Previous page Next page

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

This page describes the minimum requirements necessary for Axxon Datacenter operation. The full list of requirements is created individually for each customer, depending on their needs.

Server requirements

  1. Server for AxxonNet:
    1. Ubuntu Linux 20.04 LTS
    2. CPU: 4x cores (4vCPU), ~2.5GHz (x86)
    3. RAM: 16GB
    4. SSD: 300GB for OS and additional software
    5. SSH access
    6. Incoming/outgoing connections are allowed on ports 80 and 443

  2. Server for the technical domain (optional):

    1. Ubuntu Linux 20.04 LTS
    2. CPU: 4x сores (4vCPU), ~2.5GHz (x86)
    3. RAM: 8GB
    4. SSD: 256GB for OS and additional software
    5. SSH access

Requirements for host system settings

Attention!

When using virtualization systems, the security of the host system is the responsibility of the customer.

  1. All Linux patches necessary for the project deployment are installed.
  2. The following ports are opened and added to Firewall permissions:
    1. Incoming and outgoing traffic to/from ports 80, 443, 22.
    2. Outgoing traffic (from hosts running Zabbix proxy) to port 10051 of AxxonSoft monitoring service based on Zabbix (m.itdep.net).
    3. Incoming traffic in the local network to port 10051 of the host running Zabbix proxy.

  3. Permissions for access and traffic:

    1. All traffic between the used hosts is allowed.
    2. All servers are available to each other over the network.
    3. No port restrictions between servers.
    4. No network firewall between servers.

    5. Full Internet access from the servers is provided.

    6. SSH access to Linux servers.

  4. UFW isn't supported and must be disabled in OS. Optional port configuration must be done with Iptables.

  5. NTP server is configured.
  6. The required time zone is set on all servers.
  7. Domain name—two options:
    1. AxxonSoft provides a name like <clientname>-demo1.axxoncloud.com.
    2. Customer provides the domain name. The domain name must be transformed by the DNS service to the IP address of the Axxonnet server.
  8. SSL certificate for the domain name—two options:

    1. AxxonSoft provides a Let's Encrypt certificate. Ports 443 and 80 must not be blocked for the Let's Encrypt servers. No action on the part of the customer is required.

    2. Customer provides a certificate and a secret key for the domain name.
  9. Mail server—three options:
    1. Сustomer provides the SMTP mail server and its data:
      • IP address of the SMTP server,
      • connection port,
      • login and password,
      • e-mail that will send e-mails as AxxonNet,
      • access from the AxxonNet server to the mail server (no port restriction).
    2. Customer provides a Mailjet account (if there is no SMTP mail server):
      • customer registers a Mailjet account with any pricing plan and provides login/password,

      • customer adds SPF/DKIM records to the DNS zone for AxxonNet,

      • customer adds TXT login record to the DNS zone for AxxonNet.

        Note

        AxxonSoft can help with Mailjet setup, but it is necessary to have access to the DNS settings.

    3. AxxonSoft provides a Mailjet account only for demo installations. In this case, customer provides access to the Mailjet servers via ports 25 and 587.

Remote access requirements

From the best option to the least convenient:

  1. Direct SSH access.
  2. SSH access via VPN.
  3. RDP connection to the host and SSH to the servers.
  4. VPN to RDP host and SSH to servers.

Attention!

TeamViewer, Anydesk and other similar remote access options are not supported.

See also:

Role types

Axxon Datacenter limitations

  • No labels
Error formatting macro: children: java.lang.NullPointerException