update
This commit is contained in:
parent
6b9537a502
commit
6f61b8bc05
|
@ -1,12 +1,6 @@
|
|||
[[Kategorie:Infrastruktur]]
|
||||
|
||||
=Status=
|
||||
|
||||
{{Broken
|
||||
|Reason=Es wurde sich weder um Hosts noch Services noch diesen Wikiartikel gekümmert. '''Wer hat Überblick und räumt auf?'''
|
||||
}}
|
||||
|
||||
=Topologie=
|
||||
== Topologie ==
|
||||
|
||||
==Adressbereiche==
|
||||
;Ethernet:
|
||||
|
@ -14,131 +8,174 @@
|
|||
;WLAN:
|
||||
:172.22.100.0/24 und 2001:6f8:1194:c3d3::/64
|
||||
|
||||
==Intern==
|
||||
== Intern ==
|
||||
Bisher ist die Struktur ganz simpel: an einem Switch mit vielen Ports hängen Router, AccessPoint und andere Kisten.
|
||||
|
||||
===AccessPoint===
|
||||
Ich habe mich darum erstmal gekuemmert. [[Benutzer:Tristan-777|Tristan-777]]
|
||||
== Hosts ==
|
||||
|
||||
==Extern==
|
||||
blackhole hat OpenVPN-Tunnels zu ''benkstein.net'' und [[Benutzer:Astro|Astro]]. Es ist AS64699. aromaster peert auch noch, Nexthops für Tunnel-Interfaces werden per OSPF bekanntgegeben.
|
||||
|
||||
Die [[DIAC24:DIAC24/Topology#Tunnel|Tunnel]] sind im DIAC24-Wiki eingetragen.
|
||||
|
||||
=Hosts=
|
||||
|
||||
Hier fehlen noch:
|
||||
* togusa
|
||||
* batou
|
||||
* wormhole
|
||||
* wormbert
|
||||
|
||||
==blackhole==
|
||||
=== blackhole.hq.c3d2.de ===
|
||||
[[Bild:blackhole.jpg|right|blackhole.hq.c3d2.de]]
|
||||
{{Hostinfo|
|
||||
Hostname=blackhole|
|
||||
root=[[Benutzer:toidinamai|toidinamai]] und [[Benutzer:Astro|Astro]] und [[Benutzer:Sven|sven]]|
|
||||
Info=Headquarter core routing facility|
|
||||
Info=Core router|
|
||||
IPv4=tun0.blackhole.b0b.org (PPPoE), blackhole.b0b.org (195.16.87.28), 172.22.99.1 über [[C3D2VPN]]|
|
||||
IPv6=2001:6f8:1194:c3d2::1|
|
||||
Tor=|
|
||||
DSA=f3:f8:04:d5:13:8d:5c:f2:72:fa:eb:71:f6:f0:b8:86|
|
||||
RSA=4f:93:b9:dc:3c:3c:89:94:02:fd:4b:88:e5:9d:c0:a1|
|
||||
Dienste=DHCP, Router advertisements, NAT, OpenVPN-Tunnel, BGP peerings, OSPF, DNS (djbdns)
|
||||
Dienste=Router advertisements, NAT, OpenVPN-Tunnel, BGP peerings, OSPF, DNS (djbdns)
|
||||
}}
|
||||
|
||||
==aromaster==
|
||||
[[Bild:aromaster.jpg|right|aromaster.hq.c3d2.de]]
|
||||
=== hummer.hq.c3d2.de ===
|
||||
{{Hostinfo|
|
||||
Hostname=aromaster|
|
||||
root=[[Benutzer:Astro|Astro]]|
|
||||
