Difference between revisions of "Network"

From Sudo Room
Jump to navigation Jump to search
 
(95 intermediate revisions by 7 users not shown)
Line 2: Line 2:
''For more information about sudo room's systems in general, see [[Systems Administration]]''
''For more information about sudo room's systems in general, see [[Systems Administration]]''


The sudo room '''network''' provides internal networking, internet access, wireless service, and some externally accessible devices or services. Information about the various devices in use and their configuration is available below.
The sudo room '''network''' provides internal networking, internet access, wireless service, and some externally accessible devices or services.


== Router Conifugration ==
== Main PoE ethernet switch ===
* [[Router/Config/Interface|Configure Interface Addresses]]
* [[Router/Config/PortForward|Open a port to the outside world]]


== Network Info ==
* HP ProCurve 2910al-480-PoE+ switch [https://github.com/wwwhtml/hp-2910al-switch-firmware-upgrade/ How to manage / firmware update]
{|class="altop"
* username: manager or operator
* password: Ask juul or someone on the sysadmins list
* MAC address main switch: a0:b3:cc:ac:e7:c0
* MAC address backup switch (not turned on): c0:91:34:c4:12:00
* Port 1 is VLAN 1 untagged, acting as DHCP client, is management VLAN
* Management possible via HTTP (no SSL) or SSH
* Port 1 is for management, untagged no VLAN and requests an IP using DHCP (not plugged into anything right now)
* Port 2 and 3 are for tagged access to VLANs 2 and 3 (public and private)
* Ports 4 to 24 are for untagged access to VLAN 2 (public)
* Ports 25 to 48 are for untagged access to VLAN 3 (private)
 
== WAN ==
 
Internet access comes from LMI. The modem is connected through VDSL copper next to the Omni main electrical panels.
 
The modem is up in the rack area near '''saros''' (a desktop computer running Debian Stretch) which serves as the primary gateway router.
 
Our public IP is 142.254.26.9 aka '''room.sudoroom.org'''.
 
== LAN ==
* Wifi subnet: 100.64.64.0/22
** 100.64.64.2 to 100.64.64.49: legacy static range
** 100.64.64.50 to 100.64.67.250: DHCP
* Wired subnet: 192.168.0.0/16
** 192.168.1.2 to 192.168.41.254: unused for now
** 192.168.42.2 to 192.168.49.254: self assigned static range
** 192.168.50.1 to 192.168.200.254: DHCP
 
This list of static IPs may not be complete. Before choosing a static IP, please use ping or nmap to check it first.
 
By request, we can reserve an IP from the DHCP pool and/or forward ports for you. Please send the MAC address and/or desired ports to [mailto:sysadmins@omnicommons.org sysadmins@omnicommons.org]
 
{| class="wikitable sortable blue_lines"
|+ Machines with static IPs
! style="width:120px;" data-sort-type="IPAddress" | IPv4 Address
! style="width:110px;" data-sort-type="IPAddress" | IPv6 or MAC Address
! style="width:110px;" | Assigned to
! class="unsortable" | Notes
! Who set it up?
|-
| 192.168.42.1
|
|
=== External ===
| saros
==== Addresses ====
| router
{| class="wikitable blue_lines"
| [[User:yar|Yar]]
!style="width:100px;"| IP Address
! Port
!style="width:200px;"| Assigned to
|-
|-
|rowspan=5| 50.0.83.116
| 100.64.64.1
| NAT
|
| horchata
| saros
| router
| [[User:yar|Yar]]
|-
|-
| 80
| 192.168.42.2
|rowspan=3| tamale
| fd4f:dc5d:8d1::1
| [[space.local]]
| Former gateway/router. Located in the sudo room server "room".
| maxb and somebody
|-
|-
| 443
| 100.64.64.11
|
| omnidoor
| beaglebone black controlling the door
| juul and jake
|-
|-
| 222
| 100.64.64.82
| b8:27:eb:14:14:36
| vending2.local
| [[Hack-o-mat| Snackshop II vending machine]]
| [[User:jake|jake]]
|-
|-
| 2248
| 192.168.42.3
| wolfypi
| No IPv6 address
| No host name
| Dell PowerConnect 5324 24 port gigabit switch
| juul
|-
|-
| 50.0.83.1
| 192.168.42.4
|
| No IPv6 address
| Default Gateway
| No host name
|}
| Dell PowerConnect 5448 48 port gigabit switch
|
| juul
 
