57North Hacklab

User Tools

Site Tools

You are here: start » projects » network
projects:network

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
projects:network [2020/04/18 18:43] – [ChaosVPN] hibbyprojects:network [2023/04/14 11:13] (current) Q Misell
Line 1: Line 1:
-The 57North Hacklab Network will provide all the necessary components to connect our hackers to the public Internet using both IPv4 and IPv6 and also to the ChaosVPN, dn42 and Freifunk networks.+====== Network ======
  
-====== Component Overview ====== +The 57North Hacklab Network will provide all the necessary components to connect our hackers to the public Internet using both IPv4 and IPv6.
-bennachie.57n.dn42 is an apu3c4 board running OpenBSD. It terminates the PPPoE tunnel from Converged and has a 2G LACP trunk into the core switch in the same rack. This trunk uses 802.1Q encapsulation to carry multiple VLANs as detailed below.+
  
-In the event of a failure, the configuration for this box is backed up to an SD card. This card appears as `/dev/sd1i` and is mounted normally at `/sdcard`. This is FAT formatted, not FFS, so it is possible to just plug this into whatever to read the contents. On this SD card you'll find a readme and a tar file containing the contents of /etc. +===== Network Components =====
  
-====== Networks ======+==== Router ====
  
-When considering new IP ranges, it is necessary to consider which ranges would already be in use in ChaosVPN, dn42 and FreifunkThe range 192.168.0.0/16 is available for local use and not routed outside the hackerspaceFor IPv6, the hackerspace has a global scope address block (2001:470:510b::/48), from Hurricane Electric, and this surfaces in Germany (who has the account for this?).+The router is at router.hl.57north.net.uk. IPv4: 172.23.152.254. IPv6: 2a11:f2c0:fc00::1.
  
-Some blocks in this table have been marked as legacy. This is because the addressing they use was from ChaosVPN, and we are now instead looking at dn42 for inter-hackerspace peering. ChaosVPN and dn42 co-ordinate on address space and also peer with each other and so we should not be losing any connectivity+This terminates the PPPoE connection, and announces the space's AMPRnet and IPv6 space via BGP over WireGuard.
  
-Our DN42 ASN is [[https://registry.dn42.us/registry/aut-num/AS4242421057|AS4242421057]]+===== DHCP RA =====
  
-^ VLAN ^ Description ^ Address Range ^ IPv6 ^ +The router will hand out DHCP leases in the 172.23.152.0/24 range, and advertises stateless IPv6 configuration for 2a11:f2c0:fc00::/64 via RAs.
-| 120 | LAN | 172.23.152.0/24 | ? |+
  
-===== Static Addresses =====+The DHCPv4 server is ISC DHCP server, and the RA server is RADVD.
  
-A segment of addresses in the wired LAN is reserved for infrastructure projects. These IP addresses should only be used for long-lived devices in the space that provide services to members. If you require a static IP address temporarily or for a project that does not provide services to members then you should use an IP address from the segment of "first come first served" addresses. The remainder of the subnet is reserved for the DHCP pool. +==== Static Addresses ==== 
 + 
 +A segment of addresses in the wired LAN is reserved for infrastructure projects. These IP addresses should only be used for long-lived devices in the space that provide services to members. If you require a static IP address temporarily or for a project that does not provide services to members then you should use an IP address from the segment of "first come first served" addresses. The remainder of the subnet is reserved for the DHCP pool. These static addresses are handed out via static DHCP leases.
  
 ^ IP Address ^ Hostname ^ Description ^ Contact ^ ^ IP Address ^ Hostname ^ Description ^ Contact ^
Line 29: Line 29:
 | 172.23.152.4 | octopi | RaspberryPi connected to the space Mendel Prusa I2 3D printer | [[User:Nordin]]| | 172.23.152.4 | octopi | RaspberryPi connected to the space Mendel Prusa I2 3D printer | [[User:Nordin]]|
 | 172.23.xxx.xx | Printer | The Big Friendly Printer | [[User: hibby]] | | 172.23.xxx.xx | Printer | The Big Friendly Printer | [[User: hibby]] |
 +| 172.23.152.15 | pve1.57north.net.uk | Proxmox 1 | [[User: theenbyperor]] |
 +| 2a11:f2c0:fc00::15 | pve1.57north.net.uk | Proxmox 1 | [[User: theenbyperor]] |
 +| 172.23.152.16 | pve2.57north.net.uk | Proxmox 2 | [[User: theenbyperor]] |
 +| 2a11:f2c0:fc00::16 | pve2.57north.net.uk | Proxmox 2 | [[User: theenbyperor]] |
 | ''172.23.152.xx-xxx'' | ''*First come first served*'' | ''Static Allocations'' | ''[[Projects:Network]]'' | | ''172.23.152.xx-xxx'' | ''*First come first served*'' | ''Static Allocations'' | ''[[Projects:Network]]'' |
  
-====== Network Rack ======+===== Network Rack =====
  
-===== Rack Layout =====+==== Rack Layout ====
  
 ^ U (from top) ^ Hardware ^ ^ U (from top) ^ Hardware ^
Line 43: Line 47:
 | 6-7 | NMS Panel | | 6-7 | NMS Panel |
  
-===== Patch Panel =====+==== Patch Panel ====
  
 The Patch Panel in the top rack is currently not well populated. The Patch Panel in the top rack is currently not well populated.
Line 73: Line 77:
 | 24 |  | | 24 |  |
  
-====== ChaosVPN ====== +{{tag>active network IP LAN patch_panel Infrastructure}}
- +
-[[http://wiki.hamburg.ccc.de/ChaosVPN | ChaosVPN]] is a VPN to connect hackers and hackerspaces. The wired and wireless LANs are connected to ChaosVPN and, via ChaosVPN, dn42 and Freifunk's networks. +
- +
-{{tag>project network IP LAN patch_panel}}+
projects/network.1587235430.txt.gz · Last modified: 2020/07/07 20:48 (external edit)