IT Notes: Difference between revisions
m (→Containers: Added wailord) |
m (→Containers: forgot to add minecraft container a long time ago) |
||
(32 intermediate revisions by the same user not shown) | |||
Line 1: | Line 1: | ||
These are notes that somebody told [[User:Blu]] to create. | These are information technology notes that somebody told [[User:Blu]] to create. | ||
== Accounts on MAG Laboratory == | == Accounts on MAG Laboratory == | ||
Line 11: | Line 11: | ||
== MAG Laboratory IT Services == | == MAG Laboratory IT Services == | ||
Below is a directory of common services that may be used on the MAG Laboratory intranet and a copy of our certificate authority (CA) public key. You may want to install the CA on your computer to automatically trust signed MAG Laboratory intranet services. | Below is a directory of common services that may be used on the MAG Laboratory intranet and a copy of our certificate authority (CA) public key. You may want to install the CA on your computer to automatically trust signed MAG Laboratory intranet services. | ||
[https://drive.google.com/drive/u/0/folders/1mnoxAytirKjpg6NgGqTCvVqGyPVLtTGZ Google Drive Link to MAG Laboratory CA Public Key] | |||
Before that, please ask for the default MAG Laboratory credentials to access anything on publicly available at the MAG Laboratory. Most services will be locked behind the default credentials. | Before that, please ask for the default MAG Laboratory credentials to access anything on publicly available at the MAG Laboratory. Most services will be locked behind the default credentials. | ||
Line 20: | Line 22: | ||
=== Intranet Speed Test === | === Intranet Speed Test === | ||
The int'''ra'''net speed test | This service is archived. | ||
The int'''ra'''net speed test was be accessed at the link below. Remember that it only tests the link between your computer and the MAG Laboratory service host, not the int'''er'''net. | |||
[http://librespeed.maglab Librespeed.MAGLab] | [http://librespeed.maglab Librespeed.MAGLab] | ||
=== Grafana === | |||
Intranet users may be interested in the status of MAG Laboratory's HAL or other devices on the intranet. All Grafana dashboards are set for public viewability. Follow the link below: | |||
[https://jane.maglab:3000/ Grafana on Jane] | |||
=== Mattermost === | |||
Intranet makerspace task organization, checklist, and chat client | |||
[https://wailord.maglab Mattermost on Wailord] | |||
=== Nextcloud === | |||
Intranet file storage and sharing server. Runs Nextcloud. Similar to Google Drive? | |||
[https://stor.maglab Nextcloud] | |||
=== Outside Cameras === | === Outside Cameras === | ||
These cameras should be accessed through VLC or another RTSP compatible player. The original camera streams are mirrored and should be viewed through the listed mirror below. | These cameras should be accessed through VLC or another RTSP compatible player. The original camera streams are mirrored and should be viewed through the listed mirror below. | ||
'''Note:''' that the default streams are at a rather large resolution. | '''Note:''' that the default streams are at a rather large resolution. The substreams are recommended. | ||
{|class="wikitable" | {|class="wikitable" | ||
Line 35: | Line 54: | ||
|Camera 1 | |Camera 1 | ||
|<code>rtsp://maglab:[email protected]:8554/Camera1</code> | |<code>rtsp://maglab:[email protected]:8554/Camera1</code> | ||
|- | |||
|Camera 1 Low Bandwidth | |||
|<code>rtsp://maglab:[email protected]:8554/Camera1_sub</code> | |||
|- | |- | ||
|Camera 2 | |Camera 2 | ||
|<code>rtsp://maglab:[email protected]:8554/Camera2</code> | |<code>rtsp://maglab:[email protected]:8554/Camera2</code> | ||
|- | |||
|Camera 2 Low Bandwidth | |||
|<code>rtsp://maglab:[email protected]:8554/Camera2_sub</code> | |||
|} | |||
=== Wireguard === | |||
Wireguard is the name of a VPN solution which requires MAG Laboratory to pre-define IP addresses for VPN users. | |||
These addresses are on the <code>192.168.128.0/24</code> subnet. | |||
The following addresses are already assigned: | |||
{| class=wikitable | |||
!IP | |||
!Assignment | |||
|- | |||
|.1 | |||
|WG server | |||
|- | |||
|.2 | |||
|[[User:Blu|Brandon]]'s laptop | |||
|- | |||
|.3 | |||
|Richard's laptop | |||
|- | |||
|.4 | |||
