Software And Virtual Machines
Geographically… We’ll be starting with my “Annville” location. A nice thing to note for a later upcoming blog is that the Annville and York sites are 55 miles from each other which is technically okay for a DR (Disaster Recovery) especially with it being in a mountainous area.
Annville:
Plex
This is a Ubuntu 18.04 LTS virtual machine with Plex running as a dedicated service. I’ve added some other functions to this virtual machine to help in my automation task to create less repetitive work which is keeping the service up-to-date. I’ve also setup the server to connect via fstab to the YKGE server since that serves some folders connected to my Google GSuite account. To keep things a little more secure… all the data goes through the IPSec tunnel. It keeps the tunnels up so its worth it. I don’t permit external users on my server.
BlueIris
This is a local security system for my secondary remote server cabinet. I maintain cameras internally and externally for the house. All of the cameras used are Dahua rebrands of Amcrest. I’ve linked Blue Iris if you want to learn more about BlueIris
Seedbox
I use this machine to host publicly available open-source software to hopefully put a small dent on the map for the non-profits that host them.
Veeam
I use this to backup… basically all of the virtual machines shown below. I’ll go into further detail in another blog post. I don’t backup virtual machines like VCSA, WordPress (Dev box), etc. For this application, I do use and renew every year under the NFR licensing that I am grateful for.
YKDC1
This virtual machine used to be on the 192.168.4.12 server but with how VMware shares resources I decided for best practice to move this virtual machine to the Annville location. This server hosts DC, DHCP, DNS, AD CS, IIS, and NPAS
YKGE
This only runs stablebit for GSuite and print services across my IPSec tunnels.
York
Host: 192.168.4.12 (R710)
This physical server has been turned off at the time of writing to reduce consumption of power at my home.
Host:192.168.4.13 (R720)
DMS(SeedDMS)
A light-weight server that runs on a Ubuntu OS to host all scanned documents; I have decommissioned this for now as I evaluate others
Bookstack
I use this often to make up my own KB articles, a recipe section for my family, and many other articles
Cacti
This is used as an SNMP poller for all of my networking equipment… Primarily a mix of Ubiquiti and Cisco
Mayan EDMS
Currently this is my document management system that runs through a turnkey system
OpenVPN
This is used to connect externally through a handheld device or laptop back into my environment. I only allow traffic to a certain subnet for security reasons
UNMS
This is a application provided by Ubiquiti to allow the management of its Edge product line. I do use this for my own purposes and to also manage a few external bridges that I’ve placed
WordPress
I do not host this in a DMZ or externally. The WordPress VM is used for development reasons.
VCSA
VCSA is basically in short VMware vCenter which I use to communicate across all 3 of my physical hosts
BlueIris
Like before in Annville this system is used to record around the building both internally and externally
RDS
This is a terminal server that I use when I’m out and about. No outbound ports of course
SQL
Since SQL is popular among Windows environments for ERP’s specifically… I’ve decided to run a Dev SQL environment to manage, maintain, and learn from.
WSUS
I use this to maintain Windows updates for all computers/servers while maintaining updates through scripts.
YKDC2
The YKDC2 virtual server is a replica to YKDC1. It maintains default replication times.
YKFS01
This is only a file server and serves both an S:\ (shared data) and H:\ (private data).
YKGE19
Again this is another general server that hosts a lot of common items I don’t want on critical pieces like a file server, domain controller, or anything like that. Basically, to keep the risk and confusion away.