Info=Shellserver in Kaffeemaschinenverpackung, bietet noch nicht viel an. Dank [[Benutzer:sven|Sven]] mit 512 MB RAM!|
|
||||
IPv4=[http://172.22.99.2/ 172.22.99.2] über [[C3D2VPN]]|
|
||||
IPv6=2001:6f8:1194:c3d2:2e0:7dff:fec0:8a41|
|
||||
Tor=[http://serifos.eecs.harvard.edu/proxy/http://6kgmplpcyjpesalg.onion/ 6kgmplpcyjpesalg.onion] (Port 22 & 80)|
|
||||
DSA=b8:33:02:c6:cf:6b:6a:22:19:e0:86:08:b3:21:d5:a5|
|
||||
RSA=2a:29:d4:db:26:22:74:03:e3:76:a2:97:67:dc:ea:61|
|
||||
Dienste=Buzzword compliance award pending:
|
||||
* [http://www.openssh.org/ ssh] (für Account bei [[Benutzer:Astro|Astro]] melden)
|
||||
* [http://www.postgresql.org/ PostgreSQL]
|
||||
* [http://astroblog.spaceboyz.net/harvester/ Harvester] processing und der [xmpp:astrobot@spaceboyz.net AstroBot]
|
||||
* ''Discoogle'', Jabber Service Discovery search-engine
|
||||
* Traffic für diesen Host als RRDTool-Graphen
|
||||
* Jabber-Nachrichten an [xmpp:aromaster@jabber.berlin.ccc.de/dbox aromaster@jabber.berlin.ccc.de/dbox] und Systemstatus werden auf dem Display der D-Box unter den Alphas angezeigt (D-Box z.Zt. vom Strom)
|
||||
* Dienste per Rendezvous, Bonjour, Zeroconf, [http://www.avahi.org/ Avahi] (''currently broken'', will es überhaupt jemand?)
|
||||
* [http://www.tux.org/~ricdude/EsounD.html esd] (auf Port 16001, oder mag jemand eine Config für [http://0pointer.de/lennart/projects/polypaudio/ polypaudio] schreiben?)
|
||||
* [http://www.apache.org/ Apache] (für ''~/public_html/'') mit '''ExecCGI''' auch für User
|
||||
* [http://tor.eff.org/ Tor] (öffentlich auf Port 9050)
|
||||
* [http://www.privoxy.org/ Privoxy] (öffentlich auf Port 8118, geht über Tor, entfernt lediglich ''X-Forwarded-For:'', loggt nichts)
|
||||
* Nagios
|
||||
* 3 [http://openvpn.net/ OpenVPN]s
|
||||
* ''Music Player Daemon'' auf Port 6600, nicht immer über IPv4 erreichbar, lokal mit '''ncmpc''' bedienen
|
||||
* IBGP und OSPF direkt übers Ethernet zu blackhole, Looking Glasses auf Ports 2601, 2604 und 2605:
|
||||
% telnet 2001:6f8:1194:c3d2:2e0:7dff:fec0:8a41 2605
|
||||
Trying 2001:6f8:1194:c3d2:2e0:7dff:fec0:8a41...
|
||||
Connected to 2001:6f8:1194:c3d2:2e0:7dff:fec0:8a41.
|
||||
Escape character is '^]'.
|
||||
|
||||
Hello, this is Quagga (version 0.99.3).
|
||||
Copyright 1996-2005 Kunihiro Ishiguro, et al.
