Network
From What The Wiki?!
Contents |
Wrong Gateway for RED
The gateway/netmask for RED IP Adresses is wrong. With netmask 255.255.244.0 its not possible to reach 87.76.32.1 (not in subnet). Use the BLUE gateway: 87.76.0.1
Internet connectivity
There have been complaints about the lack of info about network stuff. These people are right. We have been busy figuring things out, getting hardware etc, but unless I put it on the Wiki, noone knows. This is entirely my fault. So here's an update:
The local network on the campsite will be split into 3 subnets:
- wired network outside
- wired network inside "What The Bar" and "Megabit Open Arcade"
- the wireless network
The wired networks will use peg-dhcp (RFC 2322) and regular DHCP (each half of the available IP space in that subnet). The wireless network will probably use just regular DHCP.
We have 50 HP switches (2626's I believe) with 24 100 mbit ports and 2 gig ports. We will build several strands coupling into our core switches using these. They will be in 'dumb' mode, the protection will be done using Foundry Big Iron switches. We have nine of them, but we'll be using three. One in the NOC, one in WTB and one in the MOA. These switches are interconnected using 10GE and an SMF fiberring. We will use copper cabling where possible, because copper doesn't break. There will be no gigabit ports available to users.
The inter-vlan-routing will be done with a Juniper M40. This box will also terminate the connection to Amsterdam. In Amsterdam we have another M40, wich will connect us to the AMS-IX. We have our own IP space (87.76.0.0/16 and 2001:7b8:204::/48, routed entirely natively!) and an AS number (AS35086). Layout is:
- 87.76.0.0/16 - WTH allocation
- 87.76.0.0/19 and 2001:7b8:204::/64 - field
- 87.76.32.0/19 and 2001:7b8:204:1000::/64 - tents (MOA/WTB)
- 87.76.64.0/20 and 2001:7b8:204:2003::/64 - wireless
- 87.76.80.0/24 - RESERVED (for Wireless bridges)
- 87.76.81.0/24 and 2001:7b8:204:2004::/64 - Office and info space
- 87.76.82.0/24 - Switches and critical infra
- 87.76.83.0/24 and 2001:7b8:204:2006::/64 - Technical Administration
- 87.76.84.0/24 and 2001:7b8:204:2007::/64 - Servers
- 87.76.86.0/23 and 2001:7b8:204:3000::/64 - Colocation
--Pim 26 Jul 2005 (CEST)
Beeing connected to AMS-IX and having an ASn this allows for native IPv6-Peering at AMS-IX, right? Do you have a temporary IPv6-assignment from RIPE for that occasion? ZaphodB
Yes, the IPv6 range will be 2001:7B8:204::/48. GigaWalt
Internet connectivity will be provided by
- LAN (10/100mbit)
- WLAN 2,4Ghz 802.11b will probably be overloaded, 802.11a might be OK.
- serial for RS232 terminals
- SSHd the people bringing WLAN enabled mobilephones and PDA need a SSH server for their putty clients to connect to.
shell demon: Those using dumb terminals or Putty from 802.11 enabled phones need a shell account to get on the network, this is a list of services needed:
ascii-quake, bb, bash, BitchX, irssi, emacs, finger, fortune, links, lynx, mutt, nano, nmap(hack-the-flag?), pine, vi(m), worms. (please add to this list)
Address ranges
- IPv4: 87.76.0.0/16
- IPv6: 2001:7B8:204::/48
Security
- Make sure you have your OS and applications patched with the latest security fixes.
- Starting only services that you actually need running is safer then having a firewall.
- Install a firewall if possible.
- Turn off broadcast replys so you don't cause broadcast storms through smurf attacks.
- Be civil.
Bring along a LiveCD such as SLAX or Knoppix, just in case.
EventPhone
Don't forget to bring an ordinary DECT phone (GAP standard)! Once registered at the POC (Phone Operations Center), you'll have your own 4-digit extension and can make internal calls to any other extension for free. See POC for more information.
Hamradio
Use your Hamradio is also an option.
Connect to the network via packet radio.
Pigeons aka RFC 1149
RFC 1149 has proven itself over the years as an viable though s-l-o-w way of having internet.
