![[Zobrazit/Skrýt nabídky vlevo]](img/icons/oleftcol.png "[Zobrazit/Skrýt nabídky vlevo]"){kind=icon}
![[Zobrazit/Skrýt nabídky vpravo]](img/icons/orightcol.png "[Zobrazit/Skrýt nabídky vpravo]"){kind=icon}
KlientDeltaUnoServizi
Delta Uno Servizi, s.p.a. (under construction)
Obecně
Společnost se zabývá archivací a digitalizací dokumentů jiných subjektů, jak soukromých tak i státních. Má několik hal, velikosti obvyklých rozměrů továrny, kam se dokumenty sváží, třídí a následně digitalizují.
Vzhledem k povaze podnikání je největší důraz kladen na bezpečnost proti poškození/ztrátě a odcizení informací.
Od nás mají firewall, cluster na nějaké síťové vybavení.
doplnit
web
DNS Servery:
ns1.uvt.cz
ns2.uvt.cz
Kontaktní osoba
Radchenko Anatoliy
Programátor firemního SW,
dodatečně správce sítě
mail: radchenko.anatoliy v(e) gmail.com
skype: anatoliy181076
Zarizeni serverovny
K úmístění v prostorách budovy nejsou žádné informace, ani k vybavení mimo známé síťové prvky. Krom instalovaných clusteru, firewallů a switche, jsou tam modem a další dva rackové switche. První ze switchů je stejný jako od nás, HP 2510-24G, ovšem bez přístupu, druhý unmanaged, nezjištěné značky.
Internet+firewall
Internet je od Telecom Italia.
Zalozni je adsl linka, s dynamický přidělovanou IP adresou. Modem je rovněž od telecom italia, jaké si "Alice" zařízení. Privedena je na interface eth0 obou firewallu.
Primarni internet je subnet 217.59.5.192/28 priveden na interface eth0.9 (ve switchi port c.1). Jak je priveden do switche neni znamo.
Firewall za modemem je od ÚVT, dva nody ve failover nastaveni. Kazdy router obsahuje vyjma main dalsi 2 routovaci tabulky, 100 (primar) a 200 (zaloha). V /etc/rc.d/rc.local a /etc/rc.d/ip.rules je nastaveni routingu pro 2 internety. Cronem se kazdou minutu spousti check netu ktery eventuelne prepne defaultni branu na zalohu. Na fw1 se v pripade prepnuti linky restartuje openvpn, na fw2 ne, aby se nespustila ovpn na obou routerech soucasne. OpenVpn je doplnena route_up skriptem, ktery vezme routy pullnute OVPNkou a prida je to routovacich tabulek 100 a 200.
primarni net:
| 217.59.5.192/28 | cely subnet | |
| 217.59.5.193 | GW - dodany router by TE | |
| 217.59.5.194 | IP FW1 | |
| 217.59.5.195 | IP FW2 | |
| 217.59.5.196 | IP float | |
sekundarni net:
| 192.168.100.0/24 | subnet za ADSL modemem | |
| 192.168.100.1 | floating IP | |
| 192.168.100.2 | FW1 | |
| 192.168.100.3 | FW2 | |
| 192.168.100.150 | ADSL modem (?) | |
Na firewallu jsou dvě VPNky, jedna spojuje kancelář s clustrem, spoj na stroj ital_5, druhá zajišťuje spoj do domečku.
Pristupy k serverum
floating IPs:
| 217.59.5.196, 10.3.10.121 |
fw1.deltauno.internal (aka fw1)
| IP: | 217.59.5.194 | |
| port: | 10002 | |
| uzivatel: | root | |
| heslo: | 1:19LU39jBw7E= | |
fw2.deltauno.internal (aka fw2)
| IP: | 217.59.5.195 | |
| port: | 10002 | |
| uzivatel: | root | |
| heslo: | 1:19LU39jBw7E= | |
array01.ital (aka array01)
| IP: | 10.112.0.11 | |
| port: | 22 | |
| uzivatel: | root | |
| heslo: | 1:19LU39jBw7E= | |
array02.ital (aka array02)
| IP: | 10.112.0.12 | |
| port: | 22 | |
| uzivatel: | root | |
| heslo: | 1:19LU39jBw7E= | |
doplnit
Pristupy k sitovym zarizenim
IPMI (array01)
| IP: | 10.112.0.254 | |