|
||||
|
||||
|
||||
User Access Verification
|
||||
|
||||
Password: '''zebra'''
|
||||
AROMASTER-bgp> '''show ip bgp'''
|
||||
}}
|
||||
|
||||
===Aktuellen Song vom musicpd abfragen===
|
||||
$ '''echo currentsong | nc -vv aromaster 6600'''
|
||||
aromaster.hq.c3d2.de [172.22.99.2] 6600 (?) open
|
||||
OK MPD 0.13.0
|
||||
file: http://uk.streams.bassdrive.com:8000
|
||||
Name: Bassdrive - Music Beyond - 24/7 Drum and Bass Jungle Radio Featuring Live Shows
|
||||
Title: EW Live from NY featuring Overfiend [aim: overfiend909]
|
||||
Pos: 16
|
||||
Id: 46
|
||||
OK
|
||||
sent 12, rcvd 224
|
||||
|
||||
Mehr Befehle in [https://svn.musicpd.org/mpd/trunk/doc/COMMANDS mpd COMMANDS]
|
||||
|
||||
==Heimdal-KRB5 Auth Server==
|
||||
{{Hostinfo|
|
||||
Hostname=krb5|
|
||||
root=[[Benutzer:Tristan-777|Tristan-777]]|
|
||||
Info=Debian GNU/Linux 3.1 '''Building''' |
|
||||
IPv4=172.22.99.3 über [[C3D2VPN]]|
|
||||
IPv6=2001:6f8:1194:c3d2::3|
|
||||
Hostname=hummer.hq.c3d2.de|
|
||||
root=astro und tristan|
|
||||
Info=Xen Host|
|
||||
IPv4=172.22.99.15|
|
||||
IPv6=2001:6f8:1194:c3d2:202:a5ff:fe43:9348|
|
||||
Tor=|
|
||||
DSA=|
|
||||
RSA=|
|
||||
Dienste=LDAP, KRB5 Realm
|
||||
Dienste=Xen hosting
|
||||
}}
|
||||
|
||||
|
||||
|
||||
==alf==
|
||||
[[Bild:alf.jpg|right|alf.hq.c3d2.de]]
|
||||
==== astron.hq.c3d2.de, astrom.hq.c3d2.de ====
|
||||
{{Hostinfo|
|
||||
Hostname=alf|
|
||||
root=[[Benutzer:Matthias|Matthias]]|
|
||||
Info=Alphaserver 800 5/500 mit NetBSD/alpha 3.0 |
|
||||
IPv4=172.22.99.4 über [[C3D2VPN]]|
|
||||
IPv6=2001:6f8:1194:c3d2:200:f8ff:fe09:8726|
|
||||
Hostname=astron.hq.c3d2.de, astrom.hq.c3d2.de|
|
||||
root=astro|
|
||||
Info=Xen guest auf hummer.hq.c3d2.de, chaosbay torrent tracker|
|
||||
IPv4=172.22.99.23, 172.22.99.24|
|
||||
IPv6=2001:6f8:1194:c3d2:a800:5bff:fe08:f05b, 2001:6f8:1194:c3d2:a800:5bff:fe08:f05c|
|
||||
Tor=|
|
||||
DSA=22:87:2a:80:5d:0e:0e:1e:d3:7e:cf:df:57:85:e8:6f|
|
||||
RSA=fd:08:4c:70:7a:f3:8c:9e:e3:f2:e3:a0:4c:05:6d:80|
|
||||
Dienste=ssh
|
||||
DSA=|
|
||||
RSA=|
|
||||
Dienste=Chaosbay HTTP, Chaosbay torrent tracker
|
||||
}}
|
||||
|
||||
==wormbert==
|
||||
==== jabber1.hq.c3d2.de, jabber2.hq.c3d2.de ====
|
||||
{{Hostinfo|
|
||||
Hostname=jabber1.hq.c3d2.de, jabber2.hq.c3d2.de|
|
||||
root=astro, leon|
|
||||
Info=Xen guest auf hummer.hq.c3d2.de, unsere jabber server|
|
||||
IPv4=172.22.99.25, 172.22.99.26|
|
||||
IPv6=2001:6f8:1194:c3d2:a800:bff:fe19:8f14, 2001:6f8:1194:c3d2:a800:3dff:fe6a:23b8|
|
||||
Tor=|
|
||||
DSA=|
|
||||
RSA=|
|
||||
Dienste=jabber
|
||||
}}
|
||||
|
||||
==== icq.hq.c3d2.de ====
|
||||
{{Hostinfo|
|
||||
Hostname=icq.hq.c3d2.de|
|
||||
root=astro, leon|
|
