Hosting for business. The story of one move
A few years ago, while looking for a job, I came across an ad from a company that needed a Linux specialist and it was on the terms of a freelancer, i.e. not full-time, but a sort of outsourcing. Quite astonished (I live not in the central part of our vast Motherland, such announcements are extremely rare) I dialed a phone number and made an appointment to meet in the evening of the same day. It should be noted that I had to wonder more than once.
Arriving at the place at the appointed hour, I met the director and, after a short interview, we began a conversation.
Informal talk went about various Linux distributions, cloud storage and document management, server components selection, virtualization,iOS vs Android , but about everything you don’t expect to hear from the director of a construction company.
Little by little (remember, the conversation was spontaneous, unhurried) the tasks that would be standing in front of me began to emerge ...
Part one. Introductory.
Recently, the company was faced with a full-scale audit, during which all computers, servers were seized, and doing business was very difficult. After some time, the computers returned, but the repetition of this really did not want to. Therefore, first of all, it was necessary to ensure the security of company data, and security was primarily physical, no one should have physical access to the server, it cannot simply be taken and carried away.
The second step in the plan was the legalization of the software used.
')
The manager already had a plan and consisted of the following points:
Part two. Implementation.
Switch to open source.
After some controversy, I managed to defend that Ubuntu, on users' computers, will look much better than OpenSUSE (I don’t incinerate, of course, IMHO). Having taken a replacement computer, in a week or two, I managed to transfer everyone to Linux (except for glav.buha, but this is another story). I took Libre Office as an office suite, the Ubuntu distribution then read the numbers 10.04, I used x11vnc for remote control and assistance to users, and the connection to the terminal server (more about it just below) 1C was done by remmina.
Warning questions, yes, there were dances with a tambourine. Especially with the Samsung scanner (I don’t remember the model) and a bit with the printers.
But most of all I remember the installation of the OS on the old IBM Thinkpad 390x with a killed CD drive. This laptop was used by the storekeeper to access 1C and print documents. I installed Lubuntu on it, because DE there is easier.
Since that time, even a few photos of this handsome man have been preserved (sorry for quality, shot on sneakers).
Speaking about taking the server out of physical reach, we discussed a lot of options, ranging from cutting out secret rooms, holes in the floor and hanging the server on a balloon, tosetting mines and stretch marks in the server room are already incredible options. But in the end they came to a more competent decision - to rent a dedicated server.
At the time of the events described, a famous German provider became our hoster.
Windows 2008 R2 got up on the server, VPN was configured for the head office and branch of the company, shared folders and other joys of life for employees. Then we agreed on customer service and periodically I came for the money or if it was impossible to solve the problem properly.
Thus, the tasks were solved, employees were trained to work in the new OS (many liked it right away, others understood it later), and the server became far from the reach of unwanted people.
It would seem that the happy end of the story, but no - further more interesting.
Part Three The company is growing, the tasks are expanding.
As time passed, I entrusted the care of this company to my friend, because he changed his job and his free time became much less, and there was no need for a part-time job. We keep in touch with the director and he periodically consults on various IT issues. In the course of one of the conversations, the need to seriously expand the list of tasks assigned to that server (dedicated server) was raised.
In addition to the terminal server were needed:
Tasks are hardly simpler than those set earlier, at the dawn of our cooperation. I had a way to solve them, but I don’t have to support it all the time. So it turned out that by this time I was already working in ServerClub and in our team of those. support of any of the admins are able to both configure this solution and support it, solving emerging problems 24/7/365.
Organize all services decided on a single server using virtualization. The choice fell on the Dell R210 with 2x1TB HDD and 16GB of RAM.
After consulting with colleagues, they proposed this scheme:
As can be seen in the diagram, Frontend provides access to virtual computers from the Internet (it looks into the internal network and into the world), it runs various network services - VPN, routing, firewall. The rest of the virtual machines only look at the internal network, so the client needed only two “white” IP addresses and all of its VMs are securely protected.
Having coordinated this proposal, we installed new virtual servers, and the terminal W2K8R2, from the old hosting, was transported using VMware Standalone Converter .
This tool, from one of the industry leaders, allows you to transfer an installed and configured system from hardware to a virtual machine. The process of preparation and configuration is quite trivial, but there is one useful trick. The fact is that by default, the program uses SSL encryption of traffic, this significantly slows down the transfer process and at the first attempts to move the time counter showed too high values. Also, when transferring data, a converter.fault.FileIOFault error may occur and the process will be interrupted. To solve these problems, you must disable encryption, this is done
Upon completion of the terminal server transfer, we set up regular data backup of all VMs and monitoring , after which the client finally moved to us.
Part Four The final.
With this example, I wanted to show the benefits of hosting dedicated servers in solving various business problems in the context of IT. After all, the purchase of such a server would have cost the company a lot of money, and still need to place it somewhere, cool it, bring uninterrupted power, administer and replace components.
By renting a server you donate all these tasks to the hosting provider, and by renting a server from us you also get branded hardware and technical support at any time and for absolutely any tasks - from installing the OS to complete configuration and support of your project.
Thanks for attention,
come to us hosted!
Arriving at the place at the appointed hour, I met the director and, after a short interview, we began a conversation.
Informal talk went about various Linux distributions, cloud storage and document management, server components selection, virtualization,
Little by little (remember, the conversation was spontaneous, unhurried) the tasks that would be standing in front of me began to emerge ...
Part one. Introductory.
