Difference between revisions of "Network/Trusted LAN"

From Makers Local 256
Jump to: navigation, search
m (Hfuller moved page Network/Wired to Network/Trusted LAN: It's not just for wired anymore!)
(Yeah I'll just start over with this one)
Line 1: Line 1:
= Architecture =
+
This is the main LAN at the shop and it's what the makers will use to connect. This network is able to talk to all the workstations and servers on the network so ''only members should be able to use this'' (this isn't a rule but it's an important guideline).
  
==Goals==
+
== Logical ==
# Facilitate members' access to information easily for the member
+
This IP space is 10.56.1.0/24 (10.56.1.*).
# Keep maintenance simple
+
{| class="wikitable sortable"
# Promote collaboration between members
+
|-
# Prevent abuse of the network that would interfere with the above and any 3rd party legal agreements
+
! IP !! Hostname !! Description
 +
|-
 +
| 10.56.1.1 || router || Default router for machines in this LAN
 +
|-
 +
| 10.56.1.2 || officecam || Office webcam
 +
|-
 +
| 10.56.1.3 || webcam2 || There is nothing actually here - pretty sure this is a historical reservation
 +
|-
 +
| 10.56.1.4 || StragesCam || Pretty sure this is the webcam that points at the garage door from the second floor
 +
|-
 +
| 10.56.1.5 || roma || Another one I am fairly certain is only historical
 +
|-
 +
| 10.56.1.6 || optra1200 || Yet another historical reservation
 +
|-
 +
| 10.56.1.10 || ap || The UBNT AP located in the office
 +
|-
 +
| 10.56.1.11 || ipcamera || The camera pointing at the front door...?
 +
|-
 +
| 10.56.1.13 || Office || The "backflipped" laptop on the office wall by the big window.
 +
|-
 +
| 10.56.1.18 || casca || Coin dispenser
 +
|-
 +
| 10.56.1.251 || sign || The Digium Asterisk Appliance attached to the sign, alert light, and camera on top of member storage
 +
|}
  
==Logical Map==
+
== Physical ==
Last Updated: [[User:Jimshoe|Jimshoe]] ([[User talk:Jimshoe|talk]]) 10:05, 14 November 2013 (CST)
+
Just about any port you plug into at the shop will put you on this network (probably). Wirelessly, this network is available as the "Makers Local 256" ESSID, which is WPA2 encrypted.
<graphviz caption='Logical Map' alt='Logical Map' format='png'>
+
graph LogicalMap {
+
  graph [rankdir=TB]
+
  node [shape="box"]
+
  { node [shape="oval"]
+
      "The Internet" "wired clients" "wireless clients" "vpn clients"
+
  }
+
  "The Internet" -- gateway_eth0
+
  subgraph cluster_gateway {
+
      label = "Gateway/Zabbix\n10.56.0.1"
+
      URL = "Network/Gateway"
+
      gateway_eth0 [label="eth0\n24.96.165.230"]
+
      gateway_eth1 [label="eth1\n10.56.0.1"]
+
      gateway_eth2 [label="eth2\n10.56.1.1"]
+
      gateway_eth3 [label="eth3\n10.56.2.1"]
+
      gateway_tun0 [label="tun0\n10.56.3.1"]
+
  }
+
  gateway_eth2 -- "wired clients"
+
  gateway_eth3 -- "wireless clients"
+
  gateway_tun0 -- "vpn clients"
+
 
+
  subgraph cluster_kratos {
+
      label = "VM Host"
+
      URL = "Network/Kratos"
+
      kratos_eth0 [shape="box", label="eth0\n10.56.0.2"]
+
  }
+
  gateway_eth1 -- kratos_eth0
+
 
+
  subgraph cluster_web {
+
      label = "Web"
+
      URL = "Network/Web"
+
      web_eth0 [shape="box", label="eth0\n10.56.0.3"]
+
  }
+
  gateway_eth1 -- web_eth0
+
 
+
  subgraph cluster_mail {
+
      label = "Mail"
+
      URL = "Network/Mail"
+
      mail_eth0 [shape="box", label="eth0\n10.56.0.4"]
+
  }
+
  gateway_eth1 -- mail_eth0
+
 
+
  subgraph cluster_backup {
+
      label = "Backup"
+
      URL = "Network/Backup"
+
      backup_eth0 [shape="box", label="eth0\n10.56.0.7"]
+
  }
+
  gateway_eth1 -- backup_eth0
+
 
+
  subgraph cluster_zimbra {
+
      label = "Zimbra"
+
      URL = "Network/Zimbra"
+
      zimbra_eth0 [shape="box", label="eth0\n10.56.0.8"]
+
  }
+
  gateway_eth1 -- zimbra_eth0
+
 
+
  subgraph cluster_asterisk {
+
      label = "Asterisk"
+
      URL = "Network/Asterisk"
+
      asterisk_eth0 [shape="box", label="eth0\n10.56.0.9"]
+
  }
+
  gateway_eth1 -- asterisk_eth0
+
 
+
  subgraph cluster_lobby_webcam {
+
      label = "Lobby Cam"
+
      lcam_eth0 [shape="box", label="10.56.1.2"]
+
  }
+
  gateway_eth2 -- lcam_eth0
+
 
