|
(Tag: Redirect target changed) |
| (82 intermediate revisions by the same user not shown) |
| Line 1: |
Line 1: |
| − | The [[CNM Next Server]] (hereinafter, the ''Server'') is a compute server that the [[CNM Digital Team]] (hereinafter, the ''Team'') uses for learning and testing. While being a part of [[CNM Servers]], the ''Server'' utilizes one [[DigitalOcean]] droplet, which is located at the [http://167.71.244.79 167.71.244.79] [[IP address]], and shall support all the applications that are installed at the [[CNM Fellow Server]]. In other words, the ''Server'' can be described as a learning and testing variant of the [[CNM Fellow Server]].
| + | #REDIRECT [[CNM Lab Farm]] |
| − | | |
| − | | |
| − | ==Platform==
| |
| − | | |
| − | The ''Server'' is set up as a [[Digitalocean]] droplet with dedicated 1 vCPU and 2GB / 50GB Disk in its NYC3 datacenter (New York). The dedicated resources can be increased when the existing ones can no longer support all the services that the ''Server'' is expected to provide.
| |
| − | | |
| − | ===OS===
| |
| − | :[[Ubuntu]] 18.04.3 (LTS) x64
| |
| − | | |
| − | ===DNS records===
| |
| − | :All the ''Server's'' [[hostname]]s shall be [[fully qualified domain name]]s ([[fully qualified domain name|FQDN]]s). The following records shall be associated with the ''Server'':
| |
| − | :{|class="wikitable" width=100% style="text-align:center;"
| |
| − | |[[DNS record|Record]]
| |
| − | ![[Hostname]]!!Value!![[TTL]] (seconds)
| |
| − | |-
| |
| − | ![[A record|A]]
| |
| − | |[https://next.friendsofcnm.org next.friendsofcnm.org]||directs to [http://167.71.244.79 167.71.244.79]||3600
| |
| − | |-
| |
| − | ![[A record|A]]
| |
| − | |[https://video.next.friendsofcnm.org video.next.friendsofcnm.org]||directs to [http://167.71.244.79 167.71.244.79]||3600
| |
| − | |-
| |
| − | ![[A record|A]]
| |
| − | |[https://lab.next.friendsofcnm.org lab.next.friendsofcnm.org]||directs to [http://167.71.244.79 167.71.244.79]||3600
| |
| − | |-
| |
| − | ![[A record|A]]
| |
| − | |[https://cert.next.friendsofcnm.org cert.next.friendsofcnm.org]||directs to [http://167.71.244.79 167.71.244.79]||3600
| |
| − | |-
| |
| − | ![[A record|A]]
| |
| − | |[https://wiki.next.friendsofcnm.org wiki.next.friendsofcnm.org]||directs to [http://167.71.244.79 167.71.244.79]||3600
| |
| − | |-
| |
| − | ![[A record|A]]
| |
| − | |[https://mail.next.friendsofcnm.org mail.next.friendsofcnm.org]||directs to [http://167.71.244.79 167.71.244.79]||3600
| |
| − | |-
| |
| − | ![[A record|A]]
| |
| − | |[https://linkup.next.friendsofcnm.org linkup.next.friendsofcnm.org]||directs to [http://167.71.244.79 167.71.244.79]||3600
| |
| − | |-
| |
| − | ![[A record|A]]
| |
| − | |[https://page.next.friendsofcnm.org page.next.friendsofcnm.org]||directs to [http://167.71.244.79 167.71.244.79]||3600
| |
| − | |-
| |
| − | ![[CNAME record|CNAME]]
| |
| − | |www.next.friendsofcnm.org||is an alias of next.friendsofcnm.org.||43200
| |
| − | |-
| |
| − | ![[CNAME record|CNAME]]
| |
| − | |www.video.next.friendsofcnm.org||is an alias of video.next.friendsofcnm.org.||43200
| |
| − | |-
| |
| − | ![[CNAME record|CNAME]]
| |
| − | |www.lab.next.friendsofcnm.org||is an alias of lab.next.friendsofcnm.org.||43200
| |
| − | |-
| |
| − | ![[CNAME record|CNAME]]
| |
| − | |www.cert.next.friendsofcnm.org||is an alias of cert.next.friendsofcnm.org.||43200
| |
| − | |-
| |
| − | ![[CNAME record|CNAME]]
| |
| − | |www.wiki.next.friendsofcnm.org||is an alias of wiki.next.friendsofcnm.org.||43200
| |
| − | |-
| |
| − | ![[CNAME record|CNAME]]
| |
