Myrys » Historique » Version 116
Version 115 (Mehdi Abaakouk, 23/04/2015 09:19) → Version 116/143 (Thierry Boudet, 10/05/2015 18:16)
{{>toc}}
h1. Services
h2. Liens
* http://mixart-myrys.org/
* plan http://mixart-myrys.org/le-lieu/
* [[Myrys_Services| Services]]
* [[Myrys_TODO | Services TODO]]
h2. PC Services de Myrys
h3. Infos/Config PC
91.224.149.192/24
2a01:6600:8081:c000::/56
fe80::81:c0
Carte mere MSI MS-7756 = H77MA-G43 http://fr.msi.com/product/mb/H77MA-G43.html
Intel(R) Core(TM) i3-3220 CPU @ 3.30GHz 2C/4T http://ark.intel.com/products/65693/Intel-Core-i3-3220-Processor-(3M-Cache-3_30-GHz)
2x2 = 4 GB RAM
HDD 1.5TBx2 en RAID1+LVM
Soft installé dessus:
* Bmon pour superviser la bande passante
Idées de softs à installer dessus :
* bluemind pour une gestion de mail, calendrier/planning, contacts
* owncloud pour faire un serveur de fichiers avec synchro depuis android/linux/windows
h3. Config VLAN
Avant
<pre>
auto lo
iface lo inet loopback
auto eth0
auto eth0.3131
iface eth0.3131 inet static
address 91.224.149.192
netmask 255.255.255.0
gateway 91.224.149.254
vlan_raw_device eth0
auto eth0.20
iface eth0.20 inet static
address 10.20.0.29
netmask 255.255.255.0
vlan_raw_device eth0
</pre>
apres
<pre>
auto eth0
auto eth0.3131
iface eth0.3131 inet manual
vlan_raw_device eth0
auto br3131
iface br3131 inet static
bridge_ports eth0.3131
address 91.224.149.192
netmask 255.255.255.0
gateway 91.224.149.254
auto eth0.20
iface eth0.20 inet manual
vlan_raw_device eth0
auto br20
iface br20 inet static
bridge_ports eth0.20
address 10.20.0.29
netmask 255.255.224.0
</pre>
reload network
$ screen
$ ip link del eth0.3131 ; ip link del eth0.20 ; ip link set eth0 down ; service networking restart ;
h3. Configuration dnsmasq
dans /etc/dnsmasq.d/myrys.conf:
<pre>
interface=br20
enable-ra
dhcp-range=10.20.0.40,10.20.15.199,255.255.224.0,3600
dhcp-range=2a01:6600:8081:c0c0::2,2a01:6600:8081:c0c0:FFFF:FFFF:FFFF:FFFF,ra-only,64,3600
dhcp-option=option6:dns-server,[2a01:6600:8081:c0c0::1]
</pre>
Note: il faut le dnsmasq de wheezy pour que enable-ra soit reconnu
<pre>
dnsmasq_2.62-3+deb7u1_all.deb 100% 16KB 16.0KB/s 00:00
dnsmasq-base_2.62-3+deb7u1_amd64.deb 100% 362KB 362.2KB/s 00:00
dnsmasq-utils_2.62-3+deb7u1_amd64.deb
</pre>
Puis forwarding et masquerade dans /etc/rc.local :
<pre>
echo 1 > /proc/sys/net/ipv4/ip_forward
echo 1 > /proc/sys/net/ipv6/conf/all/forwarding
echo 1 > /proc/sys/net/ipv6/conf/default/forwarding
iptables -t nat -A POSTROUTING -s "10.20.0.0/24" ! -d "10.20.0.0/24" -j MASQUERADE
</pre>
IPv6 manuel dans /etc/rc.local
<pre>
ip -6 addr add fe80::81:c0/64 dev br3131
