|
|
(113 intermediate revisions by 4 users not shown) |
Line 1: |
Line 1: |
| {{TOC right}} | | {{info|Information about the space's network has moved to the [[Network]] page.|date=December 2018}} |
| The hackspace network and servers are look after by the [[Group:Network_and_Servers|Network and Servers group]]
| | This category is for pages relating to the Hackspace [[network]]. For general network related pages see [[:Category:Network (other)]]. |
| =Network Layout=
| |
| This page will show the network topology & proposals for network expansion / modification.<br/>
| |
| | |
| [[File:Hackspace_network_26-02.jpg|800px|thumb|none|alt=A |Hackspace Network]]
| |
| | |
| External IP address 79.77.188.139.
| |
| | |
| External domain address [http://lspace.nottinghack.org.uk lspace.nottinghack.org.uk] (DNS record looked after by [[User:Lwk|'RepRap' Matt]])<br/>
| |
| | |
| == Static & Reserved IP's ==
| |
| There are a few VLANs:
| |
| | |
| {| class="wikitable"
| |
| |-
| |
| ! VLAN
| |
| ! Network
| |
| ! Description
| |
| |-
| |
| | 1 || 192.168.1.0/24 || Default
| |
| |-
| |
| | 2 || 10.0.0.0/24 || Main Hackspace network
| |
| |-
| |
| | 3 || 192.168.0.0/24 || [[HackSpace_Instrumentation|Instrumentation projects]]
| |
| |-
| |
| | 4 || - || Able / ADSL Modem (PPPoE)
| |
| |-
| |
| | 5 || 192.168.0.0/24 || Instrumentation ''test'' (Rommie)
| |
| |}
| |
| | |
| The following ranges are reserved for there given purpose:
| |
| | |
| {| class="wikitable"
| |
| |-
| |
| ! Start
| |
| ! End
| |
| ! Purpose
| |
| |-
| |
| | 10.0.0.1 || 10.0.0.1 || [[#Kryten|kryten]] The Main Router
| |
| |-
| |
| | 10.0.0.2 || 10.0.0.79 || Static things
| |
| |-
| |
| | 10.0.0.80 || 10.0.0.89 || openVPN DHCP pool
| |
| |-
| |
| | 10.0.0.90 || 10.0.0.99 || Static Printers
| |
| |-
| |
| | 10.0.0.100 || 10.0.0.254 || DHCP Range
| |
| |-
| |
| | 10.0.0.255 || 10.0.0.255 || Broadcast
| |
| |-
| |
| | 192.168.0.1 || 192.168.0.100 || Static [[HackSpace_Instrumentation|HackSpace Instrumentation]]
| |
| |}
| |
| | |
| These are assigned via DHCP/MAC using [[#Kryten|Kryten]] or set statically on the device
| |
| | |
| {| class="wikitable"
| |
| |-
| |
| ! VLAN
| |
| ! IP
| |
| ! DNS Name
| |
| ! Notes
| |
| |-
| |
| | 2 <br /> 4 || 10.0.0.1 || [[#Kryten|Kryten]] || pfSense router on [[Collective]]
| |
| |-
| |
| | 1<br />2 <br /> 3 || 192.168.1.1<br />10.0.0.2 <br /> 192.168.0.1 || [[Holly|HollyVM]] || Our always on server - VM running under [[Collective]]
| |
| |-
| |
| | 2 || 10.0.0.3 || [[Joshua|Joshua]] || Our "playful" games server
| |
| |-
| |
| | 2 || 10.0.0.4 || [[JARVIS]] || Sandbox Debian VM open for all members
| |
| |-
| |
| | 2 || 10.0.0.5 || [[Rommie]] || HMS Development VM
| |
| |-
| |
| | 2 || <s>10.0.0.6</s> || <s>Workshop</s> || <s>Workshop Wifi AP (channel 11)</s>
| |
| |-
| |
| | <s>2</s> || <s>10.0.0.7</s> || <s>Zyxel</s> || <s>Additional Wifi AP (channel 1)</s>
| |
| |-
| |
| | 2 || 10.0.0.10 || [[Collective]] || ESXi Management Server
| |
| |-
| |
| | 2 || 10.0.0.11 || [[Collective#vCMA|vCMA]] || VMware vCenter Mobile Access runnning under [[Collective]]
| |
| |-
| |
| | || <s> 10.0.0.12</s> || <s> [[Holly|HollyVM]]</s> || <s>Holly VM running under [[Collective]] </s>
| |
| |-
| |
| | 2 <br /> 3 || 10.0.0.12 <br />192.168.0.24 || [[Queeg]] || Hollys backup
| |
| |-
| |
| | 1<br />2 || 192.168.1.6<br />10.0.0.15 || [[#Gibson|Gibson]] || Wifi RADIUS Server
| |
| |-
| |
| | 2 || 10.0.0.16 || [[Intersect]] || VM on [[Collective]] running Ubuntu 14.04 LTS x64
| |
| |-
| |
| | 2 || 10.0.0.17 || unimatrix || Xen test box
| |
| |-
| |
| | <s>2</s> || <s>10.0.0.21</s> || <s>[[YooCNC|yoocnc]]</s> || <s>YooCNC desktop</s>
| |
| |-
| |
| | 2 || 10.0.0.22 || [[Quorra]] || Quorra
| |
| |-
| |
| | 2 || 10.0.0.23 || Kiosk || Kiosk PC (under 50" screen in blueroom). WIP.
