Our Network
As with all companies some internal infrastructure is required, even if it is actually outsourced it is "internal" to the actual operations. In our case we use a combination of internal servers, outsourced servers and outsourced services. This is the most typical approach to supporting the internal requirements of the business.
We had a few simple goals: keep complexity down, fully utilize our computing assets, standardize platforms and outsource any components where a 3rd party can provide a better price/risk benefit than an internal solution.
We had the standard requirements of most businesses: firewall, VPN links, remote access, Windows desktop computers, servers for applications, file and print, and outsourced web and email services.
Solution
LAN and WAN: We deployed a 1Gbps switched LAN allowing rapid exchange of information between client computers and the central servers. Our sites are linked via OpenVPN servers and we have deployed standardized firewall configurations. There is more than one level of firewall protection utilizing a standard multi-layered approach for greater security.
Servers: Using Dell PowerEdge servers deployed VMware ESXi solution for base core systems. The use of VMWare's virtualized
environment allowed us to fully utilize our computing asset. Using Ubuntu and CentOS server distributions a number of servers were deployed within the
virtual environment: LDAP, DNS (bind9), SMTP (Postifx), Web (Apache2), MySQL (Server 5.5), File (Samba, NFS, iSCSI), Print (CUPS), Webmail (Roundcube),
VPN (OpenVPN), Monitoring (Nagios3), Backups (Syncrify), PXE boot and builds, etc.
Storage was allocated using iSCSI and local disk storage in addition to NFS and CIFS network file shares. On top of this structure we run financial
applications, support sites, trouble ticketing, internal Wiki, and a number of custom PHP based web solutions. We built our internal network to match
the Linux solutions we often suggest to clients. We also run a number of Windows servers for development but not for infrastructure management.
Outsourced: Although we run SMTP and Webmail for internal use (development and testing) we use external service providers for mail and web hosting. For mail we use a Hosted Exchange Platform from Sherweb. For web hosting and web services we use both Network Solutions and Hostgator.
Desktops: Standardized desktop computers and operating systems were utilized to reduce complexity and to allow reployment of equipment to any location within the company's office environment. Using Windows 7 with a standard desktop environment and application suite. LDAP directory services have been used to user management within the local network.
Other: Standard office hardware, printers, scanners, etc. are used within the environment.
Tags: Linux, Ubuntu, CentOS, LDAP, DNS, SMTP, Apache, MySQL, CIFS, NFS, iSCSI, Wiki, Nagios, OpenVPN, Webmail, Windows, Server, Windows 7