ip -6 addr add 2a01:6600:8081:c000::1/56 dev br3131
ip -6 route add default via fe80::31 dev br3131
ip addr add 10.20.0.1/24 dev br20
ip -6 addr add 2a01:6600:8081:c0c0::2/64 dev br20
</pre>
h1. Picostation
<pre>
MAC Lieu IP 10.20.0.x IP 169.254 Channel Note
10.20.0.1 PC chaussette
10.20.0.2 TODO switch
00:27:22:04:12:48 salle 3 vidéo 10.20.0.3 18.72 1 Pico2 APSalle3 PoE dans container tetalab
00:27:22:05:12:4B bureau 10.20.0.4 18.75 6 Pico2 APBureau PoE au bureau
00:27:22:05:12:E3 salle 1 théâtre 10.20.0.5 18.227 6 Pico2 APSalle1 PoE marqué salle AG
00:27:22:05:12:7F tetalab 10.20.0.6 18.127 11 Pico2 APTetalab Prise électrique derrière le container avec du jeu / reboot fréquent
10.20.0.7
00:27:22:05:13:29 TODO 10.20.0.8 19.41 11 Pico2 APTODO recup 20140831 / KO disparu 20140416 ? AP6 PoE a coté CISCO / reboot fréquent
10.20.0.9
00:27:22:41:D0:58 regie 10.20.0.10 208.88 1 Pico2 APRegie PoE marqué salle AG
A0:F3:C1:93:B0:61 TLS00 10.20.0.11 6 TPLink 740N TLS00 SSID tetaneutral.net
e8:94:f6:3f:40:2e Edition 10.20.0.12 TPLink 4300 APEdition dual band
10.20.0.13
10:fe:ed:82:99:f3 salle AG 10.20.0.14 11 TPLink 740N APAG salle AG cable marqué baie freebox
10.20.0.15
10.20.0.16
10.20.0.17
10.20.0.18
10.20.0.19
Old:
83:99 bureau sophie WRT54G 10.20.0.9 ??.?? KO offline / WRT54G a ne pas utiliser mauvaise configuration non compatible avec ubnt
00:27:22:05:13:16 local atelier Sophie 10.20.0.7 19.22 1 KO AP5 Switch de distribution pour .3 .6 et .7 disjoncteur a gauche sur le central / reboot fréquent
</pre>
10.20.0.1 pcmyrys (was: CISCO 3725)
10.20.0.2 unused was: CISCO 2900XL
10.20.0.3-19 Wifi
10.20.0.20 reserved guerby
10.20.0.21 tth Sun Blade IP1
10.20.0.22 tth machine multi-fonction THSF 2015 - _FatalError et tTh_ disponible
10.20.0.23 tth machine de stream audio pour THSF
10.20.0.24 tth raspberry pi IP4
10.20.0.28 pc VM sur chaussette
10.20.0.29 pcmyrys aka "chaussette"
10.20.0.30 nagios ttnn
dhcp-range=10.20.0.40,10.20.20.199
dhcp-range=2a01:6600:8081:c0c0::2,2a01:6600:8081:c0c0:FFFF:FFFF:FFFF:FFFF
AP1
10.20.0.3/24
10.20.0.1
00:27:22:04:12:48
AP2
10.20.0.4/24
10.20.0.1
00:27:22:04:12:4B
AP3
10.20.0.5/24
10.20.0.1
00:27:22:05:12:E3
AP4
10.20.0.6/24
10.20.0.1
00:27:22:04:12:7F
AP5
10.20.0.7/24
10.20.0.1
00:27:22:04:13:16
AP6
10.20.0.8/24
10.20.0.1
Linksys
? (192.168.123.1) at 00:16:b6:39:83:97 [ether] on wlan0
10.20.0.9 dev eth0.20 lladdr 00:16:b6:39:83:97 REACHABLE
Nmap scan report for 10.20.0.1
Host is up (0.0066s latency).
MAC Address: 00:11:21:8D:DA:F1 (Cisco Systems)
Nmap scan report for 10.20.0.2
Host is up (0.0072s latency).
