|
Somehow, I'm not comfortable with CLUG's email
address being used to access what I'd bet are pirated MP3s. *I* certainly
am not the owner of said music's original media. Maybe it's just me, but
even the discussion of that doesn't belong on the CLUG site, at least in my
opinion.
Other than that, rename that Athlon 550 to
"Legacy". Personally, I'd use the p200 as
the firewall. I can't see you running anything on it that will overtax it,
especially not when it has 128 megs of RAM. Shut down the virtual
consoles, and don't run X. 'course, you know your expected traffic
patterns better than I do.
Kev.
----- Original Message -----
Sent: Tuesday, October 29, 2002 11:41
AM
Subject: (clug-talk) Server/Network
Configurations?
This post should generate a great deal of personal
opinion, but should be fun to debate/discuss since I imagine it could easily
be translated to any small business and what they may need or want in their
network, so here goes.
I plan to rebuild/re-organise some servers I
use in my home office. I may have missed some services in this list but I
think I have most covered.
The goals are:
1: Secure
firewall/gateway/NAT/proxy/IDS server with some remote admin/access
functionality. Thought I would use SSH to connect, start WEBMIN, allow access
from an IP, and shut down when not being used. Obviously most services would
be iptabled to something suitable.
2: Single, shared, NFS/SMB data
location for all user “home” directories (Linux) and “My Documents”
(Windows)
3: Redundancy for data location above (RAID-1)
4: LDAP
and or SAMBA authentication for entire Network, domain controller? (have not
set this up yet so another post will eventually follow)
5:
Redundant/replicated database's (primarily MySQL which I have been using with
replication). Failover on the data would also be nice and I may look into this
later.
6: Large Multimedia storage/streaming (MP3, Streaming Video
Server etc)
7: Reliable external/removable backups (I have an HP 20gb
SCSI Tape Drive but will also grab another IDE CD-RW soon.
8:
Network/Server/Services monitoring (Nagios...was Netsaint)
9: Internal
Services: (POP, DHCP, NIS, SMTP, IMAP, LDAP, CVS, WEBMIN, VNC, MYSQL, NTP,
NFS, SMB, SQUID)
10: External Services: (HTTP, CVS (forward to
Penguin), MAILSTUDIO (has its own HTTP server on port 8000), SSH)
11:
One machine with NT 2000 Advanced Server for Oracle and other Windows/Linux
interoperability testing/configuring.
12: Database reporting (Crystal
Info Desktop and Crystal Reports)
13: All Linux machines will also run
the latest Mosix Kernel
So this is what I was thinking as a
configuration. The current drive configrations are not as I list below, but
are the way in which I planned to set them up this week, or next. Its my bday
this Saturday and so I am afraid to start just before then in case I have
problems which will make it hard for me to go out and party without thinking I
should be at home fixing something. Might end up at Shamrock, Whiskey or Maid
(2nd ave) if anyone is interested (I will be the one surrounded by all the
babes...yeah right).
I have 3 or 4 machines to use to accomplish this
(3 headless cluster nodes, 2 workstations and one laptop will remain as is for
now).
Gateway:
Athlon 800 clocked to 920
2 NICS (eth0,
eth1)
Redhat 8.0
640mb ram
/dev/hda (20gb, 7200, 133) Mounts (/boot,
/)
/dev/hdc (60gb, 7200, 133) Mounts (/tmp, swap, /mnt/Media (for MP3,
video etc)
HTTP, SQUID, POP, IMAP, SMTP, CVS (forward to Penguin),
MAILSTUDIO (has its own HTTP
server on port 8000), SSH, Portsentry,
Hostsentry, Snort, NAT Gateway for Network, MySQL and
VPN
eventually.
Penguin:
Althlon 550
Redhat 8.0
256mn
ram
/dev/hda (20gb, 7200, 133) Mounts (/boot, /)
RAID-1 ( /dev/hdb and
/dev/hdc, 27gb, 7200, 66) Mounts (/home (for all machines), swap, /tmp,
/var/log (stealth logging for all machines), /CVSROOT)
1st MySQL
replication from Gateway
DHCP, NIS, LDAP, CVS, MySQL, NTP, NFS,
SMB-Athentication/Domain Controller
Server:
Althlon
550
Windows 2000 Advanced Server
Oracle 8?? or 9i
Seagate Info
2rd
MySQL replication from Gateway, or Penguin (I have LOTS of personal/business
stuff in DB and
am very anal about redundancy)
256mb ram
20gb, 7200,
66
Mysql (was previously serving DHCP and Mysql
replication):
Pentium 200
128mb ram
Redhat 8.0
Thought about
using it as a simple gateway/firewall and would forward everything inside, but
I think I
need too much on the Gateway server for it to be
adequate.
Not sure what can be done with this...maybe make it a dedicated,
non-ip stealth logging server for
network?
And for your listening
pleasure while writing/contemplating your response (around 2200 MP3's
(160kbps) and around 4000
coming).
http://bohf27vfy23rk.ab.hsia.telus.net/Content/Netjuke/
email:
[EMAIL PROTECTED]
pw:
penguin
________________________________________
Johnny
Stork
Calgary, AB
Canada
Open Solutions
Open Source &
Linux Solutions for
Business
http://www.open-solutions.ca
http://www.opensourceinfo.net
http://www.penguinportal.net
Academic
Computers
http://www.academic-computers.com
;)
|
