Difference between revisions of "Society of Sysadmins"

From CNM Wiki
Jump to: navigation, search
(CDN/Geocast)
(Topics)
Line 1: Line 1:
==Topics==
+
==Topics for 7/27 (Nenad)==
 
===ProxmoxVE HA===
 
===ProxmoxVE HA===
 
*We awarded the contract for an HA cluster on hetzner bare-metal servers -- may we go over technical specs on https://pravka.bskol.com/ru/%D0%94%D0%B5%D0%BB%D0%BE%D0%B2%D0%B0_%D0%A4%D0%B5%D1%80%D0%BC%D0%B0 and get your critique? In addition, we consider substituting the third server with a higher-space-harddisk one in order to use that third server in other projects and experiments.
 
*We awarded the contract for an HA cluster on hetzner bare-metal servers -- may we go over technical specs on https://pravka.bskol.com/ru/%D0%94%D0%B5%D0%BB%D0%BE%D0%B2%D0%B0_%D0%A4%D0%B5%D1%80%D0%BC%D0%B0 and get your critique? In addition, we consider substituting the third server with a higher-space-harddisk one in order to use that third server in other projects and experiments.
 
*Nenad: Great, we can go through the specs, great that everything is documented.
 
*Nenad: Great, we can go through the specs, great that everything is documented.
  
 +
===Infrastructure networks===
 +
*Back to networks, are you familiar with Microtik? Do we need it? We will need to set up a HA cluster on distributed VPS, if it is possible, using HAProxy? Is this where we need SDN -- software defined networks that you suggested? Where should we start?
 +
*Nenad: Yes, i use mikrotik routers and switches, you don;t need it for this ,only usually for remote locations. You can use SDN or VPN which is simpler.
 +
 +
==Potential topics (Joseph)==
 
===IPv6===
 
===IPv6===
 
*How well do you know IPv6? Particularly, using it with vSwitch since IPv6 is drastically more affordable.
 
*How well do you know IPv6? Particularly, using it with vSwitch since IPv6 is drastically more affordable.
Line 11: Line 16:
 
*Back to HA Proxmox storage, Ceph or TrueNAS?
 
*Back to HA Proxmox storage, Ceph or TrueNAS?
 
*Nenad: Ceph for distributed storage, TrueNAS for NFS, as in SPOF
 
*Nenad: Ceph for distributed storage, TrueNAS for NFS, as in SPOF
 
===Infrastructure networks===
 
*Back to networks, are you familiar with Microtik? Do we need it? We will need to set up a HA cluster on distributed VPS, if it is possible, using HAProxy? Is this where we need SDN -- software defined networks that you suggested? Where should we start?
 
*Nenad: Yes, i use mikrotik routers and switches, you don;t need it for this ,only usually for remote locations. You can use SDN or VPN which is simpler.
 
 
===WSO2 IS===
 
*We tried to implement WSO2 IS for our identity service management, but got stuck -- are you familiar with that piece of software? If so, we use LDAP now -- may we keep LDAP while using WSO2 IS?
 
*Nenad: i've worked with some WSO2, but i don't think for your use case. LDAP or AD in Zentyal,whatever you're comfortable with.
 
 
===CDN/Geocast===
 
*We will use [[Cloudflare]] for our [[Wordpress]] applications. However, we would like to consider our own implementation of CDN and Geocast for our cluster built on VPS distributed to different regions -- do you have any recommendations?
 
*Nenad: No, usually cloudflare if i'm not mistaken.
 
 
===Jitsi===
 
*We stopped using our instance of Jitsi video conferencing after having some troubles -- what would you recommend?
 
*Nenad: Jitsi is open source, usually zoom for paying customers. I don't know why is jitsi working so bad. Maybe WebRTC ?
 
  
 
===Federated mail===
 
===Federated mail===
Line 43: Line 32:
 
*We are organizing a meetup group for Ukrainian system administrators. Do you have good examples of such groups?
 
