This is an old revision of the document!
Table of Contents
Hacklab Servers
Bare Metal (in server room)
oxygen
Dell PowerEdge R610, Xeon X5550 @ 2.67GHz, 12GB RAM, USB flash boot disk.
Hacklab Core Router - Running Mikrotik RouterOS.
magnesium
Dell PowerEdge R610, 2x Xeon E5645 @ 2.4GHz, 48GB RAM, 2x1TB SATA, Ubuntu 18.04 and libvirt/KVM.
Hacklab infrastructure and member VMs.
titanium
HP ProLiant DL380p Gen 8, 2x E5-2670, 128GB RAM (4x 32GB LRDIMM).
Will become a local cloud host running either OpenNebula or oVirt for member use.
ganymede
HP Microserver N36L, 8GB RAM, 4x 250GB SATA.
FreeNAS server hosting file shares and home directories.
zinc
Raspberry Pi 2 Model B.
- Secondary DNS and DHCP
IoT devices
doorpi
Raspberry Pi in G1 ceiling space.
- Interface to DALI lighting controller
- Interface to discobot GPIO controller
Interface to doorbot LCD/button UI- Jeenode RF tranceiver
ircpi
Raspberry Pi running the IRC terminal.
squawk
Raspberry Pi running the sound/speech interface.
ledpi
Raspberry Pi running the RGB LED strip in G1.
Internal VMs
Note 1: Although these VMs follow the chemical elements naming scheme, it's probably time to start using functional hostnames instead (save the names for bare metal).
Note 2: Where small applications are Dockerized and hosted together, they are grouped according to the people who require access. e.g. limited access to personal data, wide access to lab automation/IoT.
boron.hacklab
VM hosted on titanium. Hosts network and infrastructure applications via Docker:
- Traefik front-end web proxy
- nginx redirection service
- Postfix MTA
DNS resolver- Syslog
- InfluxDB + collectd for network
nitrogen.hacklab
neon.hacklab
VM hosted on titanium. Hosts Linux shell services for Hacklab users (as a Docker container).
carbon.hacklab
VM hosted on magnesium. Hosts Hacklab instrumentation and MQTT applications via Docker:
- MQTT server
- MQTT logger
- IRC/MQTT gateway
- Dashboard for tablet in G1
- Status webapp
- InfluxDB + Grafana
- Training docs generator - move to ehl-vm-webapp.
- iZettle webhook receiver
- Other scripts
argon.hacklab
VM on magnesium.
- LDAP master
- Gitea GIT hosting
radon.hacklab
VM on magnesium.
copper.hacklab
VM on titanium.
- Primary DNS and DHCP
- NetBox to firewall synchronisation
sulfur.hacklab
VM on magnesium.
- Discourse forum
ehl-vm-access.hacklab
VM on magnesium.
- Tool access controller
- Door access controller
- Locker access controller
ehl-vm-admin.hacklab
VM on magnesium.
ehl-vm-audit.hacklab
VM on Tim's server roc magnesium.
Netflow, syslog and MQTT data retained for 30 days for investigations of network abuse. Access is limited.
ehl-vm-logging.hacklab
VM on magnesium. Currently inactive due to Graylog consuming all the memory.
- Graylog
- Syslog: 90 days
- MQTT: 1 year
- Netflow: 4 hours
ehl-vm-observium.hacklab
VM on magnesium.
- Observium network monitoring.
ehl-vm-things
Not deployed.
- Planned: replacement for carbon (Hacklab IoT-related applications)
ehl-vm-webapp
Will host general web applications (but nothing security-sensitive).
- The Lounge (IRC gateway)
- Planned: http/https frontend proxy
- Planned: training.ehlab.uk
ehl-vm-leds
VM on magnesium. Running the IPv6 bridge for the LEDs in G1
VMs (off-site)
hydrogen.edinburghhacklab.com
VM hosted in London by DigitalOcean.
- LDAP slave
palladium.ehlab.uk
VM hosted in London by DigitalOcean.
- Mailman mailing list manager
- MX for lists.ehlab.uk and mailman.edinburghhacklab.com
ponyexpress.ehlab.uk
VM hosted in US by RamNode.
- SMTP relay for mailing lists
- outbound load is shared between ponyexpress
and clacks.odvik.net (operated by Tim)
loomio.ehlab.uk
VM hosted in London by DigitalOcean.
- Loomio decision-making forum [in testing]