398
edits
Changes
no edit summary
'''Note''': This is an effort toward the end of Fall 2017 to get new hardware, determining if we can use old hardware for anything, bring many vtluug services back to life plus add new services, fix major problems relating to the page does '''not''' reflect current infrastructure, make managing the current infrastructure easier, and to provide enough documentation so that anybody can have a very good understanding . It was for planning purposes. As of how 2019 everything works without having has been migrated to ask the officers about every little everything. This goes beyond documentating what we have (aka the wiki)new infra, instead provide a sort of guide that provides an overview on how to run everything. Yes, we realize this is a massive task. Timeline TBDas explained in [[Infrastructure]].
<!--TODO talk about doing stuff from the project list-->
== Getting new hardware ==
[[Infrastructure:Cyberdelia|Cyberdelia]] is the only connected physical machine right now, besides [[Infrastructure:Temp88191|our router]]. See [[Infrastructure 2017]]. We are planning to request funding from the SBB for new infrastructure as early as possible Spring 2018.
We are still working on exactly what to ask for, but here are some desirable things:
{| class='wikitable' id='sortMe'
!Priority
|}
Ideally we will get 2, so $1,200 not including . A much more detailed price analysis will be done for the SBB.
\o/ We got $1300 to get 2 R620s!!
== Hardware design/setup Configuration ====== Hardware we will definitely have:====
* temp88191
* [[Infrastructure:Cyberdelia|Cyberdelia]]
* [[Infrastructure:Wood|Wood]]
* 2x SGI (Phantomphreak/Joey)
* 2x R620s (Meltdown/Spectre)
=== Assuming we do get SBB funding =Configuration ====* Router/DNS Server: joey (sry temp88191 is too old)* NAS: [[Infrastructure:Cyberdelia|Cyberdelia]] due to its HDD capacityAdditional hardware* Libvirt hosts: Meltdown & Spectre* HPC: [[Infrastructure: 2x R620Wood|Wood]] due to its 4U height that can easily fit gpus
=== If we don't get SBB funding =Networking ==We probably need to get some additional RAM & CPUs See [[Infrastructure:Network]] for Wood in this case in order a mostly up to do the clusterdate networking layout.
==== Public IPv4 addresses ====
{| class='wikitable' id='sortMe'
!Function
!DNS
!IP
|-
|Router/DNS
|joey.vtluug.org
|128.173.88.191
|-
|One Libvirt Node (out of 2)
|meltdown.vtluug.org
|128.173.89.246
|-
|Web/Proxy server
|sczi.vtluug.org
|128.173.88.78
|-
|Shell Server
|acidburn.vtluug.org
|128.173.89.245
|-
|FreeIPA
|chimera.vtluug.org
|128.173.89.247
|-
|Primary NFS server
|dirtycow.vtluug.org
|128.173.89.244
|-
|Matt's server
|mjh.ece.vt.edu
|128.173.88.104
|-
|}
Services running on each host are covered in the following sections
== Service Importance = Essential ==='''Note''': This section assumes we get ==== Bare Metal ====* Routing (joey)* DNS (joey)* Firewall (joey)* NAS ("new hardware that enables us to do an oVirt or Proxmox cluster" dell 2900 - dirtycow, dell 2900 - cyberdelia, r310 - shellshock)* Libvirt hosts (meltdown, which would require downtime and reorganization of the current services in addition to future planned services.spectre)
=== REQUIRED =VMs ====* FreeIPA (chimera)* [https://github.com/mutantmonkey/foodforus foodforus]Web services (sczi)* Improved homepage using bootstrap and some webshit.Shell (acidburn)
=== VERY IMPORTANT Very Important ======= Bare Metal ====* VPS system via Libvirt** Somewhat automated system where a user is given a VM** Give each user an ipv6 address* NAS Backup
=== IMPORTANT =VMs ====* elk (theplague)** Need to research this a bunch* jitsi.vtluug.org (jitsi)** Proxy through sczi* emby.vtluug.org (emby)** Proxy through sczi* mirror.vtluug.org (mirror)* syncthing discovery server (sync)
=== Important ======= VMs ====* IPv6 support for [http://Tahoe-LAFS (crashoverride)* telnet BBS** How tf do these things work* wargame.vtluug.org:70 gopher://(wargame)* Archive Team Warrior* map.vtluug.org](map)
=== Other things to consider ===
