Computing Infrastructure: Difference between revisions

From All Hands Active Wiki
Jump to navigation Jump to search
Nova1313 (talk | contribs)
Nova1313 (talk | contribs)
Line 143: Line 143:
===Current state===
===Current state===
Specs:
Specs:
PC1 - Win 10 - DEMO (LDAP)
* PC1 - Win 10 - DEMO (LDAP)
PC2 - Win 7 AMD A10-5800K 3.8GHZ 8GB (MAKER Login)
* PC2 - Win 7 AMD A10-5800K 3.8GHZ 8GB (MAKER Login)
PC3 - Win 7 AMD A10-5800K 3.8GHZ 8GB (MAKER Login)  
* PC3 - Win 7 AMD A10-5800K 3.8GHZ 8GB (MAKER Login)  
PC4 - Win 7 AMD A10-5800K 3.8GHZ 8GB (MAKER Login)  
* PC4 - Win 7 AMD A10-5800K 3.8GHZ 8GB (MAKER Login)  
PC5 - Win 7 AMD A10-5800K 3.8GHZ 8GB (MAKER Login)
* PC5 - Win 7 AMD A10-5800K 3.8GHZ 8GB (MAKER Login)


===Future state===
===Future state===

Revision as of 19:29, 30 December 2015

Networks

Internets

Internet connection is provided by Comcast.

More information about the internet connection and trouble shooting can be found here: Internets

To administer the internets use the web interface located at http://10.1.10.1

Current config owners: Nick Ristow/Tyler Worman/Nate Yost/

WIFI

WIFI is provided by the Mikrotik Router and routed through the Comcast Connection

2 DHCP enabled SSID's are provided.

SSID: ALLHANDSACTIVE

As of: 11/15/2015 ALLHANDSACTIVE is presently the only general use wifi connection. The password is posted around the shop.

Future state: Public connection, throttled to 100Kbps per user TX and RX segregated from the rest of the local LAN and private wifi. Essentially just a free wifi hotspot.

SSID: ALLHANDSACTIVE-PRIVATE

As of: 11/15/2015 Configuration of this connection is not complete.

To Do:

  • Get this connection routing through to the internet.
  • Get this connection obeying a TX/RX throttle.
  • Remove the throttle from this connection and transition that throttle configuration to the ALLHANDSACTIVE SSID
  • Enable authentication of this SSID via LDAP provided by Computing Infrastructure: HUB@AHA

Final state: Un-throttled Member only WIFI. Authenticated via our membership usernamme/passwords.

LAN

Router/Switches

Router Main

Mikrotik Routerboard RB2011UiAS-2HnD-IN Router Instructions: (http://wiki.mikrotik.com/wiki/Manual:TOC)

Maintained by Tyler Worman (use members mailing list for contact)

Runs RouterOS 6. Upgrade rights for versions through RouterOS 8 Routerboard RB2011UiAS-2HnD-IN

Web interface is at: http://10.1.10.3/

Workstation Switch

Located in center of workstations

Todo: List model here

BYB Switch

Located in the back room.


Printer

Model: FILL ME IN! IP Address: 10.1.10.2

BYB Cardswipe

Model: Fill me in! IP Address:

Owner: Used for BYB employee's to clock in and out.

NAS

The NAS is known as HUB@AHA. More information about this project can be found here: Computing Infrastructure: HUB@AHA

DNS (LAN and ALLHANDSACTIVE-PRIVATE only): hub.allhandsactive.com

Future state

This project is scheduled for deployment 1/1/2016. Contact Tyler Worman for more information!

A centralized location that provides backed up member storage space, LDAP directory server, local web server, internal task tracker (trello like), web IRC front end, and backup for AHA.

To Do

See the project page for more information. Lots to do here! Roll out is end of 2015.

Backups

Future state: Backups of machine specific configurations are not done. Backups of user directories and VM/Workstation images are done nightly to the NAS itself NAS is weekly synced weekly to Tyler's offsite NAS.

Workstations

CNC

This machine is used to run the CNC machine in the back room.