MAC Address: 00:04:28:D1:0E:00 (Cisco Systems)
Nmap scan report for 10.20.0.3
Host is up (0.0068s latency).
MAC Address: 00:27:22:04:12:48 (Ubiquiti Networks)
Nmap scan report for 10.20.0.4
Host is up (0.0070s latency).
MAC Address: 00:27:22:04:12:4B (Ubiquiti Networks)
Nmap scan report for 10.20.0.5
Host is up (0.0073s latency).
MAC Address: 00:27:22:04:12:E3 (Ubiquiti Networks)
Nmap scan report for 10.20.0.6
Host is up (0.011s latency).
MAC Address: 00:27:22:04:12:7F (Ubiquiti Networks)
Nmap scan report for 10.20.0.7
Host is up (0.011s latency).
MAC Address: 00:27:22:04:13:16 (Ubiquiti Networks)
Nmap scan report for 10.20.0.8
Host 10.20.0.8 is up (0.0011s latency).
MAC Address: 00:27:22:04:13:29 (Ubiquiti Networks)
Nmap scan report for 10.20.0.9
Host 10.20.0.9 is up (0.00076s latency).
MAC Address: 00:16:B6:39:83:97 (Cisco-Linksys)
00:27:22:05:13:29
00:27:22:04:13:29
h1. APAG
Monitoring installation:
Sur l'AP:
<pre>
$ opkg update
$ opkg install xinetd
$ opkg install bash
</pre>
Sur h2:
<pre>
scp /etc/xinetd.d/check_mk 10.20.0.14:/etc/xinetd.d/
scp /usr/bin/check_mk_agent 10.20.0.14:/usr/bin/
</pre>
Sur l'AP:
<pre>
$ vi /usr/bin/check_mk_agent
# Change sheban to #!/bin/sh
# line 67, remove the keywork "function" from the run_cached function
# remove the virtualbox check.
$ /etc/init.d/xinetd enable
$ /etc/init.d/xinetd start
</pre>
h1. InfraMyrys
* [[InfraMyrys]]
h1. Fibres
* [[FibreMyrys]]
h1. Services
h2. Liens
* http://mixart-myrys.org/
* plan http://mixart-myrys.org/le-lieu/
* [[Myrys_Services| Services]]
* [[Myrys_TODO | Services TODO]]
h2. PC Services de Myrys
h3. Infos/Config PC
91.224.149.192/24
2a01:6600:8081:c000::/56
fe80::81:c0
Carte mere MSI MS-7756 = H77MA-G43 http://fr.msi.com/product/mb/H77MA-G43.html
Intel(R) Core(TM) i3-3220 CPU @ 3.30GHz 2C/4T http://ark.intel.com/products/65693/Intel-Core-i3-3220-Processor-(3M-Cache-3_30-GHz)
2x2 = 4 GB RAM
HDD 1.5TBx2 en RAID1+LVM
Soft installé dessus:
* Bmon pour superviser la bande passante
Idées de softs à installer dessus :
* bluemind pour une gestion de mail, calendrier/planning, contacts
* owncloud pour faire un serveur de fichiers avec synchro depuis android/linux/windows
h3. Config VLAN
Avant
<pre>
auto lo
iface lo inet loopback
auto eth0
auto eth0.3131
iface eth0.3131 inet static
address 91.224.149.192
netmask 255.255.255.0
gateway 91.224.149.254
vlan_raw_device eth0
auto eth0.20
iface eth0.20 inet static
address 10.20.0.29
netmask 255.255.255.0
vlan_raw_device eth0
</pre>
apres
<pre>
auto eth0
auto eth0.3131
iface eth0.3131 inet manual
vlan_raw_device eth0
auto br3131
iface br3131 inet static
bridge_ports eth0.3131
