Description documentation of my personal network

Network diagram

IP Address

The network uses the RFC1918 private IP range 192.168.10.0/24 Theres no local DNS server, all hosts uses upstream ISP dns servers. All hosts get network information from the DHCP server, but some hosts get a fixed address based on MAC address. The dynamic range is 192.168.10.30-100.

Host timon

Timon is the gateway and firewall for the network.

Timon runs the following services

• Firewall
  • Homebuild iptables script with source / destination nat and forward filtering
• DHCP Server
  • Serves IP addresses as described above
• SSH server
  • For remote admininistration (only available from internal network)
• TFTP
  • Used For PXE installations.
• SNMP
  • (not configured yet)

Host Rafiki

Rafiki is the server

Rafiki runs

• SSH server
• Apache webserver
  • With mod_php5, mod_dav_svn, mod_python, mod_proxy
  • Hosts all vhosts listed in http://status.t-hoerup.dk/vhosts.php
  • Hosts subversion repository
  • Is reverse proxy for those webservices that has their only http engine (such as mldonkey)
• MySQL
• PostgreSQL
• Mldonkey for file download
• Squid http proxy
• Proftpd
  • File transfer - Only available to internal network (from outside scp/sftp should be used)
• Postfix SMTP MTA
• Dovecot IMAPd
• OpenVPN
  • TUN / UDP based
  • Listens on port 1494
  • Uses subnet 192.168.20.0/24 for tunnels
  • Full access to 192.168.10.0/24 available via vpn