||||
Info=Xen guest auf hummer.hq.c3d2.de, unser jabber->icq-transport|
|
||||
IPv4=172.22.99.31|
|
||||
IPv6=2001:6f8:1194:c3d2:a800:30ff:fef6:2789|
|
||||
Tor=|
|
||||
DSA=|
|
||||
RSA=|
|
||||
Dienste=jabber->icq-transport
|
||||
}}
|
||||
|
||||
==== unsafe.hq.c3d2.de ====
|
||||
{{Hostinfo|
|
||||
Hostname=unsafe.hq.c3d2.de|
|
||||
root=astro|
|
||||
Info=Xen guest auf hummer.hq.c3d2.de, unser ssh->muc-chat gateway|
|
||||
IPv4=172.22.99.30|
|
||||
IPv6=2001:6f8:1194:c3d2:a800:e3ff:fe60:54c|
|
||||
Tor=|
|
||||
DSA=|
|
||||
RSA=|
|
||||
Dienste=ssh->muc-chat gateway
|
||||
}}
|
||||
|
||||
==== dhcp.hq.c3d2.de ====
|
||||
{{Hostinfo|
|
||||
Hostname=dhcp.hq.c3d2.de|
|
||||
root=astro|
|
||||
Info=Xen guest auf hummer.hq.c3d2.de, unser DHCP server|
|
||||
IPv4=172.22.99.254|
|
||||
IPv6=2001:6f8:1194:c3d2::254|
|
||||
Tor=|
|
||||
DSA=|
|
||||
RSA=|
|
||||
Dienste=DHCP
|
||||
}}
|
||||
|
||||
==== www1.hq.c3d2.de ====
|
||||
{{Hostinfo|
|
||||
Hostname=www1.hq.c3d2.de|
|
||||
root=astro|
|
||||
Info=Xen guest auf hummer.hq.c3d2.de, HTTP server|
|
||||
IPv4=172.22.99.28|
|
||||
IPv6=2001:6f8:1194:c3d2:a800:13ff:fe8b:347|
|
||||
Tor=|
|
||||
DSA=|
|
||||
RSA=|
|
||||
Dienste=HTTP, load balancing fuer die jabber-server
|
||||
}}
|
||||
|
||||
==== debcache.hq.c3d2.de ====
|
||||
{{Hostinfo|
|
||||
Hostname=debcache.hq.c3d2.de|
|
||||
root=astro|
|
||||
Info=Xen guest auf hummer.hq.c3d2.de, debcache fuer die Debians unter unseren Maschinen|
|
||||
IPv4=172.22.99.27|
|
||||
IPv6=2001:6f8:1194:c3d2:a800:cff:fe66:b3a|
|
||||
Tor=|
|
||||
DSA=|
|
||||
RSA=|
|
||||
Dienste=apt-proxy
|
||||
}}
|
||||
|
||||
==== ldap.hq.c3d2.de ====
|
||||
{{Hostinfo|
|
||||
Hostname=ldap.hq.c3d2.de|
|
||||
root=vermutlich tristan|
|
||||
Info=Xen guest auf hummer.hq.c3d2.de, LDAP fuer's HQ|
|
||||
IPv4=172.22.99.33|
|
||||
IPv6=2001:6f8:1194:c3d2:a800:daff:fe09:985a|
|
||||
Tor=|
|
||||
DSA=|
|
||||
RSA=|
|
||||
Dienste=LDAP
|
||||
}}
|
||||
|
||||
=== phobos.hq.c3d2.de ===
|
||||
{{Hostinfo|
|
||||
Hostname=phobos.hq.c3d2.de|
|
||||
root=astro, tristan|
|
||||
Info=Fileserver, Bigtower mit vielen HDDs im Serverraum|
|
||||
IPv4=172.22.99.11|
|
||||
IPv6=2001:6f8:1194:c3d2:201:2ff:fe06:f594|
|
||||
Tor=|
|
||||
DSA=|
|
||||
RSA=|
|
||||
Dienste=SSH
|
||||
}}
|
||||
|
||||
=== ziercke.hq.c3d2.de ===
|
||||
{{Hostinfo|
|
||||
Hostname=ziercke.hq.c3d2.de|
|
||||
root=leon, astro|
|
||||
Info=Dedizierte Maschine fuer Server-Monitoring|
|
||||
IPv4=172.22.99.14|
|
||||
IPv6=2001:6f8:1194:c3d2:200:cbff:fe68:489a|
|
||||
Tor=|
|
||||
DSA=|
|
||||
RSA=|
|
||||
Dienste=(HTTP), Nagios mit Notifications in unseren MUC-channel, Munin, Smokeping. Hummer loggt hierhin.