address 91.224.149.192
netmask 255.255.255.0
gateway 91.224.149.254
auto eth0.20
iface eth0.20 inet manual
vlan_raw_device eth0
auto br20
iface br20 inet static
bridge_ports eth0.20
address 10.20.0.29
netmask 255.255.224.0
</pre>
reload network
$ screen
$ ip link del eth0.3131 ; ip link del eth0.20 ; ip link set eth0 down ; service networking restart ;
h3. Configuration dnsmasq
dans /etc/dnsmasq.d/myrys.conf:
<pre>
interface=br20
enable-ra
dhcp-range=10.20.0.40,10.20.15.199,255.255.224.0,3600
dhcp-range=2a01:6600:8081:c0c0::2,2a01:6600:8081:c0c0:FFFF:FFFF:FFFF:FFFF,ra-only,64,3600
dhcp-option=option6:dns-server,[2a01:6600:8081:c0c0::1]
</pre>
Note: il faut le dnsmasq de wheezy pour que enable-ra soit reconnu
<pre>
dnsmasq_2.62-3+deb7u1_all.deb 100% 16KB 16.0KB/s 00:00
dnsmasq-base_2.62-3+deb7u1_amd64.deb 100% 362KB 362.2KB/s 00:00
dnsmasq-utils_2.62-3+deb7u1_amd64.deb
</pre>
Puis forwarding et masquerade dans /etc/rc.local :
<pre>
echo 1 > /proc/sys/net/ipv4/ip_forward
echo 1 > /proc/sys/net/ipv6/conf/all/forwarding
echo 1 > /proc/sys/net/ipv6/conf/default/forwarding
iptables -t nat -A POSTROUTING -s "10.20.0.0/24" ! -d "10.20.0.0/24" -j MASQUERADE
</pre>
IPv6 manuel dans /etc/rc.local
<pre>
ip -6 addr add fe80::81:c0/64 dev br3131
ip -6 addr add 2a01:6600:8081:c000::1/56 dev br3131
ip -6 route add default via fe80::31 dev br3131
ip addr add 10.20.0.1/24 dev br20
ip -6 addr add 2a01:6600:8081:c0c0::2/64 dev br20
</pre>
h1. Picostation
<pre>
MAC Lieu IP 10.20.0.x IP 169.254 Channel Note
10.20.0.1 PC chaussette
10.20.0.2 TODO switch
00:27:22:04:12:48 salle 3 vidéo 10.20.0.3 18.72 1 Pico2 APSalle3 PoE dans container tetalab
00:27:22:05:12:4B bureau 10.20.0.4 18.75 6 Pico2 APBureau PoE au bureau
00:27:22:05:12:E3 salle 1 théâtre 10.20.0.5 18.227 6 Pico2 APSalle1 PoE marqué salle AG
00:27:22:05:12:7F tetalab 10.20.0.6 18.127 11 Pico2 APTetalab Prise électrique derrière le container avec du jeu / reboot fréquent
10.20.0.7
00:27:22:05:13:29 TODO 10.20.0.8 19.41 11 Pico2 APTODO recup 20140831 / KO disparu 20140416 ? AP6 PoE a coté CISCO / reboot fréquent
10.20.0.9
00:27:22:41:D0:58 regie 10.20.0.10 208.88 1 Pico2 APRegie PoE marqué salle AG
A0:F3:C1:93:B0:61 TLS00 10.20.0.11 6 TPLink 740N TLS00 SSID tetaneutral.net
e8:94:f6:3f:40:2e Edition 10.20.0.12 TPLink 4300 APEdition dual band
10.20.0.13
10:fe:ed:82:99:f3 salle AG 10.20.0.14 11 TPLink 740N APAG salle AG cable marqué baie freebox
10.20.0.15
10.20.0.16
10.20.0.17
10.20.0.18
10.20.0.19
Old:
83:99 bureau sophie WRT54G 10.20.0.9 ??.?? KO offline / WRT54G a ne pas utiliser mauvaise configuration non compatible avec ubnt
00:27:22:05:13:16 local atelier Sophie 10.20.0.7 19.22 1 KO AP5 Switch de distribution pour .3 .6 et .7 disjoncteur a gauche sur le central / reboot fréquent
</pre>
10.20.0.1 pcmyrys (was: CISCO 3725)
10.20.0.2 unused was: CISCO 2900XL
10.20.0.3-19 Wifi
10.20.0.20 reserved guerby
10.20.0.21 tth Sun Blade IP1
10.20.0.22 tth machine multi-fonction THSF 2015 - _FatalError et tTh_ disponible
10.20.0.23 tth machine de stream audio pour THSF
10.20.0.24 tth raspberry pi IP4
10.20.0.28 pc VM sur chaussette
10.20.0.29 pcmyrys aka "chaussette"
10.20.0.30 nagios ttnn
dhcp-range=10.20.0.40,10.20.20.199
dhcp-range=2a01:6600:8081:c0c0::2,2a01:6600:8081:c0c0:FFFF:FFFF:FFFF:FFFF
AP1
10.20.0.3/24
10.20.0.1
00:27:22:04:12:48
AP2
10.20.0.4/24
10.20.0.1
00:27:22:04:12:4B
AP3
10.20.0.5/24
10.20.0.1
00:27:22:05:12:E3
AP4
10.20.0.6/24
10.20.0.1
00:27:22:04:12:7F
AP5
10.20.0.7/24
10.20.0.1
00:27:22:04:13:16
AP6
10.20.0.8/24
10.20.0.1
Linksys
? (192.168.123.1) at 00:16:b6:39:83:97 [ether] on wlan0
10.20.0.9 dev eth0.20 lladdr 00:16:b6:39:83:97 REACHABLE
Nmap scan report for 10.20.0.1
Host is up (0.0066s latency).
MAC Address: 00:11:21:8D:DA:F1 (Cisco Systems)
Nmap scan report for 10.20.0.2
Host is up (0.0072s latency).
MAC Address: 00:04:28:D1:0E:00 (Cisco Systems)
Nmap scan report for 10.20.0.3
Host is up (0.0068s latency).
MAC Address: 00:27:22:04:12:48 (Ubiquiti Networks)
Nmap scan report for 10.20.0.4
Host is up (0.0070s latency).
MAC Address: 00:27:22:04:12:4B (Ubiquiti Networks)
Nmap scan report for 10.20.0.5
Host is up (0.0073s latency).
MAC Address: 00:27:22:04:12:E3 (Ubiquiti Networks)
Nmap scan report for 10.20.0.6
Host is up (0.011s latency).
MAC Address: 00:27:22:04:12:7F (Ubiquiti Networks)
Nmap scan report for 10.20.0.7
Host is up (0.011s latency).
MAC Address: 00:27:22:04:13:16 (Ubiquiti Networks)
Nmap scan report for 10.20.0.8
Host 10.20.0.8 is up (0.0011s latency).
MAC Address: 00:27:22:04:13:29 (Ubiquiti Networks)
Nmap scan report for 10.20.0.9
Host 10.20.0.9 is up (0.00076s latency).
MAC Address: 00:16:B6:39:83:97 (Cisco-Linksys)
00:27:22:05:13:29
00:27:22:04:13:29
h1. APAG
Monitoring installation:
Sur l'AP:
<pre>
$ opkg update
$ opkg install xinetd
$ opkg install bash
</pre>
Sur h2:
<pre>
scp /etc/xinetd.d/check_mk 10.20.0.14:/etc/xinetd.d/
scp /usr/bin/check_mk_agent 10.20.0.14:/usr/bin/
</pre>
Sur l'AP:
<pre>
$ vi /usr/bin/check_mk_agent
# Change sheban to #!/bin/sh
# line 67, remove the keywork "function" from the run_cached function
# remove the virtualbox check.
$ /etc/init.d/xinetd enable
$ /etc/init.d/xinetd start
</pre>
h1. InfraMyrys
* [[InfraMyrys]]
h1. Fibres
* [[FibreMyrys]]