Difference between revisions of "Resources/Network"

From Noisebridge
Jump to: navigation, search
(Addresses: Update to reflect that the mode/s receiver isn't currently in use)
 
(58 intermediate revisions by 19 users not shown)
Line 1: Line 1:
This page was certified [https://www.noisebridge.net/pipermail/rack/2016-March/003152.html 100% current and up to date] by [[User:Rubin110]] at Sun Mar 6 07:58:59 UTC 2016.
+
If you're reading this from another point in time, please note that the reality of the situation may be different. Please update this page to reflect reality as it changes.
 
 
If you're reading this from another point in time, please note that the reality of the situation may be different.
 
  
 
__TOC__
 
__TOC__
Line 18: Line 16:
 
The wifi and internet provided is for public use. Like any public network, you should regard Noisebridge's as [[Visitor_advice#Hostile_network|potentially hostile]] and take appropriate precautions. In order to not give the impression of providing false security, Noisebridge does not run any encrypted wifi networks.
 
The wifi and internet provided is for public use. Like any public network, you should regard Noisebridge's as [[Visitor_advice#Hostile_network|potentially hostile]] and take appropriate precautions. In order to not give the impression of providing false security, Noisebridge does not run any encrypted wifi networks.
  
The following networks are active:
+
The following wireless networks (SSIDs) are active:
* '''Noisebridge'''
+
* '''Noisebridge Cap'''
 
** No password
 
** No password
** Uplink through Monkeybrains gigabit laser
+
** 802.11g/n/ac 2.4 and 5 gHz
** 802.11an 5 gHz only
+
** This is a temporary SSID set up for use during the move until the long term equipment is set up.
* '''Noisebridge Legacy 2.4 gHz'''
+
 
** No password
 
** Uplink through Monkeybrains gigabit laser
 
** 802.11an 2.4 gHz only
 
  
 
== Wired network ==
 
== Wired network ==
Line 32: Line 27:
  
 
== Local Network Address Information ==
 
== Local Network Address Information ==
DHCP is offered automatically on the network, if that doesn't work for you here's some more static information...
+
DHCP is offered automatically on the network. Currently the IP range is as follows:
  
* IP Range: 10.20.1.200-10.20.1.254
+
* IP Range: 10.21.0.1-10.21.1.254
* Gateway: 10.20.0.1
+
* Gateway: 10.21.0.1
 
* Subnet: 255.255.'''254'''.0 (a "slash" /23)
 
* Subnet: 255.255.'''254'''.0 (a "slash" /23)
* DNS: 10.20.0.1,208.69.43.23,208.69.40.4,8.8.8.8
+
* DNS: 10.21.0.1, 1.1.1.1
 
 
Dynamic DNS is provided by the router for DHCP clients on 10.20.0.1/23 which also provides name resolution of some local machines.
 
 
 
== Development ==
 
* See [[Network/testing]].
 
  
 
==Network Devices & Services==
 
==Network Devices & Services==
Line 49: Line 39:
 
* [[Infrastructure]]
 
* [[Infrastructure]]
  
= 2169 Mission =
 
  
 
== Uplinks ==
 
== Uplinks ==
 
=== Monkeybrains Wireless Link ===
 
=== Monkeybrains Wireless Link ===
We have a point-to-point wireless link to Monkeybrains on the roof, it's a gigabit laser, think of fiber without the physical medium of glass. It is wired into the Monkeybrains NEMA box on the roof, and from there into our own NEMA box in which we house a managed switch. From there the cable enters into the space through the ladder chute in the fox lounge and runs to the rack where it enters the switchboard at port 48. Port 48 is a second redundant run that follows the same path from the rack back to our NEMA box for future projects.
+
We have a point-to-point wireless link to Monkeybrains on the roof, it's a microwave dish on the roof at the front of the building.
 
 
=== SFBroadband / City of SF / Internet Archive ===
 
 
 
We have a wireless point-to-point path up to Twin Peaks that connects up to a city-owned and volunteer-run IP transit network. Currently, we're hitting the dish off of the side and have a pretty terrible connection. For now, this network path is mostly only usable as a backup path.
 
