69 lines
1.4 KiB
Text
69 lines
1.4 KiB
Text
|
# Introduction
|
||
|
|
|
||
|
|
This is assorted notes on what could go into the MakerFLOSS lab
|
||
|
|
|
||
|
|
# Requirements
|
||
|
|
|
||
|
|
- A space to experiment with new software
|
||
|
|
- A place where software could be "test run" for some time
|
||
|
|
- A place where errors are not causing IP loss
|
||
|
|
- even if errors are real big !!
|
||
|
|
|
||
|
|
|
||
|
|
## More details
|
||
|
|
|
||
|
|
- firewalled off from production network of Maker Space
|
||
|
|
- accessible from outside
|
||
|
|
- potential for exposing services externally
|
||
|
|
|
||
|
|
## Non functions
|
||
|
|
|
||
|
|
- Cost conscious
|
||
|
|
- support constant change
|
||
|
|
|
||
|
|
# Proposals
|
||
|
|
|
||
|
|
## Short term
|
||
|
|
|
||
|
|
A VPS in a (European) cloud with one public IP
|
||
|
|
|
||
|
|
## Midterm
|
||
|
|
|
||
|
|
Complement the VPS with some local Hardware. This include
|
||
|
|
|
||
|
|
- Firewall with zones implemented using VLANs, DNS/DHCP
|
||
|
|
- Netbird access to services in Lab
|
||
|
|
- switching infrastructure
|
||
|
|
- a primary "stable" proxmox host
|
||
|
|
- a seconday experimentation machine
|
||
|
|
- a Backup server
|
||
|
|
- Use a tunnel to establish external access via public IP on VPS
|
||
|
|
|
||
|
|
### Basic Services in Lab
|
||
|
|
|
||
|
|
- Git: Forjego
|
||
|
|
- ...
|
||
|
|
|
||
|
|
### Diagram
|
||
|
|
|
||
|
|
```mermaid
|
||
|
|
graph TD;
|
||
|
|
A[Internet] --> B[OrangeMaker Firewall];
|
||
|
|
A --> H[FLOSS VPS];
|
||
|
|
B --> C[Production Network];
|
||
|
|
B --> D[FLOSS Firewall];
|
||
|
|
D --> E[Switch];
|
||
|
|
D --> F[Pre-production Zone];
|
||
|
|
E --> G[Proxmox Server 2];
|
||
|
|
```
|
||
|
|
|
||
|
|
## Long term
|
||
|
|
|
||
|
|
replace VPS with a direct IP pinhole access
|
||
|
|
|
||
|
|
replace the "stable" FLOSS services running on VPS with modules runing on "stable" machine locally
|
||
|
|
|
||
|
|
|
||
|
|
# Design of Mid term solution
|
||
|
|
|