Managing the security training sites

From PDP/Grid Wiki
Revision as of 22:01, 10 March 2014 by Dennisvd@nikhef.nl (talk | contribs) (begin section on installing new machines)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigationJump to search

These are the quick notes about how to set up and run a bunch of virtual grid sites for training purposes.

Overview

The virtual machines for these sites are managed with Xen Cloud Platform (XCP) on blade 0, partition b. Log in as root@bl0b.pool.inst.ipmi.nikhef.nl.

The sites live on vlan 41, which is only available on bl0b. There is only one host with an interface to the outside, called melkstal.nikhef.nl. This host serves as the gateway for all the participants in the training and the site administrators. It also serves as a NAT box.

On the inside of vlan 41, the network addressing is divided up by virtual site:

10.1.0.0/16 management systems and example site ('darknet')
10.2.0.0/16 virtual site #1
10.3.0.0/16 virtual site #2

There is one management host to help install and configure all other machines: cobbler.darknet. This system runs cobbler to help systems install with DHCP, DNS and kickstart files. It also runs saltstack to manage state on each system.

Installing and re-installing machines

Installation of new machines is done on the XCP master node. Log in as

root@pool-bl0b.inst.ipmi.nikhef.nl

In the home directory you will find this script which will create basic machine definitions from a template. It will give the machines a new interface with a generated MAC address.