|[[User:Blu|Brandon]]'s Moto phone | |||
|- | |||
|.5 | |||
|[[User:Blu|Brandon]]'s Pixel phone | |||
|- | |||
|.8 | |||
|Michael | |||
|- | |||
|.9 | |||
|Tina | |||
|- | |||
|.10 | |||
|[[User:Blu|Brandon]]'s laptop | |||
|- | |||
|.11 | |||
|[[User:Blu|Brandon]]'s other phone | |||
|- | |||
|.12 | |||
| Kevin-M4600 | |||
|- | |||
|.13 | |||
| Kevin-Phone | |||
|- | |||
|.14 | |||
| Ben | |||
|} | |} | ||
=== | === Minecraft === | ||
MAG Laboratory is running a modded minecraft server as of the time of this writing. The server has two standout technology mods for your enjoyment: ''Ad Astra'' and Tech Reborn. There is also Farmer's Delight and other quality of life mods for your enjoyment along with a host of performance enhancement mods. | |||
The minecraft server originally started as an open house event on 2022-10-08. | |||
Upon spawning into the minecraft world, the central base will be to your East. There is also our local village complete with commieblock to the East but across an ocean. | |||
The client is downloadable from the following intranet link: https://stor.maglab/s/WWkHtM85YsnEffp | |||
Local IT support is available. | |||
==== Maintenance Log ==== | |||
'''2022-11-14''': Minecraft client and server were updated to the latest versions of the mods. Still running 1.19.2. | |||
== IP Assignment on the MAG Laboratory Network == | == IP Assignment on the MAG Laboratory Network == | ||
The local DHCP only assigns IP addresses from <code> | The local DHCP only assigns IP addresses from <code>10.110.0.100</code> to <code>10.110.0.245</code>. Addresses below 100 are assigned statically by the DHCP and are listed here: | ||
Note that the local DNS assigns addresses to <code>*.maglab</code>. This makes it so that you should find the router under <code>router.maglab</code>. | Note that the local DNS assigns addresses to <code>*.maglab</code>. This makes it so that you should find the router under <code>router.maglab</code>. | ||
Line 73: | Line 154: | ||
|- | |- | ||
|.5 | |.5 | ||
| | |opnsense00 | ||
|The router and source of network services. | |The router and source of network services. | ||
|- | |- | ||
Line 79: | Line 160: | ||
|opnsense01 | |opnsense01 | ||
|The backup router and source of backup concurrent services. | |The backup router and source of backup concurrent services. | ||
|- | |||
|.7 | |||
|TL-SG108PE | |||
|Managed Switch | |||
|- | |||
|.8 | |||
|TL-SG108E | |||
|Managed Switch | |||
|- | |||
|.9 | |||
|PC 2724 | |||
|Managed Switch | |||
|} | |} | ||
Line 102: | Line 195: | ||
|proxmox01 | |proxmox01 | ||
|Second container and VM host. | |Second container and VM host. | ||
|- | |||
|.14 | |||
|proxmox02 | |||
|Third container and VM host. Why do we need CEPH again? | |||
|} | |} | ||
Line 120: | Line 217: | ||
|.23 | |.23 | ||
|creality | |creality | ||
|Octoprint server for the creality 3d printer | |Octoprint server for the [[Creality_CR10S|creality]] 3d printer | ||
|- | |- | ||
|.24 | |.24 | ||
Line 128: | Line 225: | ||
|.25 | |.25 | ||
|Camera1 | |Camera1 | ||
|Security Camera | |Security Camera, Outdoor, South-Facing | ||
|- | |- | ||
|.26 | |.26 | ||
|Camera2 | |Camera2 | ||
|Security Camera | |Security Camera, Outdoor, West-Facing | ||
|- | |||
|.27 | |||
|iiip | |||
|Octoprint server for the [[Monoprice_Maker_Select_3D_Printer_V2 | iiip]] 3d printer | |||
|- | |||
|.28 | |||
|pulsexe | |||
|Octoprint server for the [[Pulse XE]] 3d printer | |||
|- | |||
|.29 | |||
|NPI1F9BEE | |||
|The HP Laserjet P2035n laser printer | |||
|- | |||
|.30 | |||
|Camera3 | |||
|Security Camera, Indoor, Kitchen | |||
|- | |||
|.31 | |||
|Camera4 | |||
|Security Camera, Indoor, Electronics | |||
|- | |||
|.32 | |||
|Camera5 | |||
|Security Camera, Indoor, Shop Front | |||
|- | |||
|.33 | |||
|Camera6 | |||
|Security Camera, Indoor, Shop Machining | |||
|- | |||
|.34 | |||
|Camera7 | |||
|Security Camera, Indoor, Shop Hand Tools | |||
|- | |||
|.35 | |||
|PrusaXL0 | |||
|Prusalink interface for the Prusa XL 3d printer | |||
|} | |} | ||
Line 167: | Line 300: | ||
|.56 | |.56 | ||
|wailord | |wailord | ||
|Why are you running docker inside lxc??? | |Why are you running docker inside lxc??? <br> | ||
Hosts the mattermost makerspace kanban boards. | |||
|- | |||
|.57 | |||
|stor | |||