| − | |www.mail.next.friendsofcnm.org||is an alias of mail.next.friendsofcnm.org.||43200
| |
| − | |-
| |
| − | ![[CNAME record|CNAME]]
| |
| − | |www.linkup.next.friendsofcnm.org||is an alias of linkup.next.friendsofcnm.org.||43200
| |
| − | |-
| |
| − | ![[CNAME record|CNAME]]
| |
| − | |www.page.next.friendsofcnm.org||is an alias of page.next.friendsofcnm.org.||43200
| |
| − | |-
| |
| − | ![[NS record|NS]]
| |
| − | |friendsofcnm.org||directs to ns1.digitalocean.com.||1800
| |
| − | |-
| |
| − | ![[NS record|NS]]
| |
| − | |friendsofcnm.org||directs to ns2.digitalocean.com.||1800
| |
| − | |-
| |
| − | ![[NS record|NS]]
| |
| − | |friendsofcnm.org||directs to ns3.digitalocean.com.||1800
| |
| − | |}
| |
| − | | |
| − | :This list is way far from completion and needs to be further developed. The records shall be validated with https://intodns.com/
| |
| − | | |
| − | ===Control panel===
| |
| − | :An instance of [[Vesta Control Panel]] is installed in order to manage all the services through a [[web browser]]. The panel allows for creating users, email addresses, databases, adding domains, setup cronjob, or restart any service.
| |
| − | | |
| − | :The control panel is enhanced with a [[Softaculous]] installation, which allows for automatic installation of popular commercial and [[open-source]] [[end-user application]]s to the ''Server''. Its scripts are executed from the panel's administration area.
| |
| − | | |
| − | ==Backups==
| |
| − | The backup policy shall be created in order to setup daily, weekly, and/or monthly backups.
| |
| − | | |
| − | ===Internal backup===
| |
| − | :Internal backups are set up through the control panel. Auto backup is scheduled on every Saturday for all domains, web, databases, emails, and all configs.
| |
| − | | |
| − | ===External backup===
| |
| − | | |
| − | ==Applications==
| |
| − | Any [[CNM app]] listed below shall comply with the [[CNM software requirement]]s.
| |
| − | | |
| − | ===Certware===
| |
| − | :One testing instance of [[CNM Certware]] shall be run on the ''Server'' and to be located at https://cert.next.friendsofcnm.org in the [[World Wide Web]]. The instance shall be based on [[Moodle]] software and shall duplicate the production instance located at https://cert.friendsofcnm.org
| |
| − | | |
| − | ===Labware===
| |
| − | :One testing instance of [[CNM Labware]] shall be run on the ''Server'' and to be located at https://lab.next.friendsofcnm.org in the [[World Wide Web]]. The instance shall be based on a combination of [[Redmine]] and [[Apache Subversion|SVN]] software, linked to [[Bitbucket]]'s file storage, and shall duplicate the production instance located at https://lab.friendsofcnm.org
| |
| − | | |
| − | ===Linkupware===
| |
| − | :One testing instance of [[CNM Linkupware]] shall be run on the ''Server'' and to be located at https://linkup.next.friendsofcnm.org in the [[World Wide Web]]. The instance shall be based on [[SuiteCRM]] software and shall duplicate the production instance located at https://linkup.friendsofcnm.org
| |
| − | | |
| − | ===Mailware===
| |
| − | :One testing instance of [[CNM Mailware]] shall be run on the ''Server'' and to be located at https://mail.next.friendsofcnm.org in the [[World Wide Web]]. The instance shall be based on [[Roundcube]] software and shall duplicate the production instance located at https://mail.friendsofcnm.org
| |
| − | | |
| − | :When [https://mxtoolbox.com/ mxtoolbox.com] detects spam issues, delist requests shall be sent to the blocking authorities such as ivmSIP24 and spamhaus Zen particularly using [https://www.invaluement.com/ invaluement.com].
