Equipment/Norton: Difference between revisions
No edit summary |
No edit summary |
||
Line 13: | Line 13: | ||
|owner=LHS <!-- Provide a link to owners members page if other than LHS --> | |owner=LHS <!-- Provide a link to owners members page if other than LHS --> | ||
|origin=Unknown <!-- If via pledge, please link to the completed pledge page on the wiki --> | |origin=Unknown <!-- If via pledge, please link to the completed pledge page on the wiki --> | ||
|location= | |location=main comms room<!-- Floor, room/zone and location within that area --> | ||
|maintainers=Sysadmin team <!-- If someone is nominated as managing the upkeep of this item, please list them here. No links please; it currently breaks the template. --> | |maintainers=Sysadmin team <!-- If someone is nominated as managing the upkeep of this item, please list them here. No links please; it currently breaks the template. --> | ||
|template_ver=1.1 <!-- Please do not change. Used for tracking out-of-date templates --> | |template_ver=1.1 <!-- Please do not change. Used for tracking out-of-date templates --> | ||
Line 33: | Line 33: | ||
The `bge0` ethernet port is used as an uplink to the core switch. | The `bge0` ethernet port is used as an uplink to the core switch. | ||
= Network = | = Network = |
Revision as of 17:34, 31 October 2021
Norton is named after Edward Norton who is most known for circuit analysis techniques. He also had an interest in telecommunications. This name was mostly chosen because Norton was put in place to allow the analysis of Equipment/Boole's rebooting issues.
Norton is running pfSense 2.4.
Norton's purpose is providing routing and network uplink services via its dual gigabit ethernet port. It provides DNS, DHCP, and firewall services to the network.
Info
- IP: 10.0.20.1
- DNS: norton.london.hackspace.org.uk
- Operating System: pfSense 2.4 (Latest)
- Access: Internal HTTPS & SSH (Infrastructure Team & Trustees) and externally via non-standard ssh port.
Stats
Norton is a HP Proliant ML310e Gen 8 v2 server with a Xeon E3-1220 v3 processor and 8GB of RAM. It has three 500GB hard drives in (hardware) RAID 5, and the ZFS-on-root setup uses a `copies=3` for added integrity.
The `bge0` ethernet port is used as an uplink to the core switch.
Network
More information is kept in the Network section of this wiki.
Login
Members of the Admins LDAP group should be able to log into the web interface. This is achieved by allowing LDAP as a login source, and creating a group on PFSense names 'Admins' (matches the LDAP group name exactly) with admin privileges. This is achieved by hooking up RADIUS auth.