|Makerspace local nextcloud | |||
|- | |||
|.58 | |||
|wireguard | |||
|VPN for the weirdos who keep asking Brandon to access the makerspace remotely | |||
|- | |||
|.59 | |||
|minecraft | |||
|Container for minecraft | |||
|- | |||
|.60 | |||
|benbox | |||
|A box for ben's discord bot | |||
|} | |} | ||
=== Virtual Machines and Cluster === | === Virtual Machines and Cluster === | ||
IP addresses <code> | IP addresses <code>10.110.0.64/27</code>. | ||
{|class="wikitable" | {|class="wikitable" | ||
!IP | !IP | ||
Line 193: | Line 343: | ||
|Hosted on Toaster | |Hosted on Toaster | ||
|} | |} | ||
== Notes on Migration and Configuration == | |||
The goal is for the actual configuration files (minus secrets) to be stored at https://github.com/MAGLaboratory/miscellaneous-scripts while specific instructions such as directory ownership are described in this section. | |||
=== Connor === | |||
VSFTP is very picky about home chroot permissions and will exit with <code>500 OOPS: vsftpd: refusing to run with writable root inside chroot()</code> if the chroot is writeable. | |||
[[Category:Notes]] |
Latest revision as of 03:29, 8 September 2024
These are information technology notes that somebody told User:Blu to create.
Accounts on MAG Laboratory
Getting an account on this wiki is meant to be difficult. todo: image here
The normal account creation path would be to create an account on the MAG Laboratory "Members Only" section. Currently, this functionality is broken.
Please e-mail either the contact at maglaboratory or the webdev at maglaboratory to ask for a wiki account. It is also possible to DM in an appropriate managed social media account.
MAG Laboratory IT Services
Below is a directory of common services that may be used on the MAG Laboratory intranet and a copy of our certificate authority (CA) public key. You may want to install the CA on your computer to automatically trust signed MAG Laboratory intranet services.
Google Drive Link to MAG Laboratory CA Public Key
Before that, please ask for the default MAG Laboratory credentials to access anything on publicly available at the MAG Laboratory. Most services will be locked behind the default credentials.
3D Printer
The 3d printer is running a version of octoprint and can be accessed at the link below.
Intranet Speed Test
This service is archived.
The intranet speed test was be accessed at the link below. Remember that it only tests the link between your computer and the MAG Laboratory service host, not the internet.
Grafana
Intranet users may be interested in the status of MAG Laboratory's HAL or other devices on the intranet. All Grafana dashboards are set for public viewability. Follow the link below:
Mattermost
Intranet makerspace task organization, checklist, and chat client
Nextcloud
Intranet file storage and sharing server. Runs Nextcloud. Similar to Google Drive?
Outside Cameras
These cameras should be accessed through VLC or another RTSP compatible player. The original camera streams are mirrored and should be viewed through the listed mirror below.
Note: that the default streams are at a rather large resolution. The substreams are recommended.
Camera | URL |
---|---|
Camera 1 | rtsp://maglab:[email protected]:8554/Camera1
|
Camera 1 Low Bandwidth | rtsp://maglab:[email protected]:8554/Camera1_sub
|
Camera 2 | rtsp://maglab:[email protected]:8554/Camera2
|
Camera 2 Low Bandwidth | rtsp://maglab:[email protected]:8554/Camera2_sub
|
Wireguard
Wireguard is the name of a VPN solution which requires MAG Laboratory to pre-define IP addresses for VPN users.
These addresses are on the 192.168.128.0/24
subnet.
The following addresses are already assigned:
IP | Assignment |
---|---|
.1 | WG server |
.2 | Brandon's laptop |
.3 | Richard's laptop |
.4 | Brandon's Moto phone |
.5 | Brandon's Pixel phone |
.8 | Michael |
.9 | Tina |
.10 | Brandon's laptop |
.11 | Brandon's other phone |
.12 | Kevin-M4600 |
.13 | Kevin-Phone |
.14 | Ben |
Minecraft
MAG Laboratory is running a modded minecraft server as of the time of this writing. The server has two standout technology mods for your enjoyment: Ad Astra and Tech Reborn. There is also Farmer's Delight and other quality of life mods for your enjoyment along with a host of performance enhancement mods.