| |
| |-
| |
| | 2 || 10.0.0.24 || [[Bishop]] || Laptop for 3D printer
| |
| |-
| |
| | 2 || 10.0.0.25 || BarBot || Pi in [[Project:BarBot]]
| |
| |-
| |
| | 2 || 10.0.0.26 || Asterisk || Asterisk VM on [[collective]]
| |
| |-
| |
| | 2 || 10.0.0.27 || pbx || Asterisk on bare metal
| |
| |-
| |
| | 2 || 10.0.0.28 || payphone || RaspberryPi in the Payphone
| |
| |-
| |
| | 2 || 10.0.0.40 || [[Webcams|studiocam]] || Pan/Tilt Studio webcam
| |
| |-
| |
| | 3 || 192.168.0.10 || [[Gatekeeper|gatekeeper]] || Access Control Arduino
| |
| |-
| |
| | 3 || 192.168.0.11 || [[LED_Matrix|MatrixMQTT]] || BIG LED Matrix Display Arduino
| |
| |-
| |
| | 3 || 192.168.0.12 || [[Vending_Machine|Vending Machine]] || RFID cashless payment nanode
| |
| |-
| |
| | 3 || 192.168.0.13 || [[Mini-matrix|Mini-matrix]] || Blue room mini-matrix display nanode
| |
| |-
| |
| | <s>3</s> || <s>''192.168.0.14''</s> || <s>[[Wall of Faces]]</s> || <s>''Wall of members faces''</s>
| |
| |-
| |
| | 3 || ''192.168.0.15'' || [[Lighting Automation|Studio Controller]] || ''Lighting Controller (Studio)''
| |
| |-
| |
| | 3 || ''192.168.0.16'' || [[Lighting Automation|Workshop Controller]] || ''Lighting Controller (Workshop)''
| |
| |-
| |
| | 3 || ''192.168.0.17'' || [[Lighting Automation|Studio Switch Panel]] || ''Lighting Switch's (Studio)''
| |
| |-
| |
| | 3 || ''192.168.0.18'' || [[Lighting Automation|Workshop Switch Panel]] || ''Lighting Switch's (Workshop)''
| |
| |-
| |
| | 3 || 192.168.0.19 || WorkshopMQTT || Workshop Bell and Temp Node
| |
| |-
| |
| | 3 || 192.168.0.21 || [[NoteAcceptor]] || Note acceptor for [[Snackspace]] / [[Vending_Machine|Vending Machine]] payments
| |
| |-
| |
| | 3 || 192.168.0.22 || [[Laser_cutter|laser]] ||[[Nhtools|Laser RFID]]
| |
| |-
| |
| | 3 || 192.168.0.23 || [[3D Printer]] ||[[Nhtools|3D Printer RFID]]
| |
| |-
| |
| | 2 || 10.0.0.90 || [[#Marvin|marvin]] || A4 Laser Printer
| |
| |-
| |
| | 2 ||10.0.0.91 || [[#Clank|Clank]] || A3 Laser Printer
| |
| |-
| |
| | 2 || <s>10.0.0.92</s> || <s>[[#B4|B4]]</s> || <s>A4 InkJet with Scanner</s>
| |
| |-
| |
| | 2 || 10.0.0.93 || Vinyl || Vinyl
| |
| |-
| |
| | 2 || 10.0.0.94 || Rosey || Epson WF-7610DWF
| |
| |-
| |
| | 2 || 10.0.0.95 || Bender || HP5550
| |
| |-
| |
| | 1 || 192.168.1.2 || ws-switch|| Workshop switch
| |
| |-
| |
| | 1 || 192.168.1.3 || Lore || Workshop Wifi AP (channel 11)
| |
| |-
| |
