Server/haruka: Unterschied zwischen den Versionen
Aus Opennet
(→Besonderheiten) |
(→Besonderheiten) |
||
| Zeile 63: | Zeile 63: | ||
> ip service set 0 disabled=yes # telnet | > ip service set 0 disabled=yes # telnet | ||
> ip service set 1 disabled=yes # ftp | > ip service set 1 disabled=yes # ftp | ||
| + | > ip service set 2 address=192.168.0.0/16 # www | ||
| + | > ip service set 3 address=192.168.0.0/16 # ssh | ||
| + | > ip service set 4 address=192.168.0.0/16 # www-ssl | ||
| + | > ip service set 5 address=192.168.0.0/16 # api | ||
| + | > ip service set 6 address=192.168.0.0/16 # winbox | ||
| + | > ip service set 7 address=192.168.0.0/16 # api-ssl | ||
__NOTOC__ | __NOTOC__ | ||
[[Category:Server]] | [[Category:Server]] | ||
Version vom 25. Oktober 2022, 20:18 Uhr
Haruka ist ein Opennet Server.
Technische Daten
| Name | haruka |
|---|---|
| Hardware | Virtualisiert, KVM VM (Server/akito) |
| Betriebsystem | MikroTik CHR |
| Anbindung | siehe Server/akito |
| IP / DNS | 192.168.5.23 - haruka.on (Opennet IPv4, ether1) 46.4.100.206 - haruka.opennet-initiative.de (WAN IPv4, ether2) 2a01:4f8:140:9250::206 - haruka.opennet-initiative.de (WAN IPv6, ether2) |
| Ausstattung | 256 MB RAM (virtuell) 512 MB (/) |
| Dienste | Dienste der Funkamateure Rostock (DARC e.V.) |
| Backup | (kein Backup derzeit) |
Verantwortlichkeiten
- Zugang/Hosting: siehe Server/akito
- Administration: Christoph Kottke, Mathias Mahnke
Dienste
- Amateurfunk
Status
- Monitoring: https://monitor.opennet-initiative.de/server/haruka/ (??)
- OLSR: http://haruka.on:8080/ (??)
Besonderheiten
- eth1 MAC ist "00:50:56:00:b0:f5", wurde von Hetzner zugewiesen
- Kein OLSR-Betrieb, daher HNA+NAT via AP2.230
- Erstinstallation:
lvcreate --name haruka-root --size 512M lvm-akito dd if=chr-6.49.7.img of=/dev/lvm-akito/haruka-root bs=1M virt-install --connect qemu:///system -n "haruka" --memory=2048 --vcpus=1 \ --import --disk "path=/dev/lvm-akito/haruka-root,format=raw,bus=sata" \ --graphics vnc,keymap=de --serial pty --noautoconsole \ --os-type generic --network=bridge:br-wan,model=e1000,mac=00:50:56:00:b0:f5 --hvm ... virsh autostart haruka virsh start haruka ssh -L 5906:localhost:5906 <virt-server> vncviewer rdp://localhost:5906 ... > ip address add address=192.168.5.23 netmask=255.255.255.255 interface=ether1 > ip dns set servers=192.168.2.230 > ip address add address=46.4.100.206 netmask=255.255.255.192 interface=ether2 > ip route add dst-address=0.0.0.0/0 gateway=46.4.100.225 > system identity set name=haruka > ip service set 0 disabled=yes # telnet > ip service set 1 disabled=yes # ftp > ip service set 2 address=192.168.0.0/16 # www > ip service set 3 address=192.168.0.0/16 # ssh > ip service set 4 address=192.168.0.0/16 # www-ssl > ip service set 5 address=192.168.0.0/16 # api > ip service set 6 address=192.168.0.0/16 # winbox > ip service set 7 address=192.168.0.0/16 # api-ssl