The minecraft server originally started as an open house event on 2022-10-08.
Upon spawning into the minecraft world, the central base will be to your East. There is also our local village complete with commieblock to the East but across an ocean.
The client is downloadable from the following intranet link: https://stor.maglab/s/WWkHtM85YsnEffp
Local IT support is available.
Maintenance Log
2022-11-14: Minecraft client and server were updated to the latest versions of the mods. Still running 1.19.2.
IP Assignment on the MAG Laboratory Network
The local DHCP only assigns IP addresses from 10.110.0.100
to 10.110.0.245
. Addresses below 100 are assigned statically by the DHCP and are listed here:
Note that the local DNS assigns addresses to *.maglab
. This makes it so that you should find the router under router.maglab
.
The Routers
IP | Name | Comment |
---|---|---|
.1 | router | CARP address for the HA router cluster. |
.2 | switch | The PowerConnect 2724 switch mounted on the MAG Lab wall. |
.3 | router-front | Wifi for the front of the space |
.4 | wifi | Wifi for the back of the space |
.5 | opnsense00 | The router and source of network services. |
.6 | opnsense01 | The backup router and source of backup concurrent services. |
.7 | TL-SG108PE | Managed Switch |
.8 | TL-SG108E | Managed Switch |
.9 | PC 2724 | Managed Switch |
The MAG Lab Machines
IP | Name | Comment |
---|---|---|
.10 | Proxmox | The hosting for containers and VMs on the network. |
.11 | Toaster | The computer sitting in the electronics room. |
.12 | MAGLAB-CRYZEN | The computer in the conference room. |
.13 | proxmox01 | Second container and VM host. |
.14 | proxmox02 | Third container and VM host. Why do we need CEPH again? |
The Internet of Trash and Single-Board Computers
IP | Name | Comment |
---|---|---|
.20 | hal | Host of the front display and most makerspace monitoring services. |
.21 | daisy | Host of back-of-space makerspace monitoring services. |
.23 | creality | Octoprint server for the creality 3d printer |
.24 | george | Local GPS disciplined, Stratum 1 NTP time server |
.25 | Camera1 | Security Camera, Outdoor, South-Facing |
.26 | Camera2 | Security Camera, Outdoor, West-Facing |
.27 | iiip | Octoprint server for the iiip 3d printer |
.28 | pulsexe | Octoprint server for the Pulse XE 3d printer |
.29 | NPI1F9BEE | The HP Laserjet P2035n laser printer |
.30 | Camera3 | Security Camera, Indoor, Kitchen |
.31 | Camera4 | Security Camera, Indoor, Electronics |
.32 | Camera5 | Security Camera, Indoor, Shop Front |
.33 | Camera6 | Security Camera, Indoor, Shop Machining |
.34 | Camera7 | Security Camera, Indoor, Shop Hand Tools |
.35 | PrusaXL0 | Prusalink interface for the Prusa XL 3d printer |
Containers
IP | Name | Comment |
---|---|---|
.50 | thelog | Makerspace log aggregator |
.51 | connor | Security camera recorder and mirror |
.52 | jane | Makerspace Grafana server |
.53 | graylog | Makerspace graylog server |
.54 | librespeed | Makerspace wifi speed testing aid |
.55 | swarm-host | Single board computer netboot server |
.56 | wailord | Why are you running docker inside lxc??? Hosts the mattermost makerspace kanban boards. |
.57 | stor | Makerspace local nextcloud |
.58 | wireguard | VPN for the weirdos who keep asking Brandon to access the makerspace remotely |
.59 | minecraft | Container for minecraft |
.60 | benbox | A box for ben's discord bot |
Virtual Machines and Cluster
IP addresses 10.110.0.64/27
.
IP | Name | Comment |
---|---|---|
.64 | debianct0 | Hosted on proxmox01 |
.65 | virtualDebian | Hosted on Proxmox |
.66 | cryDebian | Hosted on MAGLAB-CRYZEN |
.67 | toastDebian | Hosted on Toaster |
Notes on Migration and Configuration
The goal is for the actual configuration files (minus secrets) to be stored at https://github.com/MAGLaboratory/miscellaneous-scripts while specific instructions such as directory ownership are described in this section.
Connor
VSFTP is very picky about home chroot permissions and will exit with 500 OOPS: vsftpd: refusing to run with writable root inside chroot()
if the chroot is writeable.