REDDNet Site Requirements: Difference between revisions

From ReddNet
Jump to navigation Jump to search
(Created page with 'Sent Mike requirements for hooking up remote depots * Power, network, KVM, PDU, IP addresses, ports that need to be opened (SSH, IBP), anything else you think of Each depo…')
 
No edit summary
Line 1: Line 1:
Sent Mike requirements for hooking up remote depots
    * Power, network, KVM, PDU, IP addresses, ports that need to be opened (SSH, IBP), anything else you think of


    * Power, network, KVM, PDU, IP addresses
Each depot has two network interfaces, so if supported by your switch, we would
Each depot has two network interfaces, so if supported by your switch, we would
like to use both interfaces in 802.3ad bonding mode for increased performance.   
like to use both interfaces in 802.3ad bonding mode for increased performance.   
Line 10: Line 8:
=== Remote PDU ===
=== Remote PDU ===


We provide an 8-plug APC PDU unit for every 8 pieces of powered equipment.
We provide an APC PDU unit for every 4 depots. This allows us to power-cycle a hard-locked machine and do other forms of maintenance that aren't possible using the KVM alone.  
This allows us to power-cycle a hard-locked machine and do other forms of
 
maintenance that aren't possible using the KVM alone.
Each PDU requires a 110 V power connection and a network connection with either static or DHCP-issued IP address.
 
=== IP Addresses ===


Each PDU requires a 110 V, x Amp power connection, and a  
We require one externally-visible IP address for each depot, PDU, or KVM.  IE, if your organization's internal network is on a private subnet, then the internal IP address for each need to be NAT'ed to a unique externally-visible IP address.


=== Required Network Ports ===
=== Required Network Ports ===

Revision as of 14:35, 4 March 2010

   * Power, network, KVM, PDU, IP addresses

Each depot has two network interfaces, so if supported by your switch, we would like to use both interfaces in 802.3ad bonding mode for increased performance. This requires two switch ports and two ethernet cables per depot. If not supported, then each depot only requires one port/cable.

Remote PDU

We provide an APC PDU unit for every 4 depots. This allows us to power-cycle a hard-locked machine and do other forms of maintenance that aren't possible using the KVM alone.

Each PDU requires a 110 V power connection and a network connection with either static or DHCP-issued IP address.

IP Addresses

We require one externally-visible IP address for each depot, PDU, or KVM. IE, if your organization's internal network is on a private subnet, then the internal IP address for each need to be NAT'ed to a unique externally-visible IP address.

Required Network Ports

These ports should be opened on your perimeter firewall (or firewalls if you have both organizational and departmental firewalls).

  • tcp/22 (ssh)  : from all local depots/PDUs to 129.59.197.60 and 129.59.197.90
  • tcp/5666 (nagios) : from all local depots to 129.59.197.60 and 129.59.197.90
  • tcp/6714 (ibp)  : from all local depots to world
  • tcp/4823 (bwctl)  : from 1st local depot to world
  • tcp/861 (owamp)  : from 2nd local depot to world
  • tcp/80 (http)  : from KVM and PDU's to 129.59/16
  • tcp/443 (https)  : from KVM to 129.59/16
  • tcp/21 (ftp)  : from PDU's to 129.59.197.90 (for firmware upgrades)
  • tcp/5900 (vnc)  : from KVM to 129.59/16
  • udp/123 (ntp)  : allow outbound from local depots
  • udp/161 (snmpv3) : from all to 129.59.197.60 and 129.59.197.90