*We are organizing a meetup group for Ukrainian system administrators. Do you have good examples of such groups?
 
*Nenad: If you are talking about physical then no.
 
*Nenad: If you are talking about physical then no.
 +
 +
==Open topics==
 +
===WSO2 IS===
 +
*We tried to implement WSO2 IS for our identity service management, but got stuck -- are you familiar with that piece of software? If so, we use LDAP now -- may we keep LDAP while using WSO2 IS?
 +
*Nenad: i've worked with some WSO2, but i don't think for your use case. LDAP or AD in Zentyal,whatever you're comfortable with.
 +
 +
===CDN/Geocast===
 +
*We will use [[Cloudflare]] for our [[Wordpress]] applications. However, we would like to consider our own implementation of CDN and Geocast for our cluster built on VPS distributed to different regions -- do you have any recommendations?
 +
*Nenad: No, usually cloudflare if i'm not mistaken.
 +
 +
===Jitsi===
 +
*We stopped using our instance of Jitsi video conferencing after having some troubles -- what would you recommend?
 +
*Nenad: Jitsi is open source, usually zoom for paying customers. I don't know why is jitsi working so bad. Maybe WebRTC ?

Revision as of 14:29, 20 July 2022

Topics for 7/27 (Nenad)

ProxmoxVE HA

Infrastructure networks

  • Back to networks, are you familiar with Microtik? Do we need it? We will need to set up a HA cluster on distributed VPS, if it is possible, using HAProxy? Is this where we need SDN -- software defined networks that you suggested? Where should we start?
  • Nenad: Yes, i use mikrotik routers and switches, you don;t need it for this ,only usually for remote locations. You can use SDN or VPN which is simpler.

Potential topics (Joseph)

IPv6

  • How well do you know IPv6? Particularly, using it with vSwitch since IPv6 is drastically more affordable.
  • Nenad: I know ipv6,but i'm not using it really on a daily basis.

Ceph vs TrueNAS

  • Back to HA Proxmox storage, Ceph or TrueNAS?
  • Nenad: Ceph for distributed storage, TrueNAS for NFS, as in SPOF

Federated mail

  • Many of our applications have their own mail features. May we centralize? Further, our users need to get notifications from particular applications, but, because of security issues, we don't want to supply those applications with users' email addresses. May we set up a system in which the applications would send messages to the central mail server and it would be sending those to users?
  • Nenad: I don't understand this very well, we can talk about it.

MariaDB HA

  • Are you familiar with MariaDB HA tools such as MaxScale? Currently, we use Galera. How may we move to HA?
  • Nenad: Used galera and percona, i am usually using postgres for bigger apps.

Auto-created VMs

  • We plan to create VMs for our users automatically according some VM images. How would you recommend implementing that task?
  • Nenad: In proxmox there is an API for automating, and usually you can use ansible and terraform, but i don't have enough experience with terraform, only basic.

Meetup group

  • We are organizing a meetup group for Ukrainian system administrators. Do you have good examples of such groups?
  • Nenad: If you are talking about physical then no.

Open topics

WSO2 IS

  • We tried to implement WSO2 IS for our identity service management, but got stuck -- are you familiar with that piece of software? If so, we use LDAP now -- may we keep LDAP while using WSO2 IS?
  • Nenad: i've worked with some WSO2, but i don't think for your use case. LDAP or AD in Zentyal,whatever you're comfortable with.

CDN/Geocast

  • We will use Cloudflare for our Wordpress applications. However, we would like to consider our own implementation of CDN and Geocast for our cluster built on VPS distributed to different regions -- do you have any recommendations?
  • Nenad: No, usually cloudflare if i'm not mistaken.

Jitsi

  • We stopped using our instance of Jitsi video conferencing after having some troubles -- what would you recommend?
  • Nenad: Jitsi is open source, usually zoom for paying customers. I don't know why is jitsi working so bad. Maybe WebRTC ?
Retrieved from "https://pravka.bskol.com/w/index.php?title=Society_of_Sysadmins&oldid=72562"