|
||||
}}
|
||||
|
||||
=== wormbert.hq.c3d2.de ===
|
||||
{{Hostinfo|
|
||||
Hostname=wormbert|
|
||||
root=[[Benutzer:Astro|Astro]]|
|
||||
Info=WLAN AP: IEEE 802.11bg CH: 6 SSID: <<</>>
|
||||
OpenWRT SVN r7509, Images und Pakete in aromaster:/home/shared/wormbert.tbz (mit .sig)|
|
||||
IPv4=172.22.99.5 & 172.22.100.1 über [[C3D2VPN]]|
|
||||
Info=WLAN AP: IEEE 802.11bg CH: 6 SSID: <<</>>|
|
||||
IPv4=172.22.99.5 & 172.22.100.1|
|
||||
IPv6=2001:6f8:1194:c3d2::5 & 2001:6f8:1194:c3d3::1|
|
||||
Tor=|
|
||||
DSA=|
|
||||
|
@ -152,90 +189,7 @@ Dienste=
|
|||
* Avahi mit Reflector
|
||||
}}
|
||||
|
||||
==hydra==
|
||||
[[Bild:hydra.jpg|right|hydra.hq.c3d2.de]]
|
||||
{{Hostinfo|
|
||||
Hostname=hydra|
|
||||
root=[[toidinamai]]|
|
||||
Info=Gentoo Linux Domain0 auf Xen 3.0 |
|
||||
IPv4=172.22.99.3 über [[C3D2VPN]]|
|
||||
IPv6=2001:6f8:1194:c3d2:2e0:18ff:feb7:da9e|
|
||||
Tor=|
|
||||
DSA=8e:fe:45:48:2e:8d:67:46:58:fb:fb:e4:06:a8:4b:36<br/>xotip-gydek-neter-zusad-kydoc-muhoh-duzec-hynif-zesub-hesor-tyxex|
|
||||
RSA=2e:2f:54:a5:46:f7:9f:02:e9:71:6f:15:ac:1c:d4:74<br/>xokir-vugym-getyc-dazas-fucag-fidur-sobag-hedom-vybac-pypid-tuxax|
|
||||
Dienste=ssh
|
||||
|
||||
Ideen:
|
||||
* Xen-Experimentiermaschine - mehrere Virtuelle Maschinen, mehrere Betriebssysteme
|
||||
* Reserviert 172.22.99.248/26, virtuelle Maschinen werden per Bridge ans HQ-Lan angeschlossen
|
||||
}}
|
||||
|
||||
===head1===
|
||||
{{Hostinfo|
|
||||
Hostname=head1.hydra|
|
||||
root=[[toidinamai]]|
|
||||
Info=Gentoo Linux DomainU |
|
||||
IPv4=172.22.99.250 über [[C3D2VPN]]|
|
||||
IPv6=2001:6f8:1194:c3d2:216:3eff:fe0c:269a|
|
||||
Tor=|
|
||||
DSA=7a:aa:21:07:13:8f:c5:77:79:c4:2c:28:7f:fe:de:19<br/>xibov-hehyp-suzyl-foryb-rydon-falep-cyris-pifur-dylaf-fisup-pexax|
|
||||
RSA=ba:f5:17:2e:1f:d3:ff:7e:d7:ad:6b:ad:25:35:80:d0<br/>xevot-bygis-vucek-cilov-fukon-dabap-vezul-meciv-bufer-lamaz-foxix|
|
||||
Dienste=ssh, nfs, ldap
|
||||
|
||||
Idee:
|
||||
|
||||
exportiert /home per NFS und Nutzeraccounts per LDAP in weitere DomainUs
|
||||
exportiert /usr/portage read-only ins Büro-Netz
|
||||
}}
|
||||
|
||||
===head2===
|
||||
{{Hostinfo|
|
||||
Hostname=head2.hydra|
|
||||
root=[[toidinamai]]|
|
||||
Info=Gentoo Linux DomainU |