 
 
There is a router in our wireless CPE hardware (st01-noisebridge-sfo) that connects up to the Noisebridge network and terminates as 172.30.0.54 on the "Inside / Internal" network. Set your default route via this IP to try the other path.
 
  
 
==I want to help!==
 
==I want to help!==
Noisebridge is run by volunteers, you're welcome to help but should get to know those helping first before touching/hacking the network gear. Try introducing yourself on the [rack mailing list https://www.noisebridge.net/mailman/listinfo/rack].
+
Noisebridge is run by volunteers, you're welcome to help but should get to know those helping first before touching/hacking the network gear. Try introducing yourself on the #rack channel in the Noisebridge Slack.
  
 
== Router ==
 
== Router ==
Biketrailer is our humble router. It is an Ubiquiti Edgerouter 5-port box running EdgeOS, a fork of Vyatta (a Linux-based router distribution). While the router does provide PoE, it is non-standard passive Ubiquiti PoE which you should avoid using.
+
 
 +
Biketrailer is our humble router. It is an Ubiquiti Edgerouter (ER-4) box running EdgeOS, a fork of Vyatta (a Linux-based router distribution).
  
 
The machines currently provides
 
The machines currently provides
 
   * NAT
 
   * NAT
 
   * DHCPD
 
   * DHCPD
   * DNS (dnsmasq) - .noise local TLD and recursive proxy
+
   * DNS (dnsmasq) - <s>local TLD and</s> recursive proxy
  
 
Access is via SSH with keys and a https web interface.
 
Access is via SSH with keys and a https web interface.
  
 
== Address Allocations ==
 
== Address Allocations ==
===WAN - Monkeybrains===
+
===WAN - Monkeybrains - 192.195.83.128/29 ===
* Network range: 192.195.83.129/29
+
* Address range: 192.195.83.129-134
 
* Gateway: 192.195.83.129
 
* Gateway: 192.195.83.129
* DNS: 208.69.43.23,208.69.40.4
+
* DNS: 208.69.43.23, 208.69.40.4
 
* Subnet Mask: 255.255.255.248
 
* Subnet Mask: 255.255.255.248
  
 
====Addresses====
 
====Addresses====
* 192.195.83.130 - 2169.noisebridge.net - biketrailer offering some port forawrding
 
* 192.195.83.131 - roof switch
 
* 192.195.83.132 - unused (previous: mode/s receiver)
 
* 192.195.83.133 - unused
 
* 192.195.83.134 - pegasus.noisebridge.net - pegasus 1 to 1 NAT
 
 
===LAN - 10.20.0.0/22===
 
====10.20.0.0 - 0.100 Statically address services====
 
 
''Note: This is '''not''' a /24 subnet! The netmask is a /23.''
 
  
* 10.20.0.1 - biketrailer
+
{| class="wikitable"
* 10.20.0.10 - earl
+
|-
* 10.20.0.11 - West-AP
+
! IP
* 10.20.0.12 - Church-AP
+
! DNS
* 10.20.0.13 - Central-AP
+
! Info
* 10.20.0.22 - pegasus
+
|-
* 10.20.0.25 - noisebridge-printer-brother
+
| 192.195.83.130
* 10.20.0.41 - noisebridgebbs
+
| cycletrailer.noisebridge.net/cycletrailer.noisebridge.io
* 10.20.0.42 - flaschen-taschen / [[ft.noise]]
+
| EdgeRouter ER-4
* 10.20.0.43 - noisebridge-kiosk-1 / noiseboard
+
|-
* 10.20.0.44 - square (Noisesquare table)
+
| 192.195.83.131
* 10.20.0.45 - bookcase (LEDs on the library bookcase)
+
| cia.noisebridge.io
* 10.20.0.46 - noisebridge-kiosk-2
+
|
 +
|-
 +
| 192.195.83.132
 +
| jitsi.noisebridge.io
 +
|
 +
|-
 +
| 192.195.83.133
 +
| zeppelin.noisebridge.net/zeppelin.noisebridge.io
 +
|
 +
|-
 +
| 192.195.83.134
 +
| pegasus.noisebridge.net/pegasus.noisebridge.io
 +
|
 +
|}
  
====10.20.0.51 - 1.199====
 
* DHCP-assigned, user-access IP space
 
  
====10.20.1.200 - 1.254====
+
===LAN - 10.21.0.0/16===
* Available for adhoc manual IP address configurations.
+
====10.21.1.0 - 1.254====
 +
* DHCP Pool - When connecting to the network, you will automatically receive an IP in this range.
  
