IT Notes

From MAGLab
Revision as of 04:51, 1 September 2024 by Blu (talk | contribs) (→‎Wireguard: added kevin)
Jump to navigation Jump to search

These are information technology notes that somebody told User:Blu to create.

Accounts on MAG Laboratory

Getting an account on this wiki is meant to be difficult. todo: image here

The normal account creation path would be to create an account on the MAG Laboratory "Members Only" section. Currently, this functionality is broken.

Please e-mail either the contact at maglaboratory or the webdev at maglaboratory to ask for a wiki account. It is also possible to DM in an appropriate managed social media account.

MAG Laboratory IT Services

Below is a directory of common services that may be used on the MAG Laboratory intranet and a copy of our certificate authority (CA) public key. You may want to install the CA on your computer to automatically trust signed MAG Laboratory intranet services.

Google Drive Link to MAG Laboratory CA Public Key

Before that, please ask for the default MAG Laboratory credentials to access anything on publicly available at the MAG Laboratory. Most services will be locked behind the default credentials.

3D Printer

The 3d printer is running a version of octoprint and can be accessed at the link below.

Creality.MAGLab

Intranet Speed Test

This service is archived.

The intranet speed test was be accessed at the link below. Remember that it only tests the link between your computer and the MAG Laboratory service host, not the internet.

Librespeed.MAGLab

Grafana

Intranet users may be interested in the status of MAG Laboratory's HAL or other devices on the intranet. All Grafana dashboards are set for public viewability. Follow the link below:

Grafana on Jane

Mattermost

Intranet makerspace task organization, checklist, and chat client

Mattermost on Wailord

Nextcloud

Intranet file storage and sharing server. Runs Nextcloud. Similar to Google Drive?

Nextcloud

Outside Cameras

These cameras should be accessed through VLC or another RTSP compatible player. The original camera streams are mirrored and should be viewed through the listed mirror below.

Note: that the default streams are at a rather large resolution. The substreams are recommended.

Camera URL
Camera 1 rtsp://maglab:[email protected]:8554/Camera1
Camera 1 Low Bandwidth rtsp://maglab:[email protected]:8554/Camera1_sub
Camera 2 rtsp://maglab:[email protected]:8554/Camera2
Camera 2 Low Bandwidth rtsp://maglab:[email protected]:8554/Camera2_sub

Wireguard

Wireguard is the name of a VPN solution which requires MAG Laboratory to pre-define IP addresses for VPN users.

These addresses are on the 192.168.128.0/24 subnet.

The following addresses are already assigned:

IP Assignment
.1 WG server
.2 Brandon's laptop
.3 Richard's laptop
.4 Brandon's Moto phone
.5 Brandon's Pixel phone
.8 Michael
.9 Tina
.10 Brandon's laptop
.11 Brandon's other phone
.12 Kevin-M4600
.13 Kevin-Phone

Minecraft

MAG Laboratory is running a modded minecraft server as of the time of this writing. The server has two standout technology mods for your enjoyment: Ad Astra and Tech Reborn. There is also Farmer's Delight and other quality of life mods for your enjoyment along with a host of performance enhancement mods.

The minecraft server originally started as an open house event on 2022-10-08.

Upon spawning into the minecraft world, the central base will be to your East. There is also our local village complete with commieblock to the East but across an ocean.

The client is downloadable from the following intranet link: https://stor.maglab/s/WWkHtM85YsnEffp

Local IT support is available.

Maintenance Log

2022-11-14: Minecraft client and server were updated to the latest versions of the mods. Still running 1.19.2.

IP Assignment on the MAG Laboratory Network

The local DHCP only assigns IP addresses from 10.110.0.100 to 10.110.0.245. Addresses below 100 are assigned statically by the DHCP and are listed here:

Note that the local DNS assigns addresses to *.maglab. This makes it so that you should find the router under router.maglab.

The Routers

IP Name Comment
.1 router CARP address for the HA router cluster.
.2 switch The PowerConnect 2724 switch mounted on the MAG Lab wall.
.3 router-front Wifi for the front of the space
.4 wifi Wifi for the back of the space
.5 opnsense00 The router and source of network services.
.6 opnsense01 The backup router and source of backup concurrent services.
.7 TL-SG108PE Managed Switch
.8 TL-SG108E Managed Switch
.9 PC 2724 Managed Switch

The MAG Lab Machines

IP Name Comment
.10 Proxmox The hosting for containers and VMs on the network.
.11 Toaster The computer sitting in the electronics room.
.12 MAGLAB-CRYZEN The computer in the conference room.
.13 proxmox01 Second container and VM host.
.14 proxmox02 Third container and VM host. Why do we need CEPH again?

The Internet of Trash and Single-Board Computers

IP Name Comment
.20 hal Host of the front display and most makerspace monitoring services.
.21 daisy Host of back-of-space makerspace monitoring services.
.23 creality Octoprint server for the creality 3d printer
.24 george Local GPS disciplined, Stratum 1 NTP time server
.25 Camera1 Security Camera, Outdoor, South-Facing
.26 Camera2 Security Camera, Outdoor, West-Facing
.27 iiip Octoprint server for the iiip 3d printer
.28 pulsexe Octoprint server for the Pulse XE 3d printer
.29 NPI1F9BEE The HP Laserjet P2035n laser printer
.30 Camera3 Security Camera, Indoor, Kitchen
.31 Camera4 Security Camera, Indoor, Electronics
.32 Camera5 Security Camera, Indoor, Shop Front
.33 Camera6 Security Camera, Indoor, Shop Machining
.34 Camera7 Security Camera, Indoor, Shop Hand Tools
.35 PrusaXL0 Prusalink interface for the Prusa XL 3d printer

Containers

IP Name Comment
.50 thelog Makerspace log aggregator
.51 connor Security camera recorder and mirror
.52 jane Makerspace Grafana server
.53 graylog Makerspace graylog server
.54 librespeed Makerspace wifi speed testing aid
.55 swarm-host Single board computer netboot server
.56 wailord Why are you running docker inside lxc???

Hosts the mattermost makerspace kanban boards.

.57 stor Makerspace local nextcloud
.58 wireguard VPN for the weirdos who keep asking Brandon to access the makerspace remotely

Virtual Machines and Cluster

IP addresses 10.110.0.64/27.

IP Name Comment
.64 debianct0 Hosted on proxmox01
.65 virtualDebian Hosted on Proxmox
.66 cryDebian Hosted on MAGLAB-CRYZEN
.67 toastDebian Hosted on Toaster

Notes on Migration and Configuration

The goal is for the actual configuration files (minus secrets) to be stored at https://github.com/MAGLaboratory/miscellaneous-scripts while specific instructions such as directory ownership are described in this section.

Connor

VSFTP is very picky about home chroot permissions and will exit with 500 OOPS: vsftpd: refusing to run with writable root inside chroot() if the chroot is writeable.