| |
| − | | |
| − | ===Pageware===
| |
| − | :One testing instance of [[CNM Pageware]] shall be run on the ''Server'' and to be located at https://page.next.friendsofcnm.org in the [[World Wide Web]]. The instance shall be based on [[WordPress]] software and shall duplicate the production instance located at https://page.friendsofcnm.org
| |
| − | | |
| − | ===Videoware===
| |
| − | :One testing instance of [[CNM Videoware]] shall be run on the ''Server'' and to be located at https://video.next.friendsofcnm.org in the [[World Wide Web]]. The instance shall be based on [[YouPHPTube]] software and shall duplicate the production instance located at https://video.friendsofcnm.org
| |
| − | | |
| − | ===Wikiware===
| |
| − | :Two testing instances of [[CNM Wikiware]], for two different languages, shall be run on the ''Server'' and to be located at https://wiki.next.friendsofcnm.org in the [[World Wide Web]]. The instance shall be based on [[MediaWiki]] software and shall duplicate the production instance located at https://wiki.friendsofcnm.org . In addition, one instance of [[Tiki Wiki CMS Groupware]] shall be installed for testing purposes.
| |
| − | | |
| − | ==Server provisioning==
| |
| − | | |
| − | ===Mail servers===
| |
| − | :Two [[mail server]]s are designed to receive and send [[email]]s. A [[Postfix]] instance shall communicate with [[mail exchanger]]s and a [[Dovecot]] instance shall communicate with [[email client]]s.
| |
| − | | |
| − | ===Web servers===
| |
| − | :Two [[web server]]s are designed to satisfy requests of [[World Wide Web]] clients. [[Nginx]] is placed in front of [[Apache HTTP Server]] and tuned shall be used as a reverse proxy, load balancer, mail proxy and HTTP cache. Particularly, [[Nginx]] handles static files.
| |
| − | | |
| − | ===FTP servers===
| |
| − | :A [[Very Secure File Transfer Protocol Daemon]] ([[Very Secure File Transfer Protocol Daemon|vsFTPd]]) shall be used for secure file transfers.
| |
| − | | |
| − | ===Databases===
| |
| − | :No standalone [[database server]] is planned. Separate [[database management system]]s, which are based on [[MariaDB]] instances, shall serve separate applications as follows:
| |
| − | :{|class="wikitable" width=100% style="text-align:center;"
| |
| − | |+Databases used in the ''Server''
| |
| − | |-
| |
| − | |[[CNM app|CNM app]]
| |
| − | ![[Database management system|DBMS]]!!Size (tables)
| |
| − | |-
| |
| − | ![[CNM Certware|Certware]]
| |
| − | |rowspan="7"|[[MariaDB]]
| |
| − | |-
| |
| − | ![[CNM Labware|Labware]]
| |
| − | |-
| |
| − | ![[CNM Linkupware|Linkupware]]
| |
| − | |-
| |
| − | ![[CNM Mailware|Mailware]]
| |
| − | |-
| |
| − | ![[CNM Pageware|Pageware]]
| |
| − | |-
| |
| − | ![[CNM Videoware|Videoware]]
| |
| − | |-
| |
| − | ![[CNM Wikiware|Wikiware]]
| |
| − | |}
| |
| − | | |
| − | :[[PostgreSQL]] and [[MongoDB]] may also be considered for further applications.