| | 1 || 192.168.1.4 || st-switch || Studio/BlueRoom switch
| |
| |-
| |
| | 1 || 192.168.1.5 || Data || Studio/BlueRoom Wifi AP (channel 6)
| |
| |-
| |
| | 1 || 192.168.1.7 || studio-gbit || Dell PowerConnect 2724 (24x gbit)
| |
| |}(''coming soon...'') <br />
| |
| | |
| == External Port Routing == | |
| {| class="wikitable"
| |
| |-
| |
| ! Service
| |
| ! External Port
| |
| ! Internal Port
| |
| ! Internal IP
| |
| ! Notes
| |
| |-
| |
| | HTTP || 80 || 80 || 10.0.0.2 || Webserver on [[Holly]]
| |
| | |
| |-
| |
| | HTTPS || 443 || 443 || 10.0.0.2 || HMS SSL Webserver on [[Holly]]
| |
| |-
| |
| | SSH || 1921 || 22 || 10.0.0.2 || SSH on [[Holly]]
| |
| |-
| |
| | SSH || 1922 || 22 || 10.0.0.12 || SSH on [[Holly#HollyVM|HollyVM]]
| |
| |-
| |
| | SSH || 3000 || 22 || 10.0.0.4 || SSH on [[JARVIS]]
| |
| |-
| |
| | SSH || 3045 || 22 || 10.0.0.5 || SSH on [[Rommie]]
| |
| |-
| |
| | RTP || 10000-20000 || 10000-20000 || 10.0.0.27 || Asterisk/RTP on PBX
| |
| |-
| |
| | SIP || 5060 || 5060 || 10.0.0.27 || Asterisk/SIP on PBX
| |
| |}
| |
| | |
| == Switch port assignments ==
| |
| === Netgear Prosafe FS728x ===
| |
| The switch in the members storage room is a Netgear FS728TP (24x 100mbit with [http://en.wikipedia.org/wiki/Power_over_Ethernet POE] + 4x gbit ports), the switch in the workshop is FS728TS (same, but with no POE). As far as possible, both switches should have identical configuration; I.e. if the studio switch fails, the workshop switch should be a drop in replacement.
| |
| {| class="wikitable"
| |
| |-
| |
| ! Port
| |
| ! VLAN
| |
| ! Comments
| |
| |-
| |
| | e1-e6 || 3 || [[HackSpace_Instrumentation|Instrumentation projects]]
| |
| |-
| |
| | e7 || 4 || Able (VDSL Modem)
| |
| |-
| |
| | e8|| 1,2 || Data/Lore (WAP)
| |
| |-
| |
| | e9-e10 || 3 || [[HackSpace_Instrumentation|Instrumentation projects]]
| |
| |-
| |
| | e11 || all || [[Queeg]]
| |
| |-
| |
| | e12 || - || ''Reserved''
| |
| |-
| |
| | e13+ || 2 || Main hackspace network
| |
| |-
| |
| | g1 || all || [[Collective]]
| |
| |-
| |
| | g2 || 2 || Gigabit switch on Blue room table
| |
| |-
| |
| | g3 || 1,2,3,5 || Dell PowerConnect 2724
| |
| |-
| |
| | g4 || all || ''other'' switch (FS728TP or FS728TS)
| |
| |}
| |
| | |
| === Dell PowerConnect 2724 ===
| |
| The Dell switch is in the members storage room, just above collective. It is connected to the Netgear FS728TP and to most of the Studio network sockets.
