Revision as of 19:05, 6 December 2013
Computerisms Open Corporate Networking Model
Introduction
This site provides instructions to build an open source corporate/business network model using centralized Active Directory/LDAP Authentication.
It provides all the basic functionality of a Microsoft Exchange Server and more to a cross-platform environment.
key protocols and services supported include: IPSec/L2TP VPN, SSL secured web applications, VoIP, Cal/Card/WebDAV, IMAP, SMTP, Sieve, large file transfer, Job Tracking, Network Monitoring/Alerting, Backups, Domain Security, Digital Signage
What You Need to Know Before Using This Wiki
Order of Construction
- Organize Hardware
- Set up Basic Firewall Functions - porchlian
- Create a Certificate Authority - houselian
- Install Daemontools
- Run the User Creation Script
- Install Samba Active Directory
- Install Qmail-ldap, Dovecot, and Related Email Services
- Install OpenUpload
- Install Davical
- Install RoundCube/Notes on groupware clients
- Configure WebDAV
- Install Request Tracker
- Install Ledgersmb
- Install MediaWiki
- Install FreeRadius
- Install OpenBroadcaster - No LDAP Auth
- Install Asterisk - No LDAP Auth
- Install Nagios
- Install APCUPSD
- Install DHCP and DNS - porchlian
- Shape/Track Bandwidth - Finalize IPTables
- Install LibreSWAN and Xl2tpd
- Install Rsnapshot - shedlian
|
UID/GID ChartUser Creation Script
System User UID
name |
UID |
GID |
Additional Groups
|
qmail |
- |
500 |
|
nofiles |
- |
501 |
|
alias |
502 |
501 |
|
qmaild |
503 |
501 |
|
qmaill |
504 |
501 |
|
qmailp |
505 |
501 |
|
qmailq |
506 |
500 |
|
qmailr |
507 |
500 |
|
qmails |
508 |
500 |
|
vmail |
509 |
509 |
|
dovecot |
510 |
510 |
|
dovenull |
511 |
511 |
|
clamav |
512 |
512 |
member of simscan group
|
simscan |
513 |
513 |
|
spamd |
514 |
514 |
|
razor |
515 |
- |
member of nogroup
|
asterisk |
520 |
520 |
member of phnmngr group
|
phnmngr |
521 |
521 |
|
ups |
522 |
522 |
|
davical |
530 |
530 |
|
roundcube |
531 |
531 |
|
fetch |
532 |
532 |
|
rt |
533 |
533 |
|
ob |
534 |
534 |
|
wiki |
535 |
535 |
|
files |
536 |
536 |
|
ledger |
537 |
537 |
|
nagios |
538 |
538 |
|
|
Hosts/DNS A Records
DNS A Records
FQDN |
IP Address
|
Physical Hosts
|
porchlian.computerisms.com |
192.168.26.1
|
houselian.computerisms.com |
192.168.26.10
|
shedlian.computerisms.com |
192.168.26.11
|
Network Services
|
pbx.computerisms.com |
192.168.26.10
|
cal.computerisms.com |
192.168.26.10
|
mail.computerisms.com |
192.168.26.10
|
Web Applications
|
listadmin.computerisms.com |
192.168.26.10
|
listarchive.computerisms.com |
192.168.26.10
|
webmail.computerisms.com |
192.168.26.10
|
rt.computerisms.com |
192.168.26.10
|
ledger.computerisms.com |
192.168.26.10
|
help.computerisms.com |
192.168.26.10
|
wiki.computerisms.com |
192.168.26.10
|
media.computerisms.com |
192.168.26.10
|
nagios.computerisms.com |
192.168.26.10
|
External to LAN
|
crl.computerisms.com |
real.world.ip.address
|
|
Volume Mounts
Volume Mounts
Data |
Path |
Drive Letter |
Notes
|
mail |
/home/mail |
|
Personal Mail and Mailing Lists
|
peronsal files |
/home/data/people |
P: |
(P:)ersonal Files - governed by user ownership
|
group files |
/home/data/Departments |
O: |
(O:)rganization Files - governed by group ownership
|
WebDAV |
/home/webDAV |
W: |
(W:)eb accessible file storage
|
User Accounts/Passwords
User Accounts and Passwords
User |
Pass |
Notes
|
god |
BobIssues |
Local Computer Account - windows and linux
|
root |
G0dIssues |
root account on Linux boxes
|
Computerisms Certificate Authority |
B0wB4Me!! |
|
Web/Mail Certificates |
WeeMinion |
|
Host Certificates |
ChiefMinion |
|
Administrator |
The1TrueB0b |
This account is the Network Administrator
|
authenticator |
ThisDevilIkn0w |
Used by 3rd party apps for authentication - avoid special characters
|
MySQL Root |
Bobs(abacus)2 |
|
Database User Accounts |
DBMinion |
all database user accounts for postgresql and mysql
|
Radius Secret |
DeputyCherubJr |
|
OpenBroadcaster/PBX Admin |
BobsMessenger |
username is admin for both services
|
OpenBroadcaster Device |
TheW0rd0fB0b |
Password you will need to set up the digital signage computer
|
IPPhone Autoprovision |
ConvertThem |
this is the phnmngr username uid 521
|
NSS Database |
B0bsGates |
for Libreswan on porchlian
|
Personal Certificates |
S0ns0fB0b |
issued to end users for VPN
|
|