 
=== IPv6 ===
 
=== IPv6 ===
Line 117: Line 103:
  
 
== Machine Rack ==
 
== Machine Rack ==
The rack sits on the South wall, it's small and up high to discourage people from messing with it or installing things in it. The internet works, please leave the box alone.
+
There are two racks in the space, the main one on the first floor near the rolling door, and the secondary one on the second floor directly above the main one. They are small and up high to discourage people from messing with them or installing things in them. The internet works, please leave the boxes alone.
  
 
===Can I install/setup boxes on Noisebridge's network?===
 
===Can I install/setup boxes on Noisebridge's network?===
Line 131: Line 117:
 
* Personal machines: NO!
 
* Personal machines: NO!
 
* High power machines: NO!
 
* High power machines: NO!
* Bitcoin minors: NO!
+
* Bitcoin miners: NO!
 
* Torrent boxes: NO!
 
* Torrent boxes: NO!
 
* Everything else: NO!
 
* Everything else: NO!
  
If a machine gets setup on the network without first getting an ok from the [https://www.noisebridge.net/mailman/listinfo/rack rack list], it will be unplugged and thrown in the trash. Please don't host your box at Noisebridge. We can't afford it. Thanks for understanding.
+
Please discuss any proposed installations in #Rack, but in general, please don't host your box at Noisebridge. We can't afford it. Thanks for understanding.
  
 
===Rack setup===
 
===Rack setup===
* Patch panel
+
This is currently in flux and will be updated once things are more finalized.
* Shitty Fucked Dell 48 port switch
+
<s>
* Pegasus
+
[[File:rack-front.jpg|right]]
* Shelf with Biketrailer and POE injectors
+
 
* Shelf with random RaspberryPis for projects
+
{| class="wikitable"
* Speaker amp
+
|-
* Power strip
+
! RU
* UPS
+
! Item
 +
|-
 +
| 1-2
 +
| Patch Panel
 +
|-
 +
| 3
 +
| TrendNet Unmanaged Switch
 +
|-
 +
| 4
 +
| Ubiquiti EdgeSwitch
 +
|-
 +
| 5
 +
| pegasus.noise
 +
|-
 +
| 6-7
 +
| Shelf with zepplin.noise
 +
|-
 +
| 7
 +
|
 +
|-
 +
| 8
 +
|
 +
|-
 +
| 9
 +
| EdgeRouter (biketrailer.noise)
 +
|-
 +
| 10
 +
| cloud.noise
 +
|-
 +
| 11
 +
| Power Strip
 +
|-
 +
| 12
 +
| UPS
 +
|}
 +
</s>
 +
 
 +
 
 +
====Cyberpower UPS (Uninterrupted Power Supply)====
 +
 
 +
All the rack infra in the primary rack is plugged into the UPS. If the power goes out, the UPS will provide battery power and also beep.
 +
 
 +
=====Administration=====
 +
Access the router UI over https at 10.21.0.1.

Latest revision as of 00:53, 19 October 2020

If you're reading this from another point in time, please note that the reality of the situation may be different. Please update this page to reflect reality as it changes.

Network Troubleshooting

Are you having issues with the internet or local network? Check out the Network Troubleshooting page for more information on what you can do to make things better or possibly seek help.

Disclaimer

Please note that Noisebridge does not guarantee or provide a perfect secure experience in the space. Just like anywhere else in the world you're held responsible for your own safety and wellbeing. This also includes content you receive or transmit or provide through any mediums, such as through pen and paper, sound waves or any networks wired or wireless functioning in the space. Noisebridge is a volunteer run and operated space that provides you with infrastructure, which you use at your own risk.

Free Public Wireless Networks

Noisebridge has two open wifi networks available for your use. In most cases if you connect to the network Noisebridge your laptop/phone/device will have the best luck getting crystal clear wifi and roam between radio channels according to which provides the most reliable and fastest connection.

