WGNHS - Server Infrastructure
WGNHS runs the majority of their own infrastructure on-site.
Server Network Hardware
We have 2 ubiquiti switches in the server rack at Mineral Point to enable 10GB networking between hypervisors and the backup appliance. These switches are owned and managed by us. The campus network equipment at the survey building on mineral point is in a cabinet in the basement.
ESXi Infrastructure
We use a VMware essentials license that covers 3 hosts w/ 6 sockets. We do NOT have the capability to do High Availability, Powered-On V-Motion, or other more advanced features. vCenter is not domain joined, credentials are in the WGNHS keepass file. We are running vmWare v7 on all hosts. The networking is straight forward - all VM's and iDRAC's live on the 144.92.125.0/25 network and are secured w/ the campus firewall.
| ESXi Host | IP | Info | iDRAC |
|---|---|---|---|
| COPPER | 144.92.125.94 | R750 . | https://144.92.125.49/restgui/start.html |
| GABBRO | 144.92.125.11 | R730 | |
| FELDSPAR | 144.92.125.18 | R740 | |
| vCenter 8 | 144.92.125.20 | vCenter appliance (lives on GABBRO) | https://vc8.wgnhs.wisc.edu/ |
ProxMox Infrastructure
We have 1 proxmox host running M-S-UNIFI, WGS-Petrel and PBS (ProxMox Backup Service)
| Host | IP | Info | iDRAC |
| PEDIMENT.wgnhs.wisc.edu | 144.92.125.41 | ProxMox 8.x running on R730 | https://144.92.125.34/login.html |
| pbs.wgnhs.wisc.edu | 144.92.125.90 | PBS is a VM on PEDIMENT. Backs up via NFS to greenland | |
| WGS-PETREL | 144.92.125.108 | This is windows 11 instance with a fancy USB key dongle passed through via USB. Petrel license is on 27000 (27000@wgs-petrel.ad.wisc.edu) | |
| M-S-UNIFI | 144.92.125.9 | This machine hosts a unifi controller to control the network equipment at MoHo. You can access the controller at https://unifi.wgnhs.wisc.edu:8443 from the WGNHS internal network. I use the unifi scripts at https://glennr.nl/ for installing, updating, fail2ban, letsencrypt. Credentials and more information in KeePass. Utilizes unattended-upgrades package with default config enabled. Should be updated/rebooted manually periodically as well. | https://unifi.wgnhs.wisc.edu:8443 |
vmWare VMs
All VM's are in vSphere with the exception of M-S-UNIFI, WGS-Petrel and PBS which run on PEDIMENT. See vCenter for a full list. Not all of these machines are domain joined - reference the KeePass for credentials if AD creds do not work.
| Server Name | OS | IP | Server Info |
|---|---|---|---|
| M-S-Storage02 | Windows Server 2019 | 144.92.125.68 | Primary File Share |
| Basalt | Centos 6.8 | 144.92.125.36 | Production web server for wgnhs.wisc.edu. There are also a number of basalt based clones for development purposes. All password info stored in KeePass. DO NOT TRY TO UPDATE THIS SERVER - TRUST ME. This one is a top priority for retierment. |
| Cyclone | Windows Server 2012 | 144.92.125.42 | Production IIS server containing an Arc web adapter. We use LetsEncrypt for TLS - see C:\win-acme\letsencrypt.exe (Use A to renew all) |
| M-S-VPN2 | pfSense (BSD based router) | 144.92.125.8 | This machine keeps a point to point VPN open between the Madison office and the Mount Horeb site. We have a GPO to add a static route to the MOHO network (192.168.100.0/24). There is another nearly identical PFSense installation on netgate hardware at the MoHo site. The configuration files for both pfsense installs are stored in the WGNHS KeePass. ALWAYS SAVE A CONFIG AND UPLOAD TO KEEPASS AFTER ANY CHANGE |
| M-S-UNIFI | Ubuntu 22.04 | 144.92.125.9 | This machine hosts a unifi controller to control the network equipment at MoHo. You can access the controller at https://unifi.wgnhs.wisc.edu:8443 from the WGNHS internal network. I use the unifi scripts at https://glennr.nl/ for installing, updating, fail2ban, letsencrypt. Credentials and more information in KeePass. Utilizes unattended-upgrades package with default config enabled. Should be updated/rebooted manually periodically as well. |
| Cirrus | Windows Server 2012 R2 | 144.92.125.104 |
Microsoft SQL Server 2014 that houses databases used by the Arc line of products and has databases names after the following: Data Catalog/Pubs/Geobase/GISLib/Springs. |
| Cumulus | Windows Server 2012 R2 | 144.92.125.24 | SSD file storage for GISLib share |
| M-S-GIS03 | Windows Server 2019 | 144.92.125.12 | ArcGIS Server |
| M-S-Licensing01 | Windows Server 2016 | 144.92.125.74 | Global mapper on tcp/27000. ArcGIS licensing (campus license files) on tcp/27001. WellCAD on tcp/27002. (Wellcad needs to be installed w/ FLEX installer and use "27002@m-s-licensing01.ad.wgnhs.uwex.edu" for license server) |
| M-S-UTIL | Windows Server 2019 | 144.92.125.30 | Server was created to host namespace shares. |
| M-S-BACKUP03 | Windows Server 2016 | 144.92.125.58 | This server has been decommissioned but is being retained in backups on the off chance we ever have to recover something from a tape backup. This veeam server was decommed around july 2024. |
| int-geologic-map | boot2docker | 144.92.125.51 | This does things that Dave Sibley knows about |
| dev-gateway | boot2docker | 144.92.125.56 | website docker machine |
| dev-manager1 | boot2docker | 144.92.125.69 | website docker machine |
| dev-worker1 | boot2docker | 144.92.125.94 | website docker machine |
| prod-gateway | boot2docker | 144.92.125.73 | website docker machine |
| prod-manager1 | boot2docker | 144.92.125.109 | website docker machine |
| prod-worker1 | boot2docker | 144.92.125.84 | website docker machine |
| Aqueduct | Windows Server 2012R2 | 144.92.125.39 | Middleman for processing web-facing content. |
| WGNHS_NUT | Ubuntu 24.04 | 144.92.125.112 | Runs Network UPS Tools. Connects to UPS batteries via USB and coordinates safe vmware shutdown on power failure. Web interface available from WGNHS internal network and ds internal network at nut.wgnhs.wisc.edu. Local authentication, password in keepass. Utilizes unattended-upgrades package with default config enabled. Should be updated/rebooted manually periodically as well. |
| WGSS-GISDATA | Server 2019 | 144.92.125.64 | Storage for GIS |
| M-S-GIS04 | Server 2019 | 144.92.125.60 | Built to facilitate upgrade and migration from M-S-GIS03. |
| M-S-MSSQL | Server 2019 | 144.92.125.75 | Eventual successor to CIRRUS |
| M-S-IIS | Server 2019 | 144.92.125.121 | Eventual successor to CYCLONE |