Recently, the company was faced with a full-scale audit, during which all computers, servers were seized, and doing business was very difficult. After some time, the computers returned, but the repetition of this really did not want to. Therefore, first of all, it was necessary to ensure the security of company data, and security was primarily physical, no one should have physical access to the server, it cannot simply be taken and carried away.
The second step in the plan was the legalization of the software used.
')
The manager already had a plan and consisted of the following points:
- Transfer of all computers of the company to Open Source
- Transfer of all data (DB 1C, other accounting programs, documents) outside the offices of the company
- Organization of work of employees in the new realities of IT infrastructure
Part two. Implementation.
Switch to open source.
After some controversy, I managed to defend that Ubuntu, on users' computers, will look much better than OpenSUSE (I don’t incinerate, of course, IMHO). Having taken a replacement computer, in a week or two, I managed to transfer everyone to Linux (except for glav.buha, but this is another story). I took Libre Office as an office suite, the Ubuntu distribution then read the numbers 10.04, I used x11vnc for remote control and assistance to users, and the connection to the terminal server (more about it just below) 1C was done by remmina.
Warning questions, yes, there were dances with a tambourine. Especially with the Samsung scanner (I don’t remember the model) and a bit with the printers.
But most of all I remember the installation of the OS on the old IBM Thinkpad 390x with a killed CD drive. This laptop was used by the storekeeper to access 1C and print documents. I installed Lubuntu on it, because DE there is easier.
Since that time, even a few photos of this handsome man have been preserved (sorry for quality, shot on sneakers).
IBM Thinkpad 390x
Speaking about taking the server out of physical reach, we discussed a lot of options, ranging from cutting out secret rooms, holes in the floor and hanging the server on a balloon, to
At the time of the events described, a famous German provider became our hoster.
Windows 2008 R2 got up on the server, VPN was configured for the head office and branch of the company, shared folders and other joys of life for employees. Then we agreed on customer service and periodically I came for the money or if it was impossible to solve the problem properly.
Thus, the tasks were solved, employees were trained to work in the new OS (many liked it right away, others understood it later), and the server became far from the reach of unwanted people.
It would seem that the happy end of the story, but no - further more interesting.
Part Three The company is growing, the tasks are expanding.
As time passed, I entrusted the care of this company to my friend, because he changed his job and his free time became much less, and there was no need for a part-time job. We keep in touch with the director and he periodically consults on various IT issues. In the course of one of the conversations, the need to seriously expand the list of tasks assigned to that server (dedicated server) was raised.
In addition to the terminal server were needed:
- Web server for the company website
- Separate server for database 1C (transition to SQL)
- IP telephony server (I already wrote about testing this solution)
Tasks are hardly simpler than those set earlier, at the dawn of our cooperation. I had a way to solve them, but I don’t have to support it all the time. So it turned out that by this time I was already working in ServerClub and in our team of those. support of any of the admins are able to both configure this solution and support it, solving emerging problems 24/7/365.
Organize all services decided on a single server using virtualization. The choice fell on the Dell R210 with 2x1TB HDD and 16GB of RAM.
After consulting with colleagues, they proposed this scheme:
As can be seen in the diagram, Frontend provides access to virtual computers from the Internet (it looks into the internal network and into the world), it runs various network services - VPN, routing, firewall. The rest of the virtual machines only look at the internal network, so the client needed only two “white” IP addresses and all of its VMs are securely protected.
Having coordinated this proposal, we installed new virtual servers, and the terminal W2K8R2, from the old hosting, was transported using VMware Standalone Converter .
This tool, from one of the industry leaders, allows you to transfer an installed and configured system from hardware to a virtual machine. The process of preparation and configuration is quite trivial, but there is one useful trick. The fact is that by default, the program uses SSL encryption of traffic, this significantly slows down the transfer process and at the first attempts to move the time counter showed too high values. Also, when transferring data, a converter.fault.FileIOFault error may occur and the process will be interrupted. To solve these problems, you must disable encryption, this is done
simply
Go to the folder where the converter-worker.xml configuration file is located.
For Windows 2008 R2, it is in "% ALLUSERSPROFILE% \ VMware \ VMware vCenter Converter Standalone".
Find a section there
remove it, and also change the useSsl parameter in the nfc section to false
To apply the changes, you must restart the service.
For Windows 2008 R2, it is in "% ALLUSERSPROFILE% \ VMware \ VMware vCenter Converter Standalone".
Find a section there
<ssl> <!– Private key file –> <privateKey>ssl/rui.key</privateKey> <!– Certificate file –> <certificate>ssl/rui.crt</certificate> </ssl> remove it, and also change the useSsl parameter in the nfc section to false
<nfc> <readTimeoutMs>120000</readTimeoutMs> <useSsl>false</useSsl> To apply the changes, you must restart the service.
VMware vCenter Converter Standalone WorkerUpon completion of the terminal server transfer, we set up regular data backup of all VMs and monitoring , after which the client finally moved to us.
Part Four The final.
With this example, I wanted to show the benefits of hosting dedicated servers in solving various business problems in the context of IT. After all, the purchase of such a server would have cost the company a lot of money, and still need to place it somewhere, cool it, bring uninterrupted power, administer and replace components.
By renting a server you donate all these tasks to the hosting provider, and by renting a server from us you also get branded hardware and technical support at any time and for absolutely any tasks - from installing the OS to complete configuration and support of your project.
Thanks for attention,
come to us hosted!
Source: https://habr.com/ru/post/260847/
All Articles