. '''To [[SystemAdministration/Systems|Systems Overview]]''' - '''To [[SystemAdministration/Systems/ca-mgr1-test|CA-MGR1-test / CATS Testserver]]''' ---- = Systems - vmware-host.it-sls.de (SLS) = = Basics = == Purpose == Host for vm's regarding Software-Assessment, Software Development, Repositories == Physical Location == This system is an ESX machine in a serverroom Offenbach/Main, DE == Logical location == * IP Internet: 192.109.159.22 vmware-host.it-sls.de * --(IP Intranet: 10.38.6.66 vmware-host.it-sls.de)-- == Applicable Documentation == This is it :-) == Administration == System Admin: * Markus Warg * Andreas Bäß = Services = == Listening services == || port || service || access origin || purpose || || 443 || https || sysadmins || management || || 902 || vmmgmt || sysadmins || management || * group sysadmins || Netfilter || Who || State || || 209.85.148.113/32 || MW || allow || || 84.19.190.195 || MT || allow || || 84.19.191.195 || MT || allow || || All || all || deny || == Running services == || Service || Started from || || ESX || autostart || == Running Guests == || Machine || IP Intranet || IP Internet || Ports || Access || Purpose || || [[SystemAdministration/Systems/cacert1-test|cacert1.it-sls.de]] || ./. || 192.109.159.23 || 22, 80, 443 || All allow || Main testserver, webdb patches || || [[SystemAdministration/Systems/cacert1-test|secure1.it-sls.de]] || ./. || 192.109.159.24 || 22, 80, 443 || All allow || Main testserver, webdb patches, secure channel || || [[SystemAdministration/Systems/cacert2-test|cacert2.it-sls.de]] || ./. || 192.109.159.25 || 22, 80, 443 || All allow || Main testserver, os + applic patches, dedicated to critical team || || [[SystemAdministration/Systems/cacert2-test|secure2.it-sls.de]] || ./. || 192.109.159.26 || 22, 80, 443 || All allow || Main testserver, os + applic patches, secure channel, dedicated to critical team || || [[SystemAdministration/Systems/ca-mgr1-test|ca-mgr1.it-sls.de]] || ./. || 192.109.159.27 || 22, 80, 443 || All allow || Testserver Management Console (incl. mailboxes for testserver accounts, testserver 1) || || [[SystemAdministration/Systems/ca-mgr1-test|cats1.it-sls.de]] || ./. || 192.109.159.28 || 22, 80, 443 || All allow || new CATS testserver || || [[SystemAdministration/Systems/git|git-cacert.it-sls.de]] || ./. || 192.109.159.29 || 22, 80, 9418 || All allow || central git repository (old + new software) || . ''(Also update [[SystemAdministration/IPList|Global Systems IPlist]] table)'' == Connected Systems == === Outbound network connections === = Security = == Non-distribution packages and modifications == == Risk assessments on critical packages == = Tasks = = Critical Configuration items = = Changes = == Server Move == * Configuration Items 1. network firewall, access rules for host (input, forward), ports for vm guests 1. cacert1: root/firewall.sh mysql access permissions from ca-mgr1 1. all: etc/apache2/, etc/interfaces, hosts 1. cacert1: home/cacert hosts 1. cacert1 (maybe cacert2 too): /etc/resolv.conf, /home/cacert/etc/resolv.conf enter new dns server(s) == Planned == === System Future === = System Documentation = == Hardware == * Dell Tower * Intel Xeon 2 CPU 3 GHz (?) * 4 GB RAM * HDD: (?) == OS == * VMware ESX 3i 3.5.0 build 207095 === Document Stuff === ---- . CategorySystems