| uzivatel: | ADMIN | |
| heslo: | 1:R0ZdUVZCFRAk | |
IPMI (array02)
| IP: | 10.112.0.253 | |
| uzivatel: | ADMIN | |
| heslo: | 1:VldMQEdTBAY1 | |
ARECA (array01)
| IP: | 10.112.0.211 | |
| uzivatel: | admin | |
| heslo: | 1:vr6+vo4= | |
ARECA (array02)
| IP: | 10.112.0.212 | |
| uzivatel: | admin | |
| heslo: | 1:vr6+vo4= | |
DRAC (fw1)
| IP: | 10.112.0.200 | |
| uzivatel: | root | |
| heslo: | 1:19LU39jBw7E= | |
DRAC (fw2)
| IP: | 10.112.0.201 | |
| uzivatel: | root | |
| heslo: | 1:19LU39jBw7E= | |
HP 2510-24G (J9279A) (aka HP-SW_1)
| IP: | 10.112.0.250 | |
| uzivatel: | není, ptá se jen na heslo | |
| heslo: | 1:19LU39jBw7E= | |
Administrace UniFi? (aka unifi)
| IP: | 192.168.1.20:443 (https) | |
| uzivatel: | root | |
| heslo: | 1:+uzl+Ozj8+q67bCC | |
Napájení (UPS)
Smart-UPS 2200XLI RM 5U
doplnit
Backupy
DRBD Backup fyzicky
10.112.0.35
IPMI (backup-drbd1)
| IP: | 10.112.0.235 | |
| uzivatel: | ADMIN | |
| heslo: | 1:dmlibnk4 | |
Fyzické servery
fw1
| Hardware | Dell PowerEdge? 1950 | |
| CPU: | 1 | |
| RAM: | 2048 MB | |
| Typ: | Fyzický | |
| Funkce | firewall pro kancelar | |
| OS | Scientific Linux 6.3 (Carbon) | |
| Netbios/DNS | fw1.deltauno.internal | |
| Dalsi info: | firewall script v /etc/rc.d/fw-on , VPN klient | |
| TCP_IP: | ||
| eth0 | inet addr:192.168.100.1 Mask:255.255.255.0 | |
| eth1 | ||
| eth1.112@eth1 | inet addr:10.112.0.2 Bcast:10.112.0.255 Mask:255.255.255.0 | |
| inet addr:10.112.0.1 Mask:255.255.255.0 | ||
| eth1.20@eth1 | inet addr:10.10.10.2 Bcast:10.10.10.255 Mask:255.255.255.0 | |
| inet addr:10.10.10.1 Mask:255.255.255.0 | ||
| eth1.21@eth1 | inet addr:192.168.1.2 Bcast:192.168.1.255 Mask:255.255.255.0 | |
| inet addr:192.168.1.1 Mask:255.255.255.0 | ||
| tap0 | inet addr:10.3.10.121 Bcast:10.3.10.255 Mask:255.255.255.0 | |
| tap1 | inet addr:172.17.16.100 Bcast:172.17.16.255 Mask:255.255.255.0 | |
| lo | inet addr:127.0.0.1 Mask:255.0.0.0 | |
fw2
| Hardware | Dell PowerEdge? 1950 | |
| CPU: | 1 | |
| RAM: | 2048 MB | |
| Typ: | Fyzický | |
| Funkce | firewall pro kancelar | |
| OS | Scientific Linux 6.3 (Carbon) | |
| Netbios/DNS | fw2.deltauno.internal | |
| Dalsi info: | firewall script v /etc/rc.d/fw-on , VPN klient | |
| TCP_IP: | ||
| eth0 | ||
| eth1 | ||
| eth1.112@eth1 | inet addr:10.112.0.3 Bcast:10.112.0.255 Mask:255.255.255.0 | |
| eth1.20@eth1 | inet addr:10.10.10.3 Bcast:10.10.10.255 Mask:255.255.255.0 | |
| eth1.21@eth1 | inet addr:192.168.1.3 Bcast:192.168.1.255 Mask:255.255.255.0 | |
| lo | inet addr:127.0.0.1 Mask:255.0.0.0 | |
array01
| Hardware | Supermicro (custom) | |
| CPU: | 1 | |
| RAM: | 64536 MB (64GB) | |
| Typ: | Fyzický | |
| Funkce | virtualizacni nod | |
| OS | Scientific Linux 6.3 (Carbon) | |
| Netbios/DNS | array01.ital | |
| Dalsi info: | standardni infiniband propoj, drbd, openvz a libvirt | |
| TCP_IP: | ||
| eth0 | ||
| eth1 | ||
| ib0 | inet addr:172.22.0.1/24 Bcast:172.22.0.255 Mask:255.255.255.0 | |
| ib1 | inet addr:172.22.1.1/24 Bcast:172.22.1.255 Mask:255.255.255.0 | |
| eth1.112@eth1 | ||
| virbr112 | inet addr:10.112.0.11 Bcast:10.112.0.255 Mask:255.255.255.0 | |
| eth1.20@eth1 | ||
| virbr20 | ||
| eth1.21@eth1 | ||
| vrbr21 | ||
| lo | inet addr:127.0.0.1 Mask:255.0.0.0 | |
array02