The wifi and internet provided is for public use. Like any public network, you should regard Noisebridge's as potentially hostile and take appropriate precautions. In order to not give the impression of providing false security, Noisebridge does not run any encrypted wifi networks.

The following wireless networks (SSIDs) are active:

  • Noisebridge Cap
    • No password
    • 802.11g/n/ac 2.4 and 5 gHz
    • This is a temporary SSID set up for use during the move until the long term equipment is set up.


Wired network

There are drops throughout the space. They are labeled with the corresponding number on the patch panel. Please don't destroy them (lol).

Local Network Address Information

DHCP is offered automatically on the network. Currently the IP range is as follows:

  • IP Range: 10.21.0.1-10.21.1.254
  • Gateway: 10.21.0.1
  • Subnet: 255.255.254.0 (a "slash" /23)
  • DNS: 10.21.0.1, 1.1.1.1

Network Devices & Services


Uplinks

Monkeybrains Wireless Link

We have a point-to-point wireless link to Monkeybrains on the roof, it's a microwave dish on the roof at the front of the building.

I want to help!

Noisebridge is run by volunteers, you're welcome to help but should get to know those helping first before touching/hacking the network gear. Try introducing yourself on the #rack channel in the Noisebridge Slack.

Router

Biketrailer is our humble router. It is an Ubiquiti Edgerouter (ER-4) box running EdgeOS, a fork of Vyatta (a Linux-based router distribution).

The machines currently provides

  * NAT
  * DHCPD
  * DNS (dnsmasq) - local TLD and recursive proxy

Access is via SSH with keys and a https web interface.

Address Allocations

WAN - Monkeybrains - 192.195.83.128/29

  • Address range: 192.195.83.129-134
  • Gateway: 192.195.83.129
  • DNS: 208.69.43.23, 208.69.40.4
  • Subnet Mask: 255.255.255.248

Addresses

IP DNS Info
192.195.83.130 cycletrailer.noisebridge.net/cycletrailer.noisebridge.io EdgeRouter ER-4
192.195.83.131 cia.noisebridge.io
192.195.83.132 jitsi.noisebridge.io
192.195.83.133 zeppelin.noisebridge.net/zeppelin.noisebridge.io
192.195.83.134 pegasus.noisebridge.net/pegasus.noisebridge.io


LAN - 10.21.0.0/16

10.21.1.0 - 1.254

  • DHCP Pool - When connecting to the network, you will automatically receive an IP in this range.

IPv6

We would like to setup IPv6, some day.

Machine Rack

There are two racks in the space, the main one on the first floor near the rolling door, and the secondary one on the second floor directly above the main one. They are small and up high to discourage people from messing with them or installing things in them. The internet works, please leave the boxes alone.

Can I install/setup boxes on Noisebridge's network?

Short answer

No.

Long answer

Noisebridge is here to provide infrastructure for creative projects. We're really good at some things. One thing we suck at is administrating boxes setup on our network. They eat power, internet, the attention span of volunteers, and people who set them up generally are bad at communicating later on down the line when something breaks or a machine magically appears.

Noisebridge network infrastructure policy is as such:

  • Critical infrastructure machines (like our access control system): Low power ok!
  • Machines for classes that cannot be hosted on the internet: Low power ok!
  • Personal machines: NO!
  • High power machines: NO!
  • Bitcoin miners: NO!
  • Torrent boxes: NO!
  • Everything else: NO!

Please discuss any proposed installations in #Rack, but in general, please don't host your box at Noisebridge. We can't afford it. Thanks for understanding.

Rack setup

This is currently in flux and will be updated once things are more finalized.

Rack-front.jpg
RU Item
1-2 Patch Panel
3 TrendNet Unmanaged Switch
4 Ubiquiti EdgeSwitch
5 pegasus.noise
6-7 Shelf with zepplin.noise
7
8
9 EdgeRouter (biketrailer.noise)
10 cloud.noise
11 Power Strip
12 UPS


Cyberpower UPS (Uninterrupted Power Supply)

All the rack infra in the primary rack is plugged into the UPS. If the power goes out, the UPS will provide battery power and also beep.

Administration

Access the router UI over https at 10.21.0.1.