first cut of lab design

2026-05-10 11:13:52 +02:00 · 2026-05-10 11:13:52 +02:00 · f36817a32d
commit f36817a32d
parent 888a28a947
1 changed files with 68 additions and 0 deletions
--- a/docs/labdesign
+++ b/docs/labdesign
@ -0,0 +1,68 @@
+# Introduction
+
+This is assorted notes on what could go into the MakerFLOSS lab
+
+# Requirements
+
+- A space to experiment with new software
+- A place where software could be "test run" for some time
+- A place where errors are not causing IP loss
+  - even if errors are real big !!
+
+
+## More details
+
+- firewalled off from production network of Maker Space
+- accessible from outside
+- potential for exposing services externally 
+
+## Non functions
+
+- Cost conscious
+- support constant change
+
+# Proposals
+
+## Short term
+
+A VPS in a (European) cloud with one public IP
+
+## Midterm
+
+Complement the VPS with some local Hardware. This include
+
+- Firewall with zones implemented using VLANs, DNS/DHCP
+- Netbird access to services in Lab
+- switching infrastructure
+- a primary "stable" proxmox host
+- a seconday experimentation machine
+- a Backup server
+- Use a tunnel to establish external access via public IP on VPS
+
+### Basic Services in Lab
+
+- Git: Forjego
+- ...
+
+### Diagram
+
+```mermaid
+graph TD;
+    A[Internet] --> B[OrangeMaker Firewall];
+    A --> H[FLOSS VPS];
+    B --> C[Production Network];
+    B --> D[FLOSS Firewall];
+    D --> E[Switch];
+    D --> F[Pre-production Zone];
+    E --> G[Proxmox Server 2];
+```
+
+## Long term
+
+replace VPS with a direct IP pinhole access
+
+replace the "stable" FLOSS services running on VPS with modules runing on "stable" machine locally
+
+
+# Design of Mid term solution
+