Differences

This shows you the differences between two versions of the page.

--- networkwrangler [2010/12/05 16:37] – external edit 127.0.0.1
+++ networkwrangler [2017/01/14 14:24] (current) – external edit 127.0.0.1
@@ Line 12: / Line 12: @@
 ==== Current Team ====
-For [[Penguicon2010|Penguicon 2010]], the team consists of [[people:chriskrieger|Chris Krieger]] and folks that wish to help him in his quest to provide better network connectivity and better Internet service.
+For [[Penguicon2012|Penguicon 2012]], the team consists of [[people:chriskrieger|Chris Krieger]] and the rest of the MPCON Lan staff.
-==== Status ====
+==== Pengicon 2012 ====
-  * ** Internet **
+With the move to a new hotel for Penguicon 2012, there were some new challanges, as well as some new advantages. For example, the new hotel has a variable DS3 internet connection, providing up to 48Mbit connection to the internet. Pengucion leased a 20mbit portion of this line for its use this year.
-    * Hotel Internet 5 T1 lines, Hotel states 200-300 connections maximum on their network.
-    * Will be separating con floor with a completely separate wired and wireless network.
-    * See Network section for plans for the floor network.
-  * ** Wireless Access **
+However the Hotel did not have any preconfigured convention floor wireless. Their wireless consisited access points in the guest rooms, and 2 acess points in the lobby supporting up to 25 users each. This simply would not do.
-    * [[people:chriskrieger|Chris Krieger]] are discussing a sponsorship by Cisco through which a switch and access points could be set up for the weekend.
-  * ** Computer Lounge **
-    * [[people:chriskrieger|Chris Krieger]] Will search out groups to populate the lounge with various Open Source offerings.
-    * [[people:MarshallNewrock|Marshall Newrock]] is our contact for GLLUG, who wished to do a Linux table.
-==== Con Floor Network =====
+-Network Design
-Subnets
+With the return of mythlogic and MPCon this year, it was decided to run the majority of the network function off of MPCon owned equipment. Mpcon supplied 3 Cisco 2950 24 port switches, with GBIC uplink ports and another source used a 2 Cisco 3750-x 48 Port gig switches. 2950's were placed in the hotel's 2 IDF's, one at each end of the convention floor, and the 3750-x were deployed in the MDF and the Marquis ball room. Drops were provided by the hotel in the Thomas, Royce, Bugatti, Dearborn, Stutz,  Marquis, and registration for the deployment of lan cables and wireless access points.
-    * Public
-      * Domain public.penguicon.local
-      * Ip-range 10.0.0.0/21 Total IP addresses 2046
-      * VLAN 2
-      * This network will be public accessible via wireless and wired in the computer lounge.
-    * Staff
+-Technical Details
-      * Domain staff.penguicon.local penguicon.local
+The network was divided into 2 VLANS
-      * IP-range 192.168.225.0/24 Total IP addresses 254
+Vlan 20
-      * VLAN 1
+Wired Network
-      * This network will have most of the servers, and infrastructure. Registration, presenters and other VIPs.
+.9.8.0/22
-      * Wireless portion will be encrypted to WPA2 with a strong pass-phrase.
+mpcon.lan
-Estimated Server requirements
-      * DHCP - Server runs DHCP and master DNS server for dynamic DHCP
-      * DNS x2  - Primary resolver servers for both subnets
-      * MYSQL - SQL server for all needed back-end infrastructure and websites.
-      * SYSLOG - server for collecting and monitoring system logs from all other system and network devices
-      * WEB - server for running any web servers, including web FRONTEND for SYSLOG and SNORT.
-      * SNORT - several sensors placed at key places to monitor for dangerous traffic, and hacking attempts against important infrastructure.
-      * FIREWALL - border device that routes between both networks and our internet connection.
-      * ZENOSS - Monitoring system for all infastrucre, allowing NOC personnel to monitor for outages and issues.
-      * REVERSEPROXY - System placed on the public network to allow access to the websites on the staff network.
-      * CACTI - pretty public graphics of usage of the network.
-      * FILES - File server supporting http, samba, nfs with Distro's and updates
-Internet Requirements
+Vlan 21
-      * Estimate 16-20mb down 2mb up Bandwidth
+Wireless Network
+.16.28.0/22
+public.pengucion.lan
-Operating systems
+-Hardware
-      * Planning for all servers to have Centos 5.
+x Dell GX 240 Intel P4 1.8ghz Desktops
-      * All systems will be base-lined to CIS Level 1 (Center for Internet Security http://www.cisecurity.org/en-us/)
+These systems were running Centos 6.2 with a CIS Benchmark level 1 harding standard.
+The DHCP server ran DHCPD, and the DNS was ran off of BIND
-Firewall
+DHCP server (with Master DNS)
-      * Likely will be configured using IPCOP or another Linux based Firewall Distro
+DNS Servers (slaves)
-      * Will be blocking P2p and torrent traffic, to keep internet fast for everyone
-      * QOS for traffic priority to Staff network (some presenters have requested this)
-      * Large downloads (over 3mb) will be limited to 128kps on the public network. Keeps everyone's internet fast
-      * Caching proxy server to help improve internet speed.
-Applications
+x Ubiquiti PicoStation M2-HP Wireless access points.
-      * All applications possible will also be benchmarked to CIS level 1 (Mysql, Apache, Bind)
+These served as the backbone of the wireless network. They were placed at registration, Bugatti, Stutz, Thomas, Royce, and Dearborn.
-Websites
-      * status.penguicon.local - NOC Informational site for status on outages and other issues
-      * cacti.pengucion.local - Public accessible showing statics of all the systems.
-Other Notes
-      * Planning to have a file server to hold a local repository of Distro's, will do dns redirection to force users to use local server for updates.
+AMDx64 IPcop 1.4.21 firewall
+This is the same firewall that has ran many MPCon events throughout the years. It configuartion was unchanged for this event, however except it to be running something new next year.
+MPCon also provided several game servers for lan gaming, however they were not required to keep the network up and running.