Difference between revisions of "Network/DMZ"
From Makers Local 256
< Network
(Add switches' management IPs to this network) |
(Update box details and purposes) |
||
| Line 18: | Line 18: | ||
| <s>10.56.0.6</s> || <s>fileserver</s> || <s>file share</s> | | <s>10.56.0.6</s> || <s>fileserver</s> || <s>file share</s> | ||
|- | |- | ||
| − | | 10.56.0.7 || backup || | + | | 10.56.0.7 || backup || (old) webcam setup and (old) backup for all of the servers |
|- | |- | ||
| <s>10.56.0.8</s> || <s>zimbra</s> || <s>Used to host our identity management and LDAP</s> | | <s>10.56.0.8</s> || <s>zimbra</s> || <s>Used to host our identity management and LDAP</s> | ||
|- | |- | ||
| − | | 10.56.0.9 || asterisk || VoIP server for phones on the floor and the main phone number | + | | 10.56.0.9 || asterisk || VoIP server for phones on the floor <s>and the main phone number</s> |
|- | |- | ||
| 10.56.0.11 || newldap || The LDAP server that replaced zimbra | | 10.56.0.11 || newldap || The LDAP server that replaced zimbra | ||
| Line 28: | Line 28: | ||
| 10.56.0.12 || dev || [[Network/Services/dev|Software development and testing box]] | | 10.56.0.12 || dev || [[Network/Services/dev|Software development and testing box]] | ||
|- | |- | ||
| − | | 10.56.0.13 || newvpn || [[Network/VPN|Maker VPN]] server | + | | 10.56.0.13 || newvpn || [[Network/VPN|Maker VPN]] server and admin orchestration jump-off point |
|- | |- | ||
| 10.56.0.14 || owncloud || [[Network/Services/ownCloud|ownCloud]] server | | 10.56.0.14 || owncloud || [[Network/Services/ownCloud|ownCloud]] server | ||
| Line 34: | Line 34: | ||
| 10.56.0.15 || owncloud || Reserved for future use | | 10.56.0.15 || owncloud || Reserved for future use | ||
|- | |- | ||
| − | | 10.56.0.16 || reverseproxy || | + | | 10.56.0.16 || reverseproxy || Terminates TLS and proxies for on-site services that should be reachable off-site |
|- | |- | ||
| 10.56.0.17 || newbackup || [[Network/Backups|Borg-based backup]] box | | 10.56.0.17 || newbackup || [[Network/Backups|Borg-based backup]] box | ||
| Line 40: | Line 40: | ||
| 10.56.0.18 || iot || Internet of Things development/bridge VM | | 10.56.0.18 || iot || Internet of Things development/bridge VM | ||
|- | |- | ||
| − | | 10.56.0.19 || zoneminder || | + | | 10.56.0.19 || zoneminder || Webcam host box |
|- | |- | ||
| − | | 10.56.0.20 || vm2 || VM host (physical box) - | + | | 10.56.0.20 || vm2 || VM host (physical box) - Dell PowerEdge without hot-swap drive bays |
|- | |- | ||
| <s>10.56.0.30</s> || <s>vm3</s> || <s>VM host (physical box) - black Switchvox</s> | | <s>10.56.0.30</s> || <s>vm3</s> || <s>VM host (physical box) - black Switchvox</s> | ||
|- | |- | ||
| − | | 10.56.0.40 || vm4 || VM host (physical box) - | + | | 10.56.0.40 || vm4 || VM host (physical box) - Dell PowerEdge with hot-swap drive bays |
|- | |- | ||
| 10.56.0.252 || server-sw || 8-port HP ProCurve switch in the rack | | 10.56.0.252 || server-sw || 8-port HP ProCurve switch in the rack | ||
Revision as of 00:05, 4 April 2018
This is the server network. There is no DHCP; all addresses must be statically set. It isn't really a DMZ as such. I just called it that so we would sound more impressive.
Logical
This IP space is 10.56.0.0/24 (10.56.0.*).
| IP | Hostname | Description |
|---|---|---|
| 10.56.0.1 | router | Default router for machines in this network |
| |
|
|
| 10.56.0.3 | webdev | Testing and development Web server (the real Web server is hosted offsite) |
| 10.56.0.4 | Email (especially the mailing lists) | |
| 10.56.0.5 | liferay | Enterprise portal for improved collaborative cloud synergy |
| |
|
|
| 10.56.0.7 | backup | (old) webcam setup and (old) backup for all of the servers |
| |
|
|
| 10.56.0.9 | asterisk | VoIP server for phones on the floor |
| 10.56.0.11 | newldap | The LDAP server that replaced zimbra |
| 10.56.0.12 | dev | Software development and testing box |
| 10.56.0.13 | newvpn | Maker VPN server and admin orchestration jump-off point |
| 10.56.0.14 | owncloud | ownCloud server |
| 10.56.0.15 | owncloud | Reserved for future use |
| 10.56.0.16 | reverseproxy | Terminates TLS and proxies for on-site services that should be reachable off-site |
| 10.56.0.17 | newbackup | Borg-based backup box |
| 10.56.0.18 | iot | Internet of Things development/bridge VM |
| 10.56.0.19 | zoneminder | Webcam host box |
| 10.56.0.20 | vm2 | VM host (physical box) - Dell PowerEdge without hot-swap drive bays |
| |
|
|
| 10.56.0.40 | vm4 | VM host (physical box) - Dell PowerEdge with hot-swap drive bays |
| 10.56.0.252 | server-sw | 8-port HP ProCurve switch in the rack |
| 10.56.0.253 | loft-sw | 48-port Cisco Catalyst PoE switch mounted vertically on the loft railing |
| 10.56.0.254 | downstairs-sw | 48-port Dell PowerConnect switch mounted vertically below the south office window |
Physical
The thing about this network is, almost everything on it is a VM. The only physical boxes on this network are the VM hosts and the router. As such, it is unlikely that you would see this network anywhere else in the shop. This may change, however; it'd be a good place to put servers.