=== Internal ===
==== Ranges ====
* 192.168.0.0/24 (Internal)
==== Addresses ====
{| class="wikitable blue_lines"
!style="width:100px;"| IP Address
!style="width:200px;"| Assigned to
!Notes
|-
|-
| 192.168.1.1
| 192.168.42.10
| horchata
|  
| Cisco 515 Firewall
| nodeconf.local
| The sudo mesh node configuration and build server
| Primarily [[User:Juul|juul]] and maxb
|-
|-
| 192.168.1.2
| 100.64.64.88
| tamale
| 00:21:b7:80:59:47
| a raspberry pi on the wall
| ET0021B7805947.local
| [[Lexmark T654dn | Lexmark T654dn laser printer]]
| [[User:Jerkey|jerkey]]
|-
|-
| 192.168.1.3
| 192.168.42.12
| space
|  
|  
|
| [[Brother_HL-2270DW| Brother HL-2270DW laser printer]] (wifi)
| [[User:Yar|yar]]
|-
|-
| 192.168.1.5
| 100.64.64.20
| mchawking
| 00:21:9b:1d:85:c1
| wheelchair robot
| wasp.local
| [[Wasp.local| 3d printer desktop computer & giant_robot_arm serial host]]
| [[User:jake|jake]]
|-
|-
| 192.168.1.6
| 100.64.64.27
| sudochan1
| C0:3F:D5:6F:25:68
| Asus RT-N10+ Access Point (OpenWRT) on 2.4 ghz channel 1
| orangenuk.local
| [[bigtv| orange fanless PC connected to the big TV above skülgaard]]
| [[User:jake|jake]]
|-
|-
| 192.168.1.7
| 100.64.65.229
| sudochan6
| c0:8a:de:1d:59:b6
| Asus RT-N10+ Access Point (OpenWRT) on 2.4 ghz channel 6
|  
| ruckus_wifi_controller [https://github.com/sudoroom/ruckus-zonedirector1100-firmware-upgrade-process firmware upgrade process]
| daniel
|-
|-
| 192.168.1.8
| 100.64.65.233
| bro
| c0:8a:de:2f:c1:80
| [[Brother_HL-2270DW]] b&w laser printer
|  
|-
| ruckus_wifi_accesspoint in "phat beets" room (termination is on 2nd floor top right of mess on beam)
| 192.168.1.9
| daniel
| printmagic
| 3d printer desktop computer
|-
| 192.168.1.30
| the printer
| In desperate need of a cute name.
|-
| 192.168.1.48
| wolfypi
| future dns and other network services
|-
|-
| 192.168.1.49
| e1000
| Cisco E1000 AP running dd-wrt
|-
! 192.168.1.50-254
!colspan=2| '''DHCP'''
|}
|}
|}


== Wireless Access Points ==
== Wireless Access Points (OUTDATED INFO) ==
 
All of the indoor wifi is being served up by [[Mesh/OmniWifi|TP-Link N750 routers modified for PoE]] running OpenWRT and configured as bridges with static IPs.
 
{| class="wikitable blue_lines"
{| class="wikitable blue_lines"
!SSID
!SSID
Line 106: Line 146:
!Location
!Location
!Hardware
!Hardware
!Who set it up?
|-
|peoplesopen.net-omniroof
|open
|''n/a''
|Find Me
|100.64.64.4
|161 (5ghz)
|On flagpole on roof
|Ubiquiti NanoBeam
|[[User:Juul|juul]]
|-
|-
|sudoroom
|peoplesopen.net
|open
|open
|''n/a''
|''n/a''
|Find Me
|Find Me
|192.168.1.49
|100.64.64.2
|fine me
|11 (2.4ghz) and 36 (5ghz)
|Wire Rack above Teclo Closet
|Above entrance to CCL
|Linksys E1000
|TP-Link N750
|}
|[[User:Juul|juul]]
|-
|peoplesopen.net
|open
|''n/a''
|Find Me
|100.64.64.3
|6 (2.4ghz) and 165 (5ghz)
|middle of basement
|TP-Link N750
|[[User:Juul|juul]]
|-
|sudomesh
|open
|''n/a''
|Find Me
|192.168.42.18
|11
|zip-tied near server rack
|Ubiquiti Nanostation M2 Loco
|[[User:Juul|juul]]
|-
|Omni Ballroom
|open
|''n/a''
|Find Me
|192.168.42.19
|11
|Ballroom near stage
|Ubiquiti Picostation 2
|[[User:Maxb|maxb]]
}
 
[[Category:Network]]

Latest revision as of 22:58, 24 September 2024

For more information about sudo room's systems in general, see Systems Administration

The sudo room network provides internal networking, internet access, wireless service, and some externally accessible devices or services.

