TheLab.ms Wiki

User Tools

Site Tools

infra

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
infra [2025/02/12 13:48] ef2d127d-e37b-942b-aad0-6145e54b0c61infra [2025/10/12 21:27] (current) ef2d127d-e37b-942b-aad0-6145e54b0c61
Line 1: Line 1:
 # IT Infrastructure # IT Infrastructure
- 
-The acting CTO is responsible for maintaining TheLab's network/server infrastructure. 
  
 ---- ----
Line 9: Line 7:
 ---- ----
  
-## Network+## Servers
  
-TheLab has a MikroTik router with a handful of APs, and a Cisco switch for PoE and extra ports.+<nspages :servers -customTitle="{title}" -textPages="" -tree>
  
-The network is divided up into a few subnets, each on their own vlan.+## Cloudflare
  
-- Members: **10.200.1.0/24** +We use Cloudflare for various things including (most importantly) DNSThe account is associated with cto@thelab.ms, so new CTOs should go reset the password to get accessThings don't change often in this account but it's worth knowing that it exists.
-- Members Static IPs: **10.200.0.0/24** +
-- Infrastructure: **10.200.10.0/24** +
-- Cameras: **10.200.20.0/24** +
-- Access Control: **10.220.4.0/24**+
  
-Management points:+Cloudflare tunnels are used for all ingress to our servers - no need to worry about rotating TLS certs, free DDoS protection, etc.
  
-- **10.200.10.1**: Mikrotik router web interface (get creds from acting CTO) 
-- **10.200.10.2**: Cisco network switch 
-  - `ssh [email protected] -c aes256-cbc -o KexAlgorithms=diffie-hellman-group-exchange-sha1 -o PubkeyAcceptedAlgorithms=+ssh-rsa -o HostKeyAlgorithms=+ssh-rsa` 
  
-### Switch Ports+## Github
  
-The switch has 4 obvious bays of ports, each assigned to VLAN like:+Any active members working on code-related projects can be added as member of TheLab's Github org: https://github.com/TheLab-ms.
  
-- Cameras 
-- Members 
-- Infrastructure 
-- Access Control 
  
 +## Monitoring
  
-## Servers+We have a shared [cronitor](https://cronitor.io) account used for uptime checks. Failing checks are posted to #it and visible publicly at https://status.thelab.ms
  
-<nspages :servers -customTitle="{title}" -textPages="" -tree>+## Network
  
-## Cloudflare+TheLab has a MikroTik router with a handful of APs, and a Cisco switch for PoE and extra ports.
  
-We use Cloudflare for various things including (most importantly) DNS. The account is associated with [email protected]so new CTOs should go reset the password to get access. Things don't change often in this account but it's worth knowing that it exists.+The network is divided up into a few subnetseach on their own vlan.
  
-Cloudflare tunnels are used for all ingress to our servers no need to worry about rotating TLS certs, free DDoS protection, etc.+Members: **10.200.1.0/24** 
 +- Members Static IPs: **10.200.0.0/24** 
 +- Admin: **10.200.10.0/24** 
 +- IoT **10.200.20.0/24**
  
 +Management points:
  
-## Github+- **10.200.10.1**: Mikrotik router web interface (get creds from acting CTO)
  
-Any active members working on code-related projects can be added as a member of TheLab's Github org: https://github.com/TheLab-ms.+### Switch Ports
  
-Obviously the CTO should always be an org admin.+TODO
  
-## Monitoring 
  
-We have a shared [cronitor](https://cronitor.io) account used for uptime checks. Failing checks are posted to the #it. CTO should have the creds. 
infra.1739368133.txt.gz · Last modified: 2025/02/12 13:48 by ef2d127d-e37b-942b-aad0-6145e54b0c61
Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki