Table of Contents
Hacklab Servers
Bare Metal (in server room)
oxygen
Dell PowerEdge R610, Xeon X5550 @ 2.67GHz, 12GB RAM, USB flash boot disk.
Hacklab Core Router - Running Mikrotik RouterOS.
magnesium
Dell PowerEdge R610, 2x Xeon E5645 @ 2.4GHz, 48GB RAM, 2x1TB SATA.
Ubuntu 18.04 and libvirt/KVM.
Hacklab infrastructure and member VMs.
titanium
HP ProLiant DL380p Gen 8, 2x E5-2670, 128GB RAM (4x 32GB LRDIMM), 2x1TB SSD, 2x2TB SATA.
Ubuntu 20.04 and OpenNebula/KVM.
Hacklab infrastructure and member VMs.
ganymede
HP Microserver N36L, 8GB RAM, 2x 1TB SATA plus hot spare.
TrueNAS server hosting file shares and home directories.
zinc
Raspberry Pi 2 Model B.
- Secondary DNS and DHCP
IoT devices
doorpi
Raspberry Pi in G1 ceiling space.
- Interface to DALI lighting controller
- Interface to discobot GPIO controller
Interface to doorbot LCD/button UI- Jeenode RF tranceiver
ircpi
Raspberry Pi running the IRC terminal.
squawk
Raspberry Pi running the sound/speech interface.
ledpi
Raspberry Pi running the RGB LED strip in G1.
Internal VMs
Note 1: Although these VMs follow the chemical elements naming scheme, it's probably time to start using functional hostnames instead (save the names for bare metal).
Note 2: Where small applications are Dockerized and hosted together, they are grouped according to the people who require access. e.g. limited access to personal data, wide access to lab automation/IoT.
ehl-vm-access
VM on titanium.
- Tool access controller
- Door access controller
- Locker access controller
ehl-vm-audit
VM on Tim's server roc titanium.
Netflow, syslog and MQTT data retained for 30 days for investigations of network abuse. Access is limited.
ehl-vm-auth
VM on titanium.
- Authentik
- Planned: LDAP secondary
ehl-vm-backup
VM on Tim's server roc.
- On-site backups of Hacklab servers
ehl-vm-jitsi
VM on titanium.
ehl-vm-loomio
VM on titanium.
ehl-vm-mdns
VM on titanium.
ehl-vm-metrics
VM on titanium.
- InfluxDB
ehl-vm-nessus
VM on titanium.
ehl-vm-network
VM hosted on titanium. Replaces boron. Hosts network and infrastructure applications via Docker:
- Traefik front-end web proxy
- Postfix MTA
- Syslog
- collectd for routers/switches
- Smokeping
- RADIUS daemon for Spacenet
- Unifi Network controller
ehl-vm-openvas
VM on titanium.
ehl-vm-things
VM hosted on titanium. Replaces carbon. Hosts Hacklab instrumentation and MQTT applications via Docker:
- MQTT server
- MQTT logger
- IRC/MQTT gateway
- Dashboard for tablet in G1
- Status webapp
- iZettle webhook receiver
- node-red (:1880)
- mattermost discord-irc bridge
- Other scripts
ehl-vm-webapp
VM on titanium.
Will host general web applications (but nothing security-sensitive).
- The Lounge (IRC gateway)
- Planned: http/https frontend proxy
- and more…
argon.hacklab
VM on titanium.
- LDAP master
- Gitea GIT hosting
- Discord bot “Hacklab AuthBot”
- Treasurer's utils
copper.hacklab
VM on titanium.
- Primary DNS and DHCP
- NetBox to firewall synchronisation
neon.hacklab
VM hosted on titanium. Hosts Linux shell services for Hacklab users (as a Docker container).
VMs (off-site)
hydrogen.edinburghhacklab.com
VM hosted in London by DigitalOcean.
- LDAP slave
gold.ehlab.uk
VM hosted in London by DigitalOcean.
- Bitwarden
- RADIUS/spacenet health check
- Planned: new LDAP master
- Planned: Treasurer's utils
palladium.ehlab.uk
VM hosted in London by DigitalOcean.
- Mailman mailing list manager
- MX for lists.ehlab.uk and mailman.edinburghhacklab.com
ponyexpress.ehlab.uk
VM hosted in US by RamNode.
- SMTP relay for mailing lists
- outbound load is shared between ponyexpress
and clacks.odvik.net (operated by Tim)
zulip.ehlab.uk
VM hosted in London by Bitfolk
- This is a sponsored VPS that Bitfolk gave us
- Was running our selfhosted zulip instance but should be repurposed