This is an old revision of the document!
Table of Contents
Hacklab Servers
Bare Metal (in server room)
oxygen
Dell PowerEdge R610, Xeon X5550 @ 2.67GHz, 12GB RAM, USB flash boot disk.
Hacklab Core Router - Running Mikrotik RouterOS.
magnesium
Dell PowerEdge R610, 2x Xeon E5645 @ 2.4GHz, 48GB RAM, 2x1TB SATA.
Ubuntu 18.04 and libvirt/KVM.
Hacklab infrastructure and member VMs.
titanium
HP ProLiant DL380p Gen 8, 2x E5-2670, 128GB RAM (4x 32GB LRDIMM), 2x1TB SSD, 2x2TB SATA.
Ubuntu 20.04 and OpenNebula/KVM.
Hacklab infrastructure and member VMs.
ganymede
HP Microserver N36L, 8GB RAM, 2x 1TB SATA plus hot spare.
TrueNAS server hosting file shares and home directories.
zinc
Raspberry Pi 2 Model B.
- Secondary DNS and DHCP
IoT devices
doorpi
Raspberry Pi in G1 ceiling space.
- Interface to DALI lighting controller
- Interface to discobot GPIO controller
Interface to doorbot LCD/button UI- Jeenode RF tranceiver
ircpi
Raspberry Pi running the IRC terminal.
squawk
Raspberry Pi running the sound/speech interface.
ledpi
Raspberry Pi running the RGB LED strip in G1.
Internal VMs
Note 1: Although these VMs follow the chemical elements naming scheme, it's probably time to start using functional hostnames instead (save the names for bare metal).
Note 2: Where small applications are Dockerized and hosted together, they are grouped according to the people who require access. e.g. limited access to personal data, wide access to lab automation/IoT.
boron.hacklab
VM hosted on titanium. Hosts network and infrastructure applications via Docker:
- Traefik front-end web proxy
- nginx redirection service
- Postfix MTA
DNS resolver- Syslog
- InfluxDB + collectd for network
nitrogen.hacklab
neon.hacklab
VM hosted on titanium. Hosts Linux shell services for Hacklab users (as a Docker container).
carbon.hacklab
VM hosted on titanium. Hosts Hacklab instrumentation and MQTT applications via Docker:
- MQTT server
- MQTT logger
- IRC/MQTT gateway
- Dashboard for tablet in G1
- Status webapp
- InfluxDB + Grafana
- Training docs generator - move to ehl-vm-webapp.
- iZettle webhook receiver
- node-red (:1880)
- mattermost discord-irc bridge
- Other scripts
argon.hacklab
VM on titanium.
- LDAP master
- Gitea GIT hosting
radon.hacklab
VM on titanium.
copper.hacklab
VM on titanium.
- Primary DNS and DHCP
- NetBox to firewall synchronisation
sulfur.hacklab
VM on magnesium.
- Discourse forum
ehl-vm-access.hacklab
VM on titanium.
- Tool access controller
- Door access controller
- Locker access controller
ehl-vm-admin.hacklab
VM on titanium.
ehl-vm-audit.hacklab
VM on Tim's server roc titanium.
Netflow, syslog and MQTT data retained for 30 days for investigations of network abuse. Access is limited.
ehl-vm-logging.hacklab
VM on magnesium. Currently inactive due to Graylog consuming all the memory.
- Graylog
- Syslog: 90 days
- MQTT: 1 year
- Netflow: 4 hours
ehl-vm-observium.hacklab
VM on magnesium.
- Observium network monitoring.
ehl-vm-things
Not deployed.
- Planned: replacement for carbon (Hacklab IoT-related applications)
ehl-vm-webapp
VM on titanium.
Will host general web applications (but nothing security-sensitive).
- The Lounge (IRC gateway)
- Planned: http/https frontend proxy
- Planned: training.ehlab.uk
ehl-vm-leds
Was a VM on magnesium. Running the IPv6 bridge for the LEDs in G1
meet
VM on titanium. Running Jitsi Meet.
VMs (off-site)
hydrogen.edinburghhacklab.com
VM hosted in London by DigitalOcean.
- LDAP slave
palladium.ehlab.uk
VM hosted in London by DigitalOcean.
- Mailman mailing list manager
- MX for lists.ehlab.uk and mailman.edinburghhacklab.com
ponyexpress.ehlab.uk
VM hosted in US by RamNode.
- SMTP relay for mailing lists
- outbound load is shared between ponyexpress
and clacks.odvik.net (operated by Tim)