Software

Config

Configs are backed up here: List GIT location

Harware

Specs: List them here Connnected to: CNC_Machine

Maintainer

Maintained by: Tyler Worman

Licenses

Licenses to Mach3, VCarve Pro and Cut3D owned by: Tyler Worman

Todo

  • Update the tool index in Vcarve and Cut3D
  • Backup config for Vcarve and Mach3 to Tyler's GIT/BitBucket repository
  • Wipe machine
  • Install a Windows 7 license.
  • Install CNC software
  • Lock machine down to admin and LDAP enabled members (as non-admin accounts!)

Login

Username: CNC

Password: Ask Tyler

LASER

Hardware

Specs: List them here

Software

List software here

Maintainer

Who owns and maintains the PC and it's software?

To Do

  • Verify with Greg/BYB that it's still okay to LDAP enable the machine login
  • Get list of valid users from Greg
  • Create LDAP group on NAS
  • Install pGina on machine
  • Fully update machine and software
  • lock down login to admin and pGina NAS users.

6 Public Workstations

Current state

Specs:

  • PC1 - Win 10 - DEMO (LDAP)
  • PC2 - Win 7 AMD A10-5800K 3.8GHZ 8GB (MAKER Login)
  • PC3 - Win 7 AMD A10-5800K 3.8GHZ 8GB (MAKER Login)
  • PC4 - Win 7 AMD A10-5800K 3.8GHZ 8GB (MAKER Login)
  • PC5 - Win 7 AMD A10-5800K 3.8GHZ 8GB (MAKER Login)

Future state

6 Managed Windows 10 workstations. Software updated by Ninite, Windows updates kept up to date by service account script.

1 Admin account on each machine.

User's login via LDAP enabled logins provided by HUB@AHA via http://pgina.org/.

Login mount of AHA software (VirtualBox Ubuntu Images)

Login mount of AHA shared folder (see HUB@AHA)

Easy to wipe and restore with documented instructions for doing this located here: Computer Infrastructure: Restoring Workstations

Easy to build a new image from scratch with instructions for doing this here: Computer Infrastructure: Building new Workstation image

To do

  • Write script to perform offline, silent, no reboot windows updates for all machines. (https://stackoverflow.com/questions/16180265/automatically-update-windows-fully)
  • Upgrade 1 machine to windows 10 and authenticate it to allhandsactive gmail by Jan 2nd.
  • Wipe that machine and do a fresh base windows 10 install.
  • Install AHA base image software
  • Install pGina for Login via HUB@AHA
  • Setup login script to mount home directory for Windows box as the user folder on the NAS.
  • Setup login script to mount the shared AHA directory for Windows box.
  • Setup login script to mount the AHA provided optional software directory to the Windows box.
  • Backup this state to the NAS.
  • Allow demo of machine until 1/11 weeks by users and during this time provision members with accounts.
  • Begin upgrading other machines to windows 10, authenticating them to allhandsactive gmail and then wipe and restore with central image from NAS on 1/11

AHA installed software

  • Arduino Studio
  • Ninite
    • Chrome
    • Firefox
    • 7 ZIP
    • VLC
    • Java 8
    • .Net 4.6
    • Python
    • FileZilla
    • Notepad ++
    • JDK 8
    • WinSCP
    • PuTTY
    • Eclipse
    • Paint.Net
    • Gimp
    • Inkscape
    • LibreOffice
    • PDFCreator
    • Microsoft Security Essentials
    • ImgBurn
    • RealVNC
    • Classic Start
    • Steam

Restore Workstations

Guide here: Computer Infrastructure: Restoring Workstations

The workstation restoration process involves wiping the machine, copying down an image from the NAS and running updates.

Virtual Machines

Future State: HUB@AHA has 1 Ubuntu VirtualBox image that get mounted to the 6 public workstations at login. It's maintained by AHA and configured with default settings for the space. You may clone the image for your personal use.

Todo

  • Create base image
  • Install additional software
  • Configure home directory mount via LDAP.
  • Install VirtualBox extensions.
  • Mark it read only.
  • Share to network via NAS.
  • Configure login script to mount this share at login.

Base Image

A base install of the latest LTR Ubuntu image that is reasonably patched.

Additional software

These packages are installed in addition to the base install.

If you need additional packages please contact Tyler Worman to request a base package be added to the distribution.

Usage pattern

Copy the VM to your private folder on the NAS and use as needed. Wipe/Restore from base image as needed.