| |
| {| class="wikitable"
| |
| |-
| |
| ! Port
| |
| ! VLAN
| |
| ! Comments
| |
| |-
| |
| | e1-e23 || 2 || Main hackspace network
| |
| |-
| |
| | e24 || 1,2,3,5 || Netgear FS728TP
| |
| |}
| |
| | |
| == Server Naming ==
| |
| See [[Network/Naming|here]] for our naming convention
| |
| | |
| = Network Devices=
| |
| === Able ===
| |
| Able is Kryten's brother the BT Openreach VDSL modem that talks to the outside world. <br/>
| |
| | |
| === [http://en.wikipedia.org/wiki/Kryten Kryten] ===
| |
| | |
| Kryten is VM on [[Collective]] running [http://www.pfsense.org pfSense], it handles all our DHCP and routing from the external world.<br/>
| |
| It is connected to VLAN 4 for access to Able, and 2 for the main hackspace network.
| |
| | |
| The Nottinghack VLAN has access to local resources - e.g. a samba file-share on [[JARVIS]], a future local dropbox server for projects & collaborations, a backup of all Web / Wiki files (to allow a remote restore in the event of moving hosts / outage of services) and anything else we don't want to be web facing.<br/>
| |
| | |
| The VPN (when enabled) would allow remote management of the VLANS, which could come in handy in the event of issues with the client WiFi access point.<br/>
| |
| | |
| Router management username & password for Authorised members only. If there something you need changing ask on the google group or speak to [[User:Lwk|'RepRap' Matt]] or [[User:Daniel|Daniel]] directly<br/>
| |
| | |
| Usual rules apply, as to any tool - if you don't know how to use it / don't do anything :)
| |
| | |
| ====OpenVPN====
| |
| | |
| Kryten runs our openVPN server for access to the hackspace network from the outside world.<br/>
| |
| | |
| For more details see the [[Network/VPN|VPN]] page | |
| | |
| === WiFi ===
| |
| There are three WiFi networks:
| |
| | |
| ==== HSNOTTS ====
| |
| WiFi for Hackspace SSID: '''HSNOTTS''' passcode uses WPA2 protocol AES encryption. Members only, passcode on request, changes to the passcode will be emailed to members only.<br/>
| |
| | |
| ==== HSNOTTS_GUEST ====
| |
| WiFi for guests is setup as '''HSNOTTS_GUEST''' and passcode can be provided and this will (possibly at some point) run on a separate VLAN. <br/>
| |
| | |
| ==== [https://spacefed.net/wiki/index.php/Spacenet spacenet] ====
| |
| Cross-hackspace wireless network, using WPA2 Enterprise. Login using: <br />
| |
| Username: ''<[[HMS]]-username>''@nottinghack.org.uk <br />
| |
| Password: ''<[[HMS]]-password>'' <br />
| |
| | |
| For more details, see [[spacenet]].
| |
| | |
| =Servers=
| |
| ===[[Holly]]===
| |
| See [[Holly]]
| |
| ===[[Collective]]===
| |
| See [[Collective]]
| |
| ===[[Andromeda]]===
| |
| See [[Andromeda]]
| |
| | |
| === [http://en.wikipedia.org/wiki/WOPR Joshua] ===
| |
| Joshua loves to play games, Tic Tac Toe, Chess, Global Thermonuclear War... all the family favourites.
| |
| We've co-opted him into running Quake II, Open Arena, Unreal Tournament & Counter Strike 1.5. <br/>
| |
| The aim is to have a games server running games suitable for clients running low powered netbooks & laptops. This allows us to run LAN parties & have more people join in, without having to bring gaming rigs from home. Also QII & Open Arena have open source install paths available, with Unreal & Counter Strike available at low cost.<br/>
| |
| Joshua is running Windows XP Pro on a 1GHz PIII with 512MB RAM & a RIVA TNT2 graphics card. <br/>
| |
| Impressive I know.<br/>
| |
| | |
| There are 2 user accounts -<br/>
| |
| "David" - not password protected, but limited access - suitable for web browsing / printing etc.<br/>
| |
| "Falken" - admin account - speak to [[User:Tony_S|Tony_S]] if you need the password.<br/>
| |
| | |
| =Genral Use PC=
| |
| ===[[Quorra]]===
| |
| A powerful workstation with dual heads, Quorra is available for all members to use.