| Hardware | Supermicro (custom) | |
| CPU: | 1 | |
| RAM: | 64536 MB (64GB) | |
| Typ: | Fyzický | |
| Funkce | virtualizacni nod | |
| OS | Scientific Linux 6.3 (Carbon) | |
| Netbios/DNS | array02.ital | |
| Dalsi info: | standardni infiniband propoj, drbd, openvz a libvirt | |
| TCP_IP: | ||
| eth0 | ||
| eth1 | ||
| ib0 | inet addr:172.22.0.1/24 Bcast:172.22.0.255 Mask:255.255.255.0 | |
| ib1 | inet addr:172.22.1.1/24 Bcast:172.22.1.255 Mask:255.255.255.0 | |
| eth1.112@eth1 | ||
| virbr112 | inet addr:10.112.0.12 Bcast:10.112.0.255 Mask:255.255.255.0 | |
| eth1.20@eth1 | ||
| virbr20 | ||
| eth1.21@eth1 | ||
| vrbr21 | ||
| lo | inet addr:127.0.0.1 Mask:255.0.0.0 | |
Virtuály
netserv
| Hardware | ovz_netserv, veid 2001 | |
| CPU: | 1 | |
| RAM: | 1024 MB | |
| Typ: | Virtual | |
| Funkce | ||
| OS | Scientific Linux 6.3 (Carbon) | |
| Netbios/DNS | netserv.deltauno.org | |
| Dalsi info: | ||
| TCP_IP: | ||
| eth0 | inet addr:192.168.1.10 Bcast:192.168.1.255 Mask:255.255.255.0 | |
| eth1 | inet addr:10.10.10.10 Bcast:10.10.10.255 Mask:255.255.255.0 | |
| lo | inet addr:127.0.0.1 Mask:255.0.0.0 | |
intranet
| Hardware | ovz_systema, veid 2003 | |
| CPU: | 4 | |
| RAM: | 4096 MB | |
| Typ: | Virtual | |
| Funkce | ||
| OS | Scientific Linux 6.3 (Carbon) | |
| Netbios/DNS | intranet.deltauno.internal | |
| Dalsi info: | ||
| TCP_IP: | ||
| eth0 | inet addr:192.168.1.100 Bcast:192.168.1.255 Mask:255.255.255.0 | |
| eth1 | inet addr:10.10.10.100 Bcast:10.10.10.255 Mask:255.255.255.0 | |
| lo | inet addr:127.0.0.1 Mask:255.0.0.0 | |
novell
| Hardware | ovz_novell, veid 2004 | |
| CPU: | 4 | |
| RAM: | 4096 MB | |
| Typ: | Virtual | |
| Funkce | ||
| OS | Scientific Linux 6.3 (Carbon) | |
| Netbios/DNS | novell.deltauno.internal | |
| Dalsi info: | ||
| TCP_IP: | ||
| eth0 | inet addr:10.10.10.98 Bcast:10.10.10.255 Mask:255.255.255.0 | |
| lo | inet addr:127.0.0.1 Mask:255.0.0.0 | |
| Hardware | ovz_mail, veid 2005 | |
| CPU: | 2 | |
| RAM: | 2048 MB | |
| Typ: | Virtual | |
| Funkce | postovni server pro kancelar, imap + web-interface | |
| OS | Scientific Linux 6.3 (Carbon) | |
| Netbios/DNS | mail.deltauno.internal | |
| Dalsi info: | ||
| TCP_IP: | ||
| eth0 | inet addr:192.168.1.90 Bcast:192.168.1.255 Mask:255.255.255.0 | |
| eth1 | inet addr:10.10.10.90 Bcast:10.10.10.255 Mask:255.255.255.0 | |
| lo | inet addr:127.0.0.1 Mask:255.0.0.0 | |
unifi
| Hardware | debian-unifi | |
| CPU: | 2 | |
| RAM: | 2048 MB | |
| Typ: | KVM | |
| Funkce | server s UniFi-manager? a administraci | |
| OS | Debian Linux 7 | |
| Netbios/DNS | unifi.deltauno.internal | |
| Dalsi info: | ||
| TCP_IP: | ||
| eth0 | inet addr:192.168.1.20 Bcast:192.168.1.255 Mask:255.255.255.0 | |
| eth1 | inet addr:10.10.10.20 Bcast:10.10.10.255 Mask:255.255.255.0 | |
| lo | inet addr:127.0.0.1 Mask:255.0.0.0 | |
Swtiche a jine
HP-SW_1
| Hardware | ||
| Typ: | HP 2510-24G Switch (J9279A) | |
| Funkce | ||
| Netbios/DNS | ||
| Dalsi info: | ||
| TCP_IP: | ||
| anyport | inet addr:10.112.0.250 Bcast:10.112.0.255 Mask:255.255.255.0 | |
Hosting u nás
Cluster Casablanca
Virtualni stroje na clusteru:
doplnit
![[přepni]](javascript:icntoggle('mod-Application_Menuleft1','module.png'); "[přepni]"){kind=small}