+
  subgraph cluster_fdoor_webcam {
+
      label = "FDoor Cam"
+
      fcam_eth0 [shape="box", label="10.56.1.4"]
+
  }
+
  gateway_eth2 -- fcam_eth0
+
 
+
  subgraph cluster_Door {
+
      label = "Door"
+
      URL = "USB_Auth"
+
      door_eth0 [shape="box", label="10.56.1.5"]
+
  }
+
  gateway_eth2 -- door_eth0
+
 
+
  subgraph cluster_optra {
+
      label = "Printer"
+
      URL = "Make_Shop_Printer"
+
      optra_eth0 [shape="box", label="10.56.1.6"]
+
  }
+
  gateway_eth2 -- optra_eth0
+
 
+
  subgraph cluster_Change {
+
      label = "Change Machine"
+
      URL = "Cash-Caching_Automaton"
+
      change_eth0 [shape="box", label="10.56.1.51"]
+
  }
+
  gateway_eth2 -- change_eth0
+
 
+
  subgraph cluster_cam2 {
+
      label = "Cam 2 Machine"
+
      URL = "Cam 2 Machine"
+
      cam2_eth0 [shape="box", label="10.56.1.251"]
+
  }
+
  gateway_eth2 -- cam2_eth0
+
}
+
 
+
</graphviz>
+
 
+
==Physical Map==
+
<graphviz caption='Physical Map' alt='Physical Map' format='png'>
+
graph PhysicalMap {
+
        graph [rankdir = "LR"];
+
 
+
        switch    [shape=box, label="Cisco Switch 2950XL"];
+
        xenhost    [shape=box, label="Whitebox xen host"];
+
        fon        [shape=box, label="La Fonera AP"];
+
        modem      [shape=box, label="Comcast Cable Modem"];
+
        library    [shape=box, label="Library"];
+
        webcambox  [shape=box, label="Webcam box"];
+
        roma      [shape=box, label="Door laptop"];
+
        webcam    [shape=box, label="Linksys Webcam"];
+
        cisco      [shape=box, label="Cisco 2950"];
+
        aa50      [shape=box, label="Asterisk Appliance 50"];
+
        optracolor [shape=box, label="Lexmark Optracolor 1200"];
+
 
+
        switch -- xenhost    [label="port 1"];
+
        switch -- fon        [label="port 2"];
+
        switch -- modem      [label="port 3"];
+
        switch -- library    [label="port 4"];
+
        switch -- webcambox  [label="port 5"];
+
        switch -- roma      [label="port 6"];
+
        switch -- webcam    [label="port 7"];
+
        switch -- cisco      [label="port 8"];
+
        switch -- aa50      [label="port 9"];
+
        switch -- optracolor [label="port 10"];
+
}
+
</graphviz>
+
 
+
==Troubleshooting==
+
<graphviz caption='Troubleshooting' alt='Troubleshooting' format='png'>
+
digraph NetworkTroubleshooting {
+
overlap=false
+
label="Internet Troubleshooting Flowchart\nPrinted on 2010-03-17"
+
fontsize=14;
+
 
+
node1 [shape=box,      label="The wifi is broken."];
+
node2 [shape=diamond,  label="Does the website work\nexternally?"];
+
node3 [shape=diamond,  label="Is the xen host on?"];
+
node4 [shape=box,      label="Unplug the AP for 30 seconds."];
+
node5 [shape=box,       label="Disconnect the cable modem's\nPSU from the wall for 2 minutes."];
+
node6 [shape=box,      label="Notify Matt(brimstone)."];
+
node7 [shape=box,       label="Turn on the xen host."];
+
node1->node2;
+
node2->node3 [ label = "no" ];
+
node2->node4 [ label = "yes" ];
+
node3->node5 [ label = "yes" ];
+
node3->node7 [ label = "no" ];
+
node4->node6 [ label = "still broken" ];
+
node5->node6 [ label = "still broken" ];
+
node7->node6 [ label = "still broken" ];
+
 
+
}
+
</graphviz>
+

Revision as of 20:09, 10 May 2014

This is the main LAN at the shop and it's what the makers will use to connect. This network is able to talk to all the workstations and servers on the network so only members should be able to use this (this isn't a rule but it's an important guideline).

Logical

This IP space is 10.56.1.0/24 (10.56.1.*).

IP Hostname Description
10.56.1.1 router Default router for machines in this LAN
10.56.1.2 officecam Office webcam
10.56.1.3 webcam2 There is nothing actually here - pretty sure this is a historical reservation
10.56.1.4 StragesCam Pretty sure this is the webcam that points at the garage door from the second floor
10.56.1.5 roma Another one I am fairly certain is only historical
10.56.1.6 optra1200 Yet another historical reservation
10.56.1.10 ap The UBNT AP located in the office
10.56.1.11 ipcamera The camera pointing at the front door...?
10.56.1.13 Office The "backflipped" laptop on the office wall by the big window.
10.56.1.18 casca Coin dispenser
10.56.1.251 sign The Digium Asterisk Appliance attached to the sign, alert light, and camera on top of member storage

Physical

Just about any port you plug into at the shop will put you on this network (probably). Wirelessly, this network is available as the "Makers Local 256" ESSID, which is WPA2 encrypted.

Retrieved from "https://256.makerslocal.org/wiki/index.php?title=Network/Trusted_LAN&oldid=17629"