Networkยถ

Office networkยถ

For the network infrastructure at the office, weโ€™re using UniFi equipment:

  • UniFi Switches

  • UniFi Security Gateway

  • UniFi Access Points

UniFi Cloud Keyยถ

To manage the UniFi devices, use the dedicated UniFi controller, resp. UniFi cloud key.

See also

Check out the Dashboard for the ยซUniFi cloud keyยป link.

LANยถ

Weโ€™re using 10.0.0.0/8 for our private network ranges.

Physical networksยถ

All physical networks are assigned IPs from the 10.0.0.0/12 subnet.

To see the network subnets, check out the UniFi Cloud Key:

  • Settings โ†’ Networks (VLANโ€™s)

  • Settings โ†’ VPN โ†’ Site-to-Site VPN โ†’ {VPN} โ†’ Subnet

Docker networksยถ

All Docker networks are assigned IPs from the 10.16.0.0/12 subnet:

Subnet

Usage

10.16.0.0/16

Default Docker bridge

10.17.0.0/16

Proxy network

10.18.0.0/16

Compose project bridge networks

Office LAN IPsยถ

The office LAN IPs are managed in the UniFi Cloud Key.

Server LAN IPsยถ

The server LAN IPs are managed in Ansible.

Hint

You can use the create_host_list.yml playbook to create a host_list.txt file containing all host IPs.

Firewallsยถ

To protect our network, weโ€™re using firewalls. Check out the Firewall chapter for more information.

VPNsยถ

To interconnect our networks, resp. access them from remote, weโ€™re using VPNs. Check out the VPN chapter for more information.

WANยถ

Office WANยถ

At the office weโ€™ve a fixed & native IPv4 address 84.254.96.223.

We also have a routed IPv4 subnet 217.71.252.24/29 over the native IP address.

IPv4 address

Usage

DNS PTR

217.71.252.24/29

n/a: network ID

217.71.252.25/29

Gateway

217.71.252.26/29

Management services

management.wan.confirm.ch

217.71.252.27/29

Lenovo server

217.71.252.28/29

EliteDesk 1

217.71.252.29/29

EliteDesk 2

217.71.252.30/29

EliteDesk 3

217.71.252.31/29

n/a: broadcast

Datacenter WANยถ

At the datacenter, weโ€™ve a fixed & native IPv4 address 195.201.104.241. Itโ€™s assigned to the Proxmox.

We also have a routed IPv4 subnet 46.4.219.16/28 over the native IP address:

IPv4 address

Usage

DNS PTR

46.4.219.16/28

n/a: network ID

46.4.219.17/28

Proxmox (gateway)

proxmox.wan.confirm.ch

46.4.219.18/28

Live services

live.wan.confirm.ch

46.4.219.19/28

Customer services

customers.wan.confirm.ch

46.4.219.20/28

Test services

test.wan.confirm.ch

46.4.219.21/28

Development services

development.wan.confirm.ch

46.4.219.22/28

46.4.219.23/28

46.4.219.24/28

46.4.219.25/28

46.4.219.26/28

46.4.219.27/28

46.4.219.28/28

46.4.219.29/28

46.4.219.30/28

46.4.219.31/28

n/a: broadcast

Server WAN IPsยถ

The server WAN IPs are managed in Ansible.

Hint

You can use the create_host_list.yml playbook to create a host_list.txt file containing all host IPs.