| |
| − | | |
| − | ===SSL certificates===
| |
| − | :All domains, including all sub-domains, are provisioned with [[Let's Encrypt]] [[SSL certificate]]s.
| |
| − | | |
| − | ==Requirements==
| |
| − | Requirements to the ''Server'' are a part of [[CNM Digital (requirements)]].
| |
| − | | |
| − | ===Business requirements===
| |
| − | :The ''Team'' needs the ''Server'' because of the following:
| |
| − | :*Those learners who are a part of the ''Team'' shall have opportunities for hands-on training; AND/OR
| |
| − | :*The associates of the ''Team'' shall have opportunities for experimenting on [[CNM app]]s;
| |
| − | :without any fear of disrupting the services of [[CNM Digital]].
| |
| − | | |
| − | ===Solution requirements===
| |
| − | :The ''Server'' shall be:
| |
| − | :*Located at the same facility and produce the same services as the [[CNM Fellow Server]];
| |
| − | :*Accessible to:
| |
| − | :*#Use its administrative panel:
| |
| − | :*#*24/7 to the ''Team'' fellows;
| |
| − | :*#*24/7 to those ''Team'' associates whom the [[CNM Technology Board]] authorizes;
| |
| − | :*#*When needed, those ''Team'' learners who are in their hands-on training;
| |
| − | :*#View its publicly-open pages 24/7 and register to everyone:
| |
| − | :*Easily restored when the ''Server'' fails. Those failures may particularly be caused by hands-on training sessions and experiments.
| |
| − | | |
| − | ===Project requirements===
| |
| − | :The following requirements are effective with regard to the ''Server'' developments:
| |
| − | :*All public data related to requirements to the ''Server'' shall be published at [[CNM Wikis]].
| |
| − | :*All private data related to the ''Server'' shall be published at [[CNM Labs]].
| |
| − | :*Only the [[CNM Technology Board]] can approve changes.
| |
| − | | |
| − | ==Administration==
| |
| − | | |
| − | ===History===
| |
| − | With regard to:
| |
| − | Storage server --
| |
| − | | |
| − | Yes i will work with you related to backup server
| |
| − | yes we need storage to store our data on any storage server
| |
| − | | |
| − | | |
| − | also i sale backup server and other servers also if you want to buy server from me i can provide you but if you want to buy from digitalocean then show me which server you buying because i need to check specifications
| |
| − | | |
| − |
| |
| − | and what about DNS?
| |
| − | | |
| − | we need to update website DNS from digitalocean DNS to our own website DNS
| |
| − | because i have checked that MX record is not good for friendsofcnm.org
| |
| − | check following screenshot
| |
| − | | |
| − | we need following DNS i think
| |
| − | | |
| − |
| |
| − | | |
| − | ns1.friendsofcnm.org
| |
| − | ns2.friendsofcnm.org
| |
| − | | |
| − |
| |
| − | | |
| − | and now i check LDAP
| |
| − | | |
| − | | |
| − |
| |
| − | | |
| − | i have configure LDAP settings in labware and allowed 389 port also in controlpanel but its not working because i think need to allow our ip or something on LDAP server for more detail you can check following screenshot
| |
| − | https://prnt.sc/p4eyiy
| |
| − | | |
| − | ok i have fixed it on my end
| |
| − | and now its working with redmine
| |
| − | please check screen shot now
| |
| − | https://prnt.sc/p4f1pq
| |
| − | LDAP working with labware now
| |
| − | | |
| − | now going to next apps
| |
| − | | |
| − | setting done in cert.next
| |
| − | | |
| − | and we need to add ldap plugin for wordpress so i have checked wordpress ldap plugins but i can't decide which ldap plugin i need to install please tell me plugin name
| |
| − | like : Active Directory Integration / LDAP Integration
| |
| − | authLdap
| |
| − | Simple LDAP Login
| |
| − | | |
| − | ===Product backlog===
| |