* diaspora*
* finger (kerberos-based)
* talkd
== Migration ==
=== VTLUUG Site ===
* Setup on sczi via the web ansible role
=== VTLUUG & Gobblerpedia wiki ===
* Backup content using dumpBackup.xml script
* Setup on sczi via the web ansible role
* Restore content to new wiki
=== gopherspace VTBash ===* server doesn't support IPv6* need to actually use /files Setup on itsczi via the web ansible role
=== hokieprivacy Hokieprivacy ===out of date* Setup on sczi via the web ansible role
=== linx Linx ===someone needs to update binary* Setup on sczi via the web ansible role
=== TOR services Acidburn ===linx, hokieprivacy, and the main site * Migrate homedirs to dirtycow NAS* Implement background tmux irc systemd service (hence vtluug.org) can be accessed over tor. advertise these urls or make them more memorable just tell people to use crontabs @reboot (or bothsounds like u got a problem w/ systemd))
=== vtluug.org/files User Accounts ===* need easier way for nonSetup on chimera via freeipa-root server ansible role* Import LDAP accounts to add stuff here???freeipa
=== ldap /tank ===ldap sucks and needs * Move main stuff to die. this is also dirtycow* Clean up a cent6 boxbit
==Issues with current services = mail ===* train spamassassin against a corpus of spam so it filters better* sieve doesn't seem to work at all; fix thatWhen (re)implementing services listed above do the following changes.
=== Most services (LDAP, others) VTLUUG Site ===* Need standard place to put script for organization on physical server We're literally proxying a static github page (aside from a git repovtluug.github.io)** [[Wadsworth]] contains debian SysV init scripts in the ircbot homedir** VTBash contains scripts in [[User:pew|pew]]'s homedir (which echarlie moved Probably should be redesigned to a sane place)** router configs are on github, as are old ldap configs and triggered in rc.localbe slightly more dynamic using jekyll or flask or something
=== VTLUUG wiki ===
* Need meeting script
* Some meetings weren't added Need to category (fixed??)* Lots clean up a lot of out of date old information---should purge or at least clean up* can't delete pages* Templates?
=== Gobblerpedia ===
* Lots of out of date information
* Need Building templates for buildings---currently using bloated wikipedia scripts that don(populate automatically from database) === Wadsworth/phenny ===* Things constantly break, but there't reflect our needss nothing we can really do about this* automagically add data scraped from webpages Migrate to gobblerpediairc3 pythong library for a stable core* can't delete pagesMigrate SysV scripts to systemd unit files
=== VTBash ===
* [https://bash.vtluug.org bash.vtluug.org] is working as of August 2017Old shitty interface converted from python2 to python3** Nothing good seems to already exist, so we probably need to write one from scratch* An issue with the code resulted in Need to merge 2 different old sqlite databases** Causes bug when only 1 quote author is entered, eathis is why they can't be merged === Hokieprivacy =ch of which ==* Mobile formatting is very large fucked -- someone should look into the hugo templates and goodfix* Out of date === Linx ===*Offload storage to NAS* We Binaries need updating* Need to convert these sqlite dbsdo reddit stress test === vtluug.org/files ===* Needs overhaulNeed easy way fo non-root to add stuff here === vtluug.org/users/~$USERNAME ===*should document for users* Shittly ported to python 3 from python 2maybe support dynamic server-side content (probably not; use js) === mail ===*Train spamassassin (use corpus)* word wrap Sieve doesn't happen seem to work === gopherspace ===* who tf uses gopher (feature fwiw, gopher was 90% of the goal of project bringing sexy back)* legacy IP only, b/c pygopherd is shite === TOR services ===linx, hokieprivacy, and the main site (hence vtluug.org) can be accessed over tor. advertise these urls or bug???make them more memorable (or both)
[[Category:VTLUUG:Projects]]
[[Category:Infrastructure:Misc]]