1. Noguix Cluster Edition (Main Server)
- Master VPN / Tunnel / Web Proxy
- VPN
- Sendmail MTA
- Pop3 & imap
- Apache + Mysql
- Heartbeat (Cluster)
- Samba File Sharing
- Squid

2. VPS SUSE10 (Secondary Server)
- Running on vmware inside noguix
- Scalix Mail Server
- Fetchmail

3. Noguix Cluster Edition (Backup Server)
- Hearbeat (Cluster)
- Apache + Mysql
- AoE

How the things go?

1. Master VPN / Tunnel / Web Proxy
This services will give full access to the three servers, services, router & switch via ssh from outside. There for, my users including me only can use Scalix web access (SWA) and reading email via secure & encrypted connection. I don’t even need to open FTP & scalix mail server directly to the public which is too risky. For downloading & file sharing, users only can share and download it via this connection.

At the same time Master VPN also offering Web Proxy services & will forward anyone to the most blocked / restricted website or ports when needed. Yes sometime we have a difficulty to download packages / modules / files from any ftp site just because your customer places blocking the port 21 and same goes to video & media streaming.

2. OpenVPN
This become my secondary / alternative access to my network from outside via ssh over vpn. When my main server / master VPN goes down, I still have another solution to remote in my server & browse my network easily.

3. Heartbeat (Cluster)
Heartbeat offering high-availability and currently I just running one cluster resources on it which is apache just to handle static website when ever my main server goes down. At least I still have a chances to let the user know what the status during the down time of my main server via cluster secondary node. In future, I probably will host another cluster resources for mysql only when I finished with my testing on cluster file system inside noguix such as OCFS / GlusterFS or DRBD.

4. Apache + Mysql
Nothing much to explain. Just to host my customer’s website.

5. Sendmail MTA / POP3 / IMAP / Mail Filter
Become my mail relay. All the incoming mail from outside first will be reached here. I just use mailfilter with bunch of rules just to filtering all the incoming mail before fetch by fetchmail & then transfer to the Scalix mail server on SUSE10.

6. Scalix Mail Server
No need to tell but it’s robust, enterprise-grade mail & group calendar solution.

7.ATA Over Ethernet (AoE)
Acting as my mini SAN storage to do data backup, shared & extra block storage over the ethernet. Later I will add another bigger storage when I’m ready to implement as much as possible cluster resources in my network environment.

So the point is, with better understanding, proper planning, effort & resources you have, you still can implement such a small but secure connection for your home network environment regardless on what and which distro or services that you choose.

Noguix proved it!

ariyossss

athlon_crazy
18/04/2008 2:50AM