Main PoE ethernet switch =

  • HP ProCurve 2910al-480-PoE+ switch How to manage / firmware update
  • username: manager or operator
  • password: Ask juul or someone on the sysadmins list
  • MAC address main switch: a0:b3:cc:ac:e7:c0
  • MAC address backup switch (not turned on): c0:91:34:c4:12:00
  • Port 1 is VLAN 1 untagged, acting as DHCP client, is management VLAN
  • Management possible via HTTP (no SSL) or SSH
  • Port 1 is for management, untagged no VLAN and requests an IP using DHCP (not plugged into anything right now)
  • Port 2 and 3 are for tagged access to VLANs 2 and 3 (public and private)
  • Ports 4 to 24 are for untagged access to VLAN 2 (public)
  • Ports 25 to 48 are for untagged access to VLAN 3 (private)

WAN

Internet access comes from LMI. The modem is connected through VDSL copper next to the Omni main electrical panels.

The modem is up in the rack area near saros (a desktop computer running Debian Stretch) which serves as the primary gateway router.

Our public IP is 142.254.26.9 aka room.sudoroom.org.

LAN

  • Wifi subnet: 100.64.64.0/22
    • 100.64.64.2 to 100.64.64.49: legacy static range
    • 100.64.64.50 to 100.64.67.250: DHCP
  • Wired subnet: 192.168.0.0/16
    • 192.168.1.2 to 192.168.41.254: unused for now
    • 192.168.42.2 to 192.168.49.254: self assigned static range
    • 192.168.50.1 to 192.168.200.254: DHCP

This list of static IPs may not be complete. Before choosing a static IP, please use ping or nmap to check it first.

By request, we can reserve an IP from the DHCP pool and/or forward ports for you. Please send the MAC address and/or desired ports to sysadmins@omnicommons.org

Machines with static IPs
IPv4 Address IPv6 or MAC Address Assigned to Notes Who set it up?
192.168.42.1 saros router Yar
100.64.64.1 saros router Yar
192.168.42.2 fd4f:dc5d:8d1::1 space.local Former gateway/router. Located in the sudo room server "room". maxb and somebody
100.64.64.11 omnidoor beaglebone black controlling the door juul and jake
100.64.64.82 b8:27:eb:14:14:36 vending2.local Snackshop II vending machine jake
192.168.42.3 No IPv6 address No host name Dell PowerConnect 5324 24 port gigabit switch juul
192.168.42.4 No IPv6 address No host name Dell PowerConnect 5448 48 port gigabit switch juul
192.168.42.10 nodeconf.local The sudo mesh node configuration and build server Primarily juul and maxb
100.64.64.88 00:21:b7:80:59:47 ET0021B7805947.local Lexmark T654dn laser printer jerkey
192.168.42.12 Brother HL-2270DW laser printer (wifi) yar
100.64.64.20 00:21:9b:1d:85:c1 wasp.local 3d printer desktop computer & giant_robot_arm serial host jake
100.64.64.27 C0:3F:D5:6F:25:68 orangenuk.local orange fanless PC connected to the big TV above skülgaard jake
100.64.65.229 c0:8a:de:1d:59:b6 ruckus_wifi_controller firmware upgrade process daniel
100.64.65.233 c0:8a:de:2f:c1:80 ruckus_wifi_accesspoint in "phat beets" room (termination is on 2nd floor top right of mess on beam) daniel

Wireless Access Points (OUTDATED INFO)

All of the indoor wifi is being served up by TP-Link N750 routers modified for PoE running OpenWRT and configured as bridges with static IPs.

SSID Security Key MAC IP Channel Location Hardware Who set it up?
peoplesopen.net-omniroof open n/a Find Me 100.64.64.4 161 (5ghz) On flagpole on roof Ubiquiti NanoBeam juul
peoplesopen.net open n/a Find Me 100.64.64.2 11 (2.4ghz) and 36 (5ghz) Above entrance to CCL TP-Link N750 juul
peoplesopen.net open n/a Find Me 100.64.64.3 6 (2.4ghz) and 165 (5ghz) middle of basement TP-Link N750 juul
sudomesh open n/a Find Me 192.168.42.18 11 zip-tied near server rack Ubiquiti Nanostation M2 Loco juul
Omni Ballroom open n/a Find Me 192.168.42.19 11 Ballroom near stage Ubiquiti Picostation 2 maxb

}