|
||||
IPv4=172.22.99.251 über [[C3D2VPN]]|
|
||||
IPv6=2001:6f8:1194:c3d2:216:3eff:fe5f:e388|
|
||||
Tor=|
|
||||
DSA=2d:ba:4a:e8:e2:5d:12:1f:86:a8:83:34:5b:a6:68:ab<br/>xovek-kuzen-lasen-vahyl-cisot-lasos-nanis-faleb-cucec-hekyn-cyxex|
|
||||
RSA=7c:3c:26:3b:10:f0:15:e0:73:00:2b:25:e4:c5:f1:20<br/>xigec-toluf-vezat-cehur-bunol-dynor-vyveh-hiper-sybok-honap-haxax|
|
||||
Dienste=ssh, (xdmcp), (svn+ssh)
|
||||
|
||||
Idee:
|
||||
|
||||
general purpose Spielwiesenmaschine, allerlei Software, u.a. XDM, Subversion
|
||||
|
||||
Für Logins bitte melden... ;-)
|
||||
}}
|
||||
|
||||
===head3===
|
||||
{{Hostinfo|
|
||||
Hostname=head3.hydra|
|
||||
root=[[toidinamai]]|
|
||||
Info=NetBSD 3.0 DomainU |
|
||||
IPv4=172.22.99.252 über [[C3D2VPN]]|
|
||||
IPv6=2001:6f8:1194:c3d2:216:3eff:fe43:2eed|
|
||||
Tor=|
|
||||
DSA=b7:b5:0b:af:fb:dd:8c:c9:80:2d:de:3a:ff:5c:d0:e9|
|
||||
RSA=3c:70:1f:05:df:de:de:ff:e2:11:d7:b5:4c:b7:e9:9f|
|
||||
Dienste=ssh
|
||||
|
||||
}}
|
||||
|
||||
==asok==
|
||||
[[Bild:gruntmeister.jpg|right|asok.hq.c3d2.de]]
|
||||
{{Hostinfo|
|
||||
Hostname=asok|
|
||||
root=[[Benutzer:Sven|sven]] und [[Benutzer:Toidinamai|toidinamai]] und [[Benutzer:Astro|Astro]]|
|
||||
Info=Alphaserver 800 5/500 mit Gentoo|
|
||||
IPv4=172.22.99.6|
|
||||
IPv6=coming soon|
|
||||
Tor=|
|
||||
DSA=1f:e7:0c:00:39:66:94:06:43:5a:34:f7:b8:4b:57:da|
|
||||
RSA=0f:80:bd:1c:4d:5a:2c:c6:27:8f:89:30:00:62:21:f2|
|
||||
Dienste=Wird OpenVPN Access Concentrator ;-)
|
||||
}}
|
||||
|
||||
==catbert==
|
||||
=== catbert.hq.c3d2.de ===
|
||||
{{Hostinfo|
|
||||
Hostname=catbert|
|
||||
root=[[Benutzer:Astro|Astro]]|
|
||||
|
@ -245,7 +199,7 @@ IPv6=2001:6f8:1194:c3d2:2c0:26ff:fe78:52e5|
|
|||
Tor=|
|
||||
DSA=fd:f7:4b:e8:64:13:e4:78:93:d1:26:96:03:0b:0e:05|
|
||||
RSA=32:9d:4d:19:1e:59:a0:f0:83:10:dd:79:b6:40:2c:7b|
|
||||
Dienste=<span style="color:red">An dieses Mainboard keine Festplatten stecken, es hat bereits 3 Stück hingerichtet!</span>
|
||||
Dienste=<span style="color:red">An dieses Mainboard keine Festplatten stecken, es hat bereits 3 Stück hingerichtet!</span> (stimmt das noch?)
|
||||
}}
|
||||
|
||||
[[Kategorie:HQ|Netz]]
|
||||
|
|
Loading…
Reference in New Issue
Block a user