398
edits
Changes
no edit summary
'''Note''': This page does '''not''' reflect current infrastructure. It is was for planning purposes. As of 2019 everything has been migrated to new infra, as explained in [[Infrastructure]].
<!--TODO talk about doing stuff from the project list-->
We are still working on exactly what to ask for, but here are some desirable things:
{| class='wikitable' id='sortMe'
!Priority
* [[Infrastructure:Wood|Wood]]
* 2x SGI (Phantomphreak/Joey)
* 2x R620s (Names TBDMeltdown/Spectre)
==== Configuration ====
* Router/DNS Server: joey (sry temp88191 is too old)
* NAS: [[Infrastructure:Cyberdelia|Cyberdelia]] due to its HDD capacity
* oVirt hosted-engineLibvirt hosts: Both R620s, PhantomphreakMeltdown & Spectre
* HPC: [[Infrastructure:Wood|Wood]] due to its 4U height that can easily fit gpus
Diagrams in progress
== Networking ==
See [[Infrastructure:Network]] for a mostly up to date networking layout.
==== Public IPv4 addresses ====
|128.173.88.191
|-
|oVirt ControllerOne Libvirt Node (out of 2)|crashandburnmeltdown.vtluug.org|128.173.89.244246
|-
|WebserverWeb/Proxy server
|sczi.vtluug.org
|128.173.88.78
|-
|FreeIPA
|zerocoolchimera.vtluug.org
|128.173.89.247
|-
|MirrorPrimary NFS server|mirrordirtycow.vtluug.org|128.173.89.246244
|-
|Matt's server
As per [[User:echarlie|echarlie]], "check rdns. if there isn't an entry, and it's in ece's allocated block, we can use it."
== Service Importance ==
'''Note''': This secionsection's PoV does '''not''' taking into account the current state of service. Instead, it assumes services are being installed to a new infrastructure.
=== Urgent Essential ===
==== Bare Metal ====
* Routing (joey)
* DNS (joey)
* NAS Firewall (cyberdeliajoey)* oVirt hosted-engine (crash and burn)** oVirt requires DNS & NAS* Monitoring (crashandburn)** crashandburn.vtluug.org "new" dell 2900 - also oVirt dashboard** oVirt mostly takes care of this for us*** See https://ovirt.org/blog/2017/12/ovirtdirtycow, dell 2900 -metricscyberdelia, r310 -storeshellshock)** Prometheus or Nagios if more detailed monitoring is neededLibvirt hosts (meltdown, spectre)
==== VMs ====
* FreeIPA (zerocoolchimera) ==== K8s ====* Sczi proxy Web services (sczi)** For proxying *.vtluug.org because we don't have unlimited v4* vtluug.org Shell (vtluugacidburn)* wiki.vtluug.org (wiki_vtluug)* gobblerpedia.org (wiki_gobblerpedia)* hokieprivacy.org (hokieprivacy)* pSQL (wikidb)** For storing wiki.vtluug.org & gobblerpedia.org
=== Very Important ===
==== Bare Metal ====
* VPS system (crashandburn)via Libvirt
** Somewhat automated system where a user is given a VM
** Possibly is really easy with oVirtGive each user an ipv6 address** Possibly do something like <user>.users.vtluug.orgNAS Backup
==== VMs ====
* Shell (acidburn)** Member pages @ vtluug.org/~user* rsyslog elk (theplague)
** Need to research this a bunch
* Mail jitsi.vtluug.org (acidburnjitsi)** Possibly in Docker instead of VM ==== K8s ====Proxy through sczi* Wadsworth emby.vtluug.org (wadsworthemby)* duckhunter9000 (duckhunter)* Proxy through sczi* truncatedcone mirror.vtluug.org (truncatedconemirror)* multimediamanv2 syncthing discovery server (multimediamansync)** Produces /files/irc-vtluug.org
=== Important ===
==== VMs ====
* Tahoe-LAFS (crashoverride)
* telnet BBS
** How tf do these things work
* wargame.vtluug.org (wargame)
* Archive Team Warrior
* map.vtluug.org (map)
=== Other things to consider ===
* diaspora*
* finger (kerberos-based)
* talkd
== Migration ==
=== VTLUUG Site ===
* Migrate to docker === VTLUUG wiki ===* Backup content* Migrate to dockerSetup on sczi via the web ansible role
=== VTLUUG & Gobblerpedia wiki ===* Backup contentusing dumpBackup.xml script* Migrate Setup on sczi via the web ansible role* Restore content to dockernew wiki
=== Wadsworth/phenny ===
* Backup db (for .in)Use irc3 module instead* Migrate to dockerSetup on acidburn via the small-services ansible role
=== VTBash ===
* Migrate to dockerSetup on sczi via the web ansible role
=== Hokieprivacy ===
* Migrate to dockerSetup on sczi via the web ansible role
=== Linx ===
* Move files to NAS* Migrate to dockerSetup on sczi via the web ansible role
=== Acidburn ===
* Migrate homedirs to dirtycow NAS* Currently have a ton of users - most Implement background tmux irc systemd service (or just tell people don't to use it anymorecrontabs @reboot (sounds like u got a problem w/ systemd)) === User Accounts ===** Have people reSetup on chimera via freeipa-register with FreeIPAserver ansible role* Implement background tmux irc systemd serviceImport LDAP accounts to freeipa
=== /tank ===
* Backup then clean upMove main stuff to dirtycow** Either to tardis or Clean up a temporary NASbit
== Issues with current services ==
=== Gobblerpedia ===
* Lots of out of dat date information* Building templates(populate automatically from database)
=== Wadsworth/phenny ===
=== Hokieprivacy ===
* Mobile formatting is fucked, at least for FF on Android-- someone should look into the hugo templates and fix
* Out of date
=== vtluug.org/files ===
* Need easy way fo non-root to add stuff here
=== vtluug.org/users/~$USERNAME ===
* should document for users
* maybe support dynamic server-side content (probably not; use js)
=== mail ===
* Train spamassassin(use corpus)
* Sieve doesn't seem to work
=== gopherspace ===
* who tf uses gopher(fwiw, gopher was 90% of the goal of project bringing sexy back)* legacy IP only, b/c pygopherd is shite
=== TOR services ===