(clug-talk) =?iso-8859-1?B?U2VydmVyL05ldHdvcmsgQ29uZmlndXJhdGlvbnM/?=

[Johnny Stork]

This post should generate a great deal of personal opinion, but should be fun to debate/discuss since I imagine it could easily be translated to any small business and what they may need or want in their network, so here goes. I plan to rebuild/re-organise some servers I use in my home office. I may have missed some services in this list but I think I have most covered. The goals are: 1: Secure firewall/gateway/NAT/proxy/IDS server with some remote admin/access functionality. Thought I would use SSH to connect, start WEBMIN, allow access from an IP, and shut down when not being used. Obviously most services would be iptabled to something suitable. 2: Single, shared, NFS/SMB data location for all user �home� directories (Linux) and �My Documents� (Windows) 3: Redundancy for data location above (RAID-1) 4: LDAP and or SAMBA authentication for entire Network, domain controller? (have not set this up yet so another post will eventually follow) 5: Redundant/replicated database's (primarily MySQL which I have been using with replication). Failover on the data would also be nice and I may look into this later. 6: Large Multimedia storage/streaming (MP3, Streaming Video Server etc) 7: Reliable external/removable backups (I have an HP 20gb SCSI Tape Drive but will also grab another IDE CD-RW soon. 8: Network/Server/Services monitoring (Nagios...was Netsaint) 9: Internal Services: (POP, DHCP, NIS, SMTP, IMAP, LDAP, CVS, WEBMIN, VNC, MYSQL, NTP, NFS, SMB, SQUID) 10: External Services: (HTTP, CVS (forward to Penguin), MAILSTUDIO (has its own HTTP server on port 8000), SSH) 11: One machine with NT 2000 Advanced Server for Oracle and other Windows/Linux interoperability testing/configuring. 12: Database reporting (Crystal Info Desktop and Crystal Reports) 13: All Linux machines will also run the latest Mosix Kernel So this is what I was thinking as a configuration. The current drive configrations are not as I list below, but are the way in which I planned to set them up this week, or next. Its my bday this Saturday and so I am afraid to start just before then in case I have problems which will make it hard for me to go out and party without thinking I should be at home fixing something. Might end up at Shamrock, Whiskey or Maid (2nd ave) if anyone is interested (I will be the one surrounded by all the babes...yeah right). I have 3 or 4 machines to use to accomplish this (3 headless cluster nodes, 2 workstations and one laptop will remain as is for now). Gateway: Athlon 800 clocked to 920 2 NICS (eth0, eth1) Redhat 8.0 640mb ram /dev/hda (20gb, 7200, 133) Mounts (/boot, /) /dev/hdc (60gb, 7200, 133) Mounts (/tmp, swap, /mnt/Media (for MP3, video etc) HTTP, SQUID, POP, IMAP, SMTP, CVS (forward to Penguin), MAILSTUDIO (has its own HTTP server on port 8000), SSH, Portsentry, Hostsentry, Snort, NAT Gateway for Network, MySQL and VPN eventually. Penguin: Althlon 550 Redhat 8.0 256mn ram /dev/hda (20gb, 7200, 133) Mounts (/boot, /) RAID-1 ( /dev/hdb and /dev/hdc, 27gb, 7200, 66) Mounts (/home (for all machines), swap, /tmp, /var/log (stealth logging for all machines), /CVSROOT) 1st MySQL replication from Gateway DHCP, NIS, LDAP, CVS, MySQL, NTP, NFS, SMB-Athentication/Domain Controller Server: Althlon 550 Windows 2000 Advanced Server Oracle 8?? or 9i Seagate Info 2rd MySQL replication from Gateway, or Penguin (I have LOTS of personal/business stuff in DB and am very anal about redundancy) 256mb ram 20gb, 7200, 66 Mysql (was previously serving DHCP and Mysql replication): Pentium 200 128mb ram Redhat 8.0 Thought about using it as a simple gateway/firewall and would forward everything inside, but I think I need too much on the Gateway server for it to be adequate. Not sure what can be done with this...maybe make it a dedicated, non-ip stealth logging server for network? And for your listening pleasure while writing/contemplating your response (around 2200 MP3's (160kbps) and around 4000 coming). http://bohf27vfy23rk.ab.hsia.telus.net/Content/Netjuke/ email: [EMAIL PROTECTED] pw: penguin ________________________________________ Johnny Stork Calgary, AB Canada Open Solutions Open Source & Linux Solutions for Business http://www.open-solutions.ca http://www.opensourceinfo.net http://www.penguinportal.net Academic Computers http://www.academic-computers.com