Metal ====
* Routing (joey)
* DNS (joey)
* NAS Firewall (cyberdeliajoey)* oVirt hostedNAS ("new" dell 2900 - dirtycow, dell 2900 - cyberdelia, r310 -engine (crash and burnshellshock)** oVirt requires DNS & NAS* Monitoring Libvirt hosts (meltdown, spectre)** meltdown.vtluug.org - also oVirt dashboard** oVirt mostly takes care of this for us*** See https://ovirt.org/blog/2017/12/ovirt-metrics-store** Prometheus or Nagios if more detailed monitoring is needed
==== VMs ====
* FreeIPA (zerocoolchimera)* Sczi Web services (sczi)** vtluug.org** wiki.vtluug.org** hokieprivacy.org** linx.vtluug.org + linx.li** bash.vtluug.org** pSQL** Probably better on separate host; need to research:*** jitsi.vtluug.org*** emby.vtluug.orgShell (acidburn)
=== Very Important ===
==== Bare Metal ====
* VPS system (crashandburn)via Libvirt
** Somewhat automated system where a user is given a VM
** Possibly is really easy with oVirtGive each user an ipv6 address** Possibly do something like <user>.users.vtluug.orgNAS Backup
==== VMs ====
* Shell (acidburn)** Wadsworth ** duckhunter9000** multimediamanv2** Produces /files/irc-vtluug.org** mail** Member pages @ vtluug.org/~user* rsyslog elk (theplague)
** Need to research this a bunch
* jitsi.vtluug.org (jitsi)
** Proxy through sczi
* emby.vtluug.org (emby)
** Proxy through sczi
* mirror.vtluug.org (mirror)
* syncthing discovery server (sync)
=== Important ===
==== VMs ====
* Tahoe-LAFS (crashoverride)
* telnet BBS
** How tf do these things work
* wargame.vtluug.org (wargame)
* Archive Team Warrior
* map.vtluug.org (map)
=== Other things to consider ===
* diaspora*
* finger (kerberos-based)
* talkd
== Migration ==
=== VTLUUG Site ===
* Migrate to dockerSetup on sczi via the web ansible role
=== VTLUUG & Gobblerpedia wiki ===* Backup contentusing dumpBackup.xml script* Migrate to docker === Gobblerpedia ===Setup on sczi via the web ansible role* Backup Restore content* Migrate to dockernew wiki
=== Wadsworth/phenny ===
* Backup db (for .in)Use irc3 module instead* Migrate to dockerSetup on acidburn via the small-services ansible role
=== VTBash ===
* Migrate to dockerSetup on sczi via the web ansible role
=== Hokieprivacy ===
* Migrate to dockerSetup on sczi via the web ansible role
=== Linx ===
* Move files to NAS* Migrate to dockerSetup on sczi via the web ansible role
=== Acidburn ===
* Migrate homedirs to dirtycow NAS* Currently have a ton of users - most Implement background tmux irc systemd service (or just tell people don't to use it anymorecrontabs @reboot (sounds like u got a problem w/ systemd)) === User Accounts ===** Have people reSetup on chimera via freeipa-register with FreeIPAserver ansible role* Implement background tmux irc systemd serviceImport LDAP accounts to freeipa
=== /tank ===
* Backup then clean upMove main stuff to dirtycow** Either to tardis or Clean up a temporary NASbit
== Issues with current services ==
=== Gobblerpedia ===
* Lots of out of dat date information* Building templates(populate automatically from database)
=== Wadsworth/phenny ===
=== Hokieprivacy ===
* Mobile formatting is fucked, at least for FF on Android-- someone should look into the hugo templates and fix
* Out of date
=== vtluug.org/files ===
* Need easy way fo non-root to add stuff here
=== vtluug.org/users/~$USERNAME ===
* should document for users
* maybe support dynamic server-side content (probably not; use js)
=== mail ===
* Train spamassassin(use corpus)
* Sieve doesn't seem to work
=== gopherspace ===
* who tf uses gopher(fwiw, gopher was 90% of the goal of project bringing sexy back)* legacy IP only, b/c pygopherd is shite
=== TOR services ===