Projecte

General

Perfil

Control » Historial » Versió 16

Pau Escrich, 09-01-2013 19:39

1 10 Pau Escrich
h1. Centralized Control
2 1 Pau Escrich
3 10 Pau Escrich
Centralized control is a interesting feature for some kind of network deployments.
4
Maybe not for communities but for private deployments would be useful (or even a need).
5
6
To control the nodes in remote we have a VPN overlay between all the existing nodes of a deployment 
7
and a central server placed somewhere in the Internet.
8
The VPN is made using TINC software, a decentralized virtual private network where each node only needs to 
9
connect to another one (not like OpenVPN or N2N where all nodes must connect to a central one).
10
11
So, the GateWays nodes of the mesh network will connect to the controller server (in the Internet) and the
12
non-GW nodes will connect to the GW nodes. Thus there won't be extra internet traffic from each node to the
13
server and the overhead will be very very small.
14
15
To simplify the VPN overlay we have created two new packets:
16
17 13 Pau Escrich
# "TincVPNweb":http://qmp.cat/projects/synctincvpn/wiki a web front-end to add/remove networks and nodes (http://tincvpn.qmp.cat)
18 15 Pau Escrich
19 14 Pau Escrich
# "SyncTincVPN":http://qmp.cat/projects/qmp/repository/revisions/testing/show/packages/synctincvpn an OpenWRT packet installed in the mesh nodes. It connects to the web server (tincvpn.qmp.cat by default) 
20
and registers himself as a mesh node to get the Tinc configuration from the web front-end. So it is a zero-config program which automatically adds the node to the VPN.
21 10 Pau Escrich
22
Once the nodes have connection to the VPN and to the control server we are able to control them in remote and
23
fetch statistics to make a nice web page for the users. 
24 16 Pau Escrich
To configure the nodes we are gonna use "rUCI":http://wiki.arraigodigital.org.ar/RedLibre/Gu%C3%ADas/RemoteUCI which is a small software to push remote UCI configurations. However we are planning to rewrite it to use GIT and add some new features. 
25 10 Pau Escrich
To fetch statistics we can use SSH, SNMP or even MUNIN, it is up to the server admin.
26 6 Pau Escrich
27 9 Pau Escrich
!qmp_control.png!