root/the_prg_server_configuration_old
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
the_prg_server_configuratio.../nix-system-configs/old-server-notes.md

3.1 KiB
Raw Blame History

Old Server Notes

Gateway WAN Configuration - Essential Info

Network Details

WAN IP:           130.225.91.242/27
Netmask:          255.255.255.224
Gateway:          130.225.91.225
Gateway MAC:      f0:7f:06:98:4a:64
Network:          130.225.91.224/27
Broadcast:        130.225.91.255
Interface:        ens18
MTU:              1500
Domain:           prg.dtu.dk
Hostname:         prg-lan-gateway
FQDN:             prg-lan-gateway.prg.dtu.dk

Upstream Path

Gateway (130.225.91.225) → Cisco e11_0-1.bg106.internet.i3.cisco.net.local
Next Hop (192.38.93.34) → DTU edge router et2_12.90.sb-1g303-1

Interface Configuration

Interface:        ens18
Type:             Static IPv4
Address:          130.225.91.242/27
Gateway:          130.225.91.225
No VLANs, No PPPoE, No MAC cloning

Proxmox VM Configuration

VM ID:            100
Node:             ve0
Memory:           2GB
CPU:              2 cores (1 socket)
Disk:             10GB (local-lvm)
NIC Model:        VirtIO

Network Devices:
  net0 (ens18):   virtio=2A:99:D6:03:DD:92,bridge=vmbr1  ← WAN
  net1 (ens19):   virtio=0E:27:6A:11:A0:77,bridge=vmbr0  ← LAN
  net2 (ens20):   virtio=42:D7:85:15:E1:FF,bridge=vmbr2  ← LAN

DNS Servers

Primary:          1.1.1.1 (Cloudflare)
Secondary:        8.8.8.8 (Google)
Tertiary:         130.225.89.2 (DTU)
Domain:           prg.dtu.dk
Search:           prg.dtu.dk

NTP Servers

time.cloudflare.com

Firewall Rules

NAT (Outbound)

Chain: POSTROUTING
Action: Masquerade all traffic on interface ens18

Filter (Inbound)

Accept: Loopback (lo)
Accept: Established/Related connections
Drop: All other traffic from ens18 (WAN)
Default: Accept (for other interfaces)

Port Forwarding

None configured

System Requirements

IP Forwarding:                      Enabled (net.ipv4.ip_forward=1)
Reverse Path Filtering:             Enabled (net.ipv4.conf.all.rp_filter=1)
SYN Cookies:                        Enabled (net.ipv4.tcp_syncookies=1)
Accept ICMP Redirects:              Disabled (net.ipv4.conf.all.accept_redirects=0)
Send ICMP Redirects:                Disabled (net.ipv4.conf.all.send_redirects=0)
Accept Source Route:                Disabled (net.ipv4.conf.all.accept_source_route=0)
Log Martian Packets:                Enabled (net.ipv4.conf.all.log_martians=1)
Ignore Broadcast Pings:             Enabled (net.ipv4.icmp_echo_ignore_broadcasts=1)
Ignore Bogus ICMP Errors:           Enabled (net.ipv4.icmp_ignore_bogus_error_responses=1)

Hosts File

127.0.0.1       localhost
130.225.91.242  prg-lan-gateway.prg.dtu.dk  prg-lan-gateway
::1             localhost ip6-localhost ip6-loopback
ff02::1         ip6-allnodes
ff02::2         ip6-allrouters

LAN Interfaces

ens19:            10.123.123.1/24, 192.168.0.1/24 (dual IP)
ens20:            10.255.255.1/24

Critical Notes

Platform:         Proxmox VM (node ve0, VM ID 100)
WAN MAC:          2A:99:D6:03:DD:92 (must preserve for rebuild maybe, due to DTU being very thorough maybe)
WAN Bridge:       vmbr1 (not vmbr0)
IPv6:             Not configured