Differences

This shows you the differences between two versions of the page.

--- infra:services:network:2025-rewamp [2025/01/19 18:20] – [The plan] kfh
+++ infra:services:network:2025-rewamp [2025/04/08 18:11] (current) – marcusramberg
@@ Line 1: / Line 1: @@
-# 2025 network rewamp
+====== 2025 network rewamp ======
-## The plan
+===== The plan =====
 <mermaid>
 raw
@@ Line 39: / Line 43: @@
 </mermaid>
-## Projects
+===== Projects =====
-### Edgerouter for DMZ routing
+==== Edgerouter for DMZ routing ====
 Pad: https://pad.hackeriet.no/p/2025-network-dmz
-**Main points**
+//Main points//
+ - Set up 2x Edgerouters behind Blix gw
+ - Bind Hackeriet's linknet IP to one of the two ERs
+ - Use VRRP with dedicated internal keepalive network to move VIP
+ - Connect downstream core (pit-sw or UDM+sw-core, depending on the other project) to ERs with separate physical links
+   - Use (R)STP to only keep one downstream link active
+ - Only route DMZ network
+ - Will not touch internal networks
+ - Separate link to each ER for sw management network
+==== Unifi Dream Machine for NAT and internal routing ====
-- Set up 2x Edgerouters behind Blix gw
-- Bind Hackeriet's linknet IP to one of the two ERs
-- Use VRRP with dedicated internal keepalive network to move VIP
-- Connect downstream core (pit-sw or UDM+sw-core, depending on the other project) to ERs with separate physical links
-  - Use (R)STP to only keep one downstream link active
-- Only route DMZ network
-- Will not touch internal networks
-- Separate link to each ER for sw management network
-### Unifi Dream Machine for NAT and internal routing
 Pad: https://pad.hackeriet.no/p/2025-network-internal
-**Main points**
+//Main points//
 - Put up Unifi Dream Machine and dedicated L2 core switch