| |
| | |
| ===[[WOPR]]===
| |
| Another general-use PC in the blue room, by the window
| |
| | |
| =Printers=
| |
| === [http://en.wikipedia.org/wiki/Marvin_the_Paranoid_Android Marvin] ===
| |
| Marvin the Paranoid Android
| |
| <blockquote>According to Marvin, "The first ten million years were the worst, and the second ten million years, they were the worst too. The third ten million I didn't enjoy at all. After that I went into a bit of a decline." Apparently, the best conversation he'd had was over 40 million years ago, and that was with a coffee machine.</blockquote>
| |
| | |
| The HP Laserjet 4 Plus is set up on 10.0.0.90 as marvin.<br/>
| |
| We have a few spare toners but donations towards paper usage are more than welcome.
| |
| | |
| === Clank ===
| |
| The HP Laserjet 5Si is set up on 10.0.0.91 as clank.<br/>
| |
| The printer feeds A4 paper from tray 2 and A3 paper from tray 3.<br/>
| |
| A duplexer is installed enabling double-sided printing.<br/>
| |
| | |
| <s>
| |
| === B4 ===
| |
| </s>
| |
| Replaced by [[Rosey]]<br />
| |
| <s>
| |
| The Brother MFC-5460CN is set up on 10.0.0.92 as B4.<br/>
| |
| Printing and copying in colour, and scanning via "Control Center 3" software on [[Quorra]] when running WindowsXP, or Xsane if running Linux.<br />
| |
| | |
| The scanner on B4 is installed and shared on [[JARVIS]], (see [[scanning]]) and can be used from other Linux machines by adding '<code>Jarvis</code>' to the '<code>## saned hosts</code>' section of <code>/etc/sane.d/net.conf</code> (see [https://help.ubuntu.com/community/sane.d%20tutorial#Step_1:_Set_up_your_Linux_clients_to_use_this_shared_scanner Ubuntu documentation] for more details).
| |
| </s>
| |
| === Plotter ===
| |
| HP DesignJet 600
| |
| Not networked, but connected via serial or parallel interface to [[quorra]]
| |
| | |
| =Websites=
| |
| | |
| === [http://nottinghack.org.uk Nottinghack.org.uk] ===
| |
| | |
| The main Nottinghack websites are run form [[Andromeda]].
| |
| | |
| This hosts the [http://nottinghack.org.uk Wordpress blog], [http://wiki.nottinghack.org.uk this wiki], [http://planet.nottinghack.org.uk the Nottinghack Planet]
| |
| | |
| The [[Twitterbot]] for @HSNOTTS is also hosted on on this server.
| |
| | |
| ===[http://lspace.nottinghack.org.uk lspace.nottinghack.org.uk]===
| |
| | |
| Hosted locally at the space on [[Holly]] <br/>
| |
| | |
| Includes:
| |
| * [https://lspace.nottinghack.org.uk/hms/ Hackspace Management System] - see [[HMS]]
| |
| * [http://lspace.nottinghack.org.uk/addr_graphs/ Graph] showing connected network device count
| |
| | |
| DNS record looked after by [[User:Lwk|'RepRap' Matt]]
| |
| | |
| ===[http://cacti.nottinghack.org.uk/graph_view.php cacti.nottinghack.org.uk]===
| |
| | |
| Also hosted locally on [[Holly]] this provides graphing of various stats and info (mostly temperature graphs) from the hackspace instrumentation
| |
| | |
| ===http://hollyvm/===
| |
| | |
| Our intranet, only accessible from the hackspace network
| |
| | |
| = HackSpace Instrumentation =
| |
| The Network and [[Holly]] provide the backbone to our [[HackSpace Instrumentation]] projects.
| |
| | |
| =Other Info=
| |
| == ADSL Connection Reboot Procedure ==
| |
| If for some reason the internet connection is not responding!<br/>
| |
| Then Able is located on the Internet shelf on the Members Storage room<br/>
| |
| On Able check if the 'DSL' and 'Internet' lights are green<br/>
| |
| If not on then reboot Able by cycling power using the power switch on the back,<br/>
| |
| If two minutes after doing this the 'DSL' light does not come back on then you need to get in touch with either [[User:Lwk|'RepRap' Matt]] or [[User:Daniel|Daniel]] who can check on Kryten<br/>
| |
| If there's still no look, it could well be an outside issue with talktalk.
| |
| | |
| == Extra Equipment ==
| |
| See [[Network/Equipment|here]] for a list of our other network gear
| |
|
| |
|
| [[Category:Infrastructure]] | | [[Category:Infrastructure]] |