🗺 Infrastructure Réseau CICAR — PPE 4 · Administration Locale & Helpdesk
2FA Stormshield · GLPI Helpdesk · MobaXterm Admin · Agence El Hierro · BTS SIO SISR – E6
Infrastructure de base
PPE4 — Administration Locale
🌐 Réseau El Hierro · Pilotage via Poste Client
➖
100%
➕
↺
⬇ SVG
📌 PPE4 — ADMINISTRATION
Admin MobaXterm (Client PC)
GLPI Agent (Client PC)
Veeam Backup (Client → AD)
Contour violet = cible Admin
🖱 MobaXterm : RDP (Win) / SSH (Lin)
🖱 MobaXterm : Web/SSH (Réseau)
📦 GLPI Agent : Uniquement Postes Clients
🔒 VPN IPsec : StrongEncryption
🛡 2FA OTP activée sur Stormshield
☁ INTERNET / WAN
🛡 Stormshield SNS 310
Pare-feu · VPN IPsec (StrongEncryption) · DENY ALL
LAN: 192.168.54.254
DMZ: 192.168.64.254
🔐 2FA
🖱 MobaXterm
✔ Authentification 2FA OTP activée — PPE4
LAN
DMZ
🟢 ZONE LAN — 192.168.54.0/24
🔀 Switch TP-Link SG-3424
192.168.54.20
🖱 MobaXterm (Web/SSH)
📶 Wi-Fi TP-Link
192.168.54.30
🖱 MobaXterm (Web/SSH)
💻 Poste Client Admin
DHCP .54.100–200
📦 GLPI Agent
🖱 MobaXterm
💾 Console Veeam
🖥 VMware ESXi 7.0
192.168.54.1
🖱 MobaXterm (Web/SSH)
🗂 SRV-EL-AD
192.168.54.10
🖱 RDP MobaXterm
💾 Sauvegarde Veeam
🔐 SRV-EL-RADIUS
192.168.54.11
🖱 RDP MobaXterm
📧 SRV-EL-MAIL
192.168.54.40
🖱 SSH MobaXterm
🌐 SRV-EL-WEB-01
192.168.54.15
🖱 SSH MobaXterm
🌐 SRV-EL-WEB-02
192.168.54.16
🖱 SSH MobaXterm
🟡 ZONE DMZ — 192.168.64.0/24
⚖ SRV-EL-PROXY (HAProxy)
192.168.64.1
🖱 SSH MobaXterm
HTTP LB
HTTP LB
📦 Rapport GLPI Agent
🔒 Tunnel VPN IPsec — Chiffrement StrongEncryption
🏢 SIÈGE TENERIFE
LAN: 192.168.57.0/24
📊 Centreon / Supervision SNMP
💾 NAS RAID-5 / Veeam B&R
🖱 MobaXterm — Admin centralisé
RDP / SSH / Web → Agence El Hierro
📦 GLPI · 192.168.57.60
Helpdesk + Inventaire automatique
WAN: 192.168.69.97
Administration Centralisée
🏝 LA PALMA
LAN: 192.168.56.0/24
WAN: 192.168.69.96
🏝 LA GOMERA
LAN: 192.168.55.0/24
WAN: 192.168.69.95
🏝 GRAN CANARIA
LAN: 192.168.53.0/24
WAN: 192.168.69.93
📍 EL HIERRO
LAN: 192.168.54.0/24
WAN: 192.168.69.94
📋 Plan d'adressage PPE4
LAN : 192.168.54.0/24 · DMZ : 192.168.64.0/24 · Réplication : 192.168.69.0/24
AD .54.10 (RDP) · WEB-01 .54.15 (SSH) · WEB-02 .54.16 (SSH)
SNS310 .54.254 (HTTPS admin 2FA) · Siège TF : 192.168.57.0/24
GLPI : 192.168.57.60 · Tous accès via VPN IPsec StrongEncryption
Zone LAN
Zone DMZ
FW 2FA OTP (PPE4)
Siège · GLPI · MobaXterm
Admin MobaXterm
GLPI_Agent report
Veeam B&R
VPN IPsec
📦 Contour violet = cible Admin