Clusterducks

Clusterducks Requirements

Though small networks with light workloads can get away with very little, larger networks may want more. And then there is a set of minimum essentials before clusterducks will even work.

Essentials

  • The panel interface requires a PHP-friendly webserver (like apache or nginx)
    • lighttpd is not supported because the project seems to be dead and the community that supports the project has evaporated
    • This can be hosted on any kind of trusted system. Essentially, whoever can access your webserver will be able to access your hosts. Keep your panel secure!
    • A chicken-and-egg bug prevents clusterducks from hosting itself in a VM, so keep this in mind if you intend on migrating your panel to a VM once it is running When using the overlayfs initrd module with Linux devices, it is entirely possible for clusterducks to be self-hosting
  • A tunnel service is required to broker API requests
    • Storage / compute server API access can be bothersome because of firewalls, NAT
    • We provide a small tunnel service based on OpenSSH that you can host
    • The tunnel service must have a publicly accessible DNS hostname that has only port tcp/22 (SSH) open for incoming agent connections
    • The tunnel service must have a privately accessible IP (IPSEC, LAN, VPN etc) directly from the control panel with all ports open and available
  • Netboot servers typically run Debian Wheezy or Ubuntu 14.04+
    • Old servers can power many bare metal workstations; AMD Opteron 2210 with 16G RAM + 1Gbit LAN runs 30 systems comfortably, with plenty of room to grow
    • More servers = better
    • Storage is mirrored across servers, does not provide a traditional cluster like Ceph
    • 1Gbit for your netboot devices is good, 10Gbit is great. Try to fit the server with a 10Gbit link, and each workstation with 1Gbit
    • Unless all of your components (panel, tunnel, storage) are on the same LAN, basic internet service is required for DB updates

Optional considerations

  • User data storage
    • A user data store should be used for persistent data, such as documents and multimedia. This can be done with clusterducks-provided vDisks or external file shares.
  • Dedicated network for iSCSI traffic
    • Some sensitive workloads or environments would definitely benefit from the increase in security and performance of network segregation
  • iSCSI HBA for Windows Servers
    • As long as the boot order is configured appropriately, an iSCSI HBA could be used for reliable volume management in Windows Server family operating systems that have poor results when directly booting via iBFT.