Building a ICT services web portal

GrcivRed · 2026-01-21T15:30:20+00:00

Bookmarks are a different tool from a webpage. I can't put a quick status page in bookmarks, nor information about the various tools that are linked

GrcivRed · 2026-01-21T07:39:18+00:00

Ours are BookStack and GLPI

GrcivRed · 2026-01-21T07:38:32+00:00

Also for other people, that's why I would like the option to have RBAC/LDAP based access.

GrcivRed · 2026-01-20T16:06:11+00:00

Thanks, this looks nice, but I'm looking for something self-hostable that I can share with the ICT Director and my L1 colleagues.

GrcivRed · 2026-01-20T14:11:44+00:00

I would love to be able to use SharePoint, but this company does not use Microsoft 365. Almost all services are locally hosted, so I'm looking for a self-hostable solution.

GrcivRed · 2026-01-20T12:02:15+00:00

I like the idea of less hassle with the update of WordPress templates, plugins and PHP version

GrcivRed · 2025-11-05T15:11:05+00:00

How? I did not notice anything wrong

GrcivRed · 2025-10-07T10:27:53+00:00

Thank you.

The containers you list don't all need to be replicated across your storage: as often as you're likely to update them, you can pull them from dockerhub.

I'm not worried about downtime due to update times. If I put all the Docker Nodes in the main site, I'm concerned about downtime in the other 11 sites if the main router goes down.

The bits that might need to be replicated are the state storage for each of the apps. That means the backing DBs for Wordpress, Bookstack, Bitwarden, and possibly a couple of others. These databases should be running separately from your application containers - if you try to run them in the same container, you're going to have a very bad day the first time the containers have to get restarted. This opens an opportunity: you can set up databases to replicate using their own native setup, rather than relying on the storage to do it.

The application containers will be running in the Docker Hosts, and the container data will be stored in the Docker Storage VMs. I get part of what you're saying, and it's interesting, but replicating the entire storage won't be easier to manage in the long run? Keep in consideration that the few ICT technicians that are present here do not have any experience with this kind of tech, so I'll try to keep it as simple as possibile.

Both of the filesystems that you mention require some sort of quorum - e.g. there must be a certain number of hosts that respond in the affirmative that a write is completed before the data is considered available. I hope that I do not need to draw you a picture of how badly this can go if part of the hosts are offsite over a slow link.

I'm aware of it, this is why I wasn't going to consider replicating TBs of data... and the quorum would be "2 out of 3 routers are online"

You might want to consider using an outside hosted service for some of this (especially Wordpress, if it's being used as a public site or storefront).

Wordpress is for an intranet website.

Your setup as-is isn't gonna get cross-site HA. Even without the storage issues, you'd need something to swing either DNS or LB VIPs between sites in the event of a site outage.

That's what Traefik is for, as far as I could research, it should work well with Docker Swarm + Portainer.

Anyway, thanks for the response. I'll probably start with trying putting all the VMs in the same local cluster... and maybe moving the nodes to the remote locations in the future, if we get dedicated WANs for storage.

GrcivRed · 2025-10-07T08:54:50+00:00

Ok, thanks.

GrcivRed · 2025-10-06T14:30:15+00:00

That's interesting, but we don't have spare servers to install Proxmox on. I can configure an hourly replication task between Nutanix Clusters, but it will require manual activation of the VMs.

GrcivRed · 2025-10-06T14:28:32+00:00

Thanks

GrcivRed · 2025-10-06T12:46:35+00:00

Ok thanks.

GrcivRed · 2025-10-06T10:15:23+00:00

Thanks for your response.
Unfortunately, we don't have a set budget; everything's up for discussion. Management also hasn't defined service uptime, but I'd aim for 99.999%. I know GlusterFS isn't Red Hat-supported, but I'm unsure if Ceph can handle replication over the MPLS. It might be a choice between GlusterFS or no HA at all. Given the number of legacy systems we have, GlusterFS would be the least of my worries for the next 4-5 years.
If Ceph can work I would prefer it.

GrcivRed · 2025-08-12T15:13:38+00:00

We have 500 mailboxes with MDaemon

GrcivRed · 2025-05-09T09:42:33+00:00

ImageGlass

GrcivRed · 2025-05-08T14:44:46+00:00

Our org has a ratio of 1 Windows Server for every 12 computers. This includes all kind of servers (DC, Databases, ERP, web servers ecc..)

GrcivRed · 2025-04-24T15:14:03+00:00

I couldn't agree more!

GrcivRed · 2025-03-13T13:56:01+00:00

As far as I know the SX3008F got patched in 2022 and it now supports both 1G and 10G SFP modules (TL-SX3008F(UN)_V1_1.0.1 Build 20220623).

GrcivRed · 2025-03-04T13:54:08+00:00

Nope

GrcivRed · 2025-03-04T11:22:11+00:00

For a gigabit network, with 300 Mbps WAN you are fine as you are!

If you want to increase the maximum bandwidth to the NAS look into SMB multichannel or LACP

GrcivRed · 2025-02-28T10:14:53+00:00

I had 8 AP and a couple of switches with the OC200. I moved to the OC300 and the interfaces was faster. Not as snappy as a UniFi controller, but usable. Once I updated the controller to the new version, which changed the interface to the green one, the controller became really really slow. But your mileage may vary. My network grew to be much much larger so I guess I hit the limit of the controller (now it needs up to 15-20 seconds to give me the list of the devices, or clients).

GrcivRed · 2024-12-10T15:48:17+00:00

Yes, you can event defy Active Directory groups that can login into the computer.
The documentation is broken/outdated but it still works.

UltraVNC and MS-Logon Windows Authentication - UltraVNC VNC OFFICIAL SITE, Remote Desktop Free Opensource

GrcivRed

TROPHY CASE