Control » Historial » Versió 13
Pau Escrich, 09-01-2013 17:15
1 | 10 | Pau Escrich | h1. Centralized Control |
---|---|---|---|
2 | 1 | Pau Escrich | |
3 | 10 | Pau Escrich | Centralized control is a interesting feature for some kind of network deployments. |
4 | Maybe not for communities but for private deployments would be useful (or even a need). |
||
5 | |||
6 | To control the nodes in remote we have a VPN overlay between all the existing nodes of a deployment |
||
7 | and a central server placed somewhere in the Internet. |
||
8 | The VPN is made using TINC software, a decentralized virtual private network where each node only needs to |
||
9 | connect to another one (not like OpenVPN or N2N where all nodes must connect to a central one). |
||
10 | |||
11 | So, the GateWays nodes of the mesh network will connect to the controller server (in the Internet) and the |
||
12 | non-GW nodes will connect to the GW nodes. Thus there won't be extra internet traffic from each node to the |
||
13 | server and the overhead will be very very small. |
||
14 | |||
15 | To simplify the VPN overlay we have created two new packets: |
||
16 | |||
17 | 13 | Pau Escrich | # "TincVPNweb":http://qmp.cat/projects/synctincvpn/wiki a web front-end to add/remove networks and nodes (http://tincvpn.qmp.cat) |
18 | # "SyncTincVPN":http://qmp.cat/projects/qmp/repository/revisions/testing/show/packages/synctincvpn an OpenWRT packet installed in |
||
19 | 10 | Pau Escrich | the mesh nodes. It connects to the web server (tincvpn.qmp.cat by default) and registers himself as a mesh node to get the Tinc configuration |
20 | from the web front-end. So it is a zero-config program which automatically adds the node to the VPN. |
||
21 | |||
22 | Once the nodes have connection to the VPN and to the control server we are able to control them in remote and |
||
23 | fetch statistics to make a nice web page for the users. |
||
24 | 13 | Pau Escrich | To configure the nodes we are gonna use "rUCI":http://wiki.arraigodigital.org.ar/RedLibre/Gu%C3%ADas/RemoteUCI which |
25 | 10 | Pau Escrich | is a small software to push remote UCI configurations. However we are planning to rewrite it to use GIT and add some new features. |
26 | To fetch statistics we can use SSH, SNMP or even MUNIN, it is up to the server admin. |
||
27 | 6 | Pau Escrich | |
28 | 9 | Pau Escrich | !qmp_control.png! |