1.9 KiB
1.9 KiB
homelab
- OPNsense firewall: https://opnsense.hh.lan
- Proxmox virtualization cluster: https://proxmox1.hh.lan
services
- HomeAssistant home automation
- Frigate NVR (security cameras): https://frigate.local:8971
- Paperless document repository: https://paperless.hh.lan
things to set up
Gitea
- http://gitea.hh.lan:3000
- SSH key stored in bitwarden
- used
docker-compose-templateVM template - Moved host
sshdtotcp:2222so gitea container can usetcp:22
Caddy
Authentik
CrashPlan (or other backup service)
Home auth
Network
graph TD;
internet((Internet))<-->nest_wifi_pro(Nest Wifi Pro);
nest_wifi_pro<-->microtik;
microtik<==>LACP(LACP/VLAN trunk);
LACP<-->vlan86;
LACP<-->vlan200;
vlan86<-->proxmox_eth0[eth0]<-->proxmox;
vlan86<-->proxmox_eth1[eth1]<-->proxmox;
vlan200<-->proxmox_eth0[eth0]<-->proxmox;
vlan200<-->proxmox_eth1[eth1]<-->proxmox;
proxmox<-->bond0<-->vmbr0<-->VMs;
vlan200<-->vault_eth3[eth3]<-->vault;
vlan200<-->vault_eth4[eth4]<-->vault;
DNS
graph LR;
internet((Internet))<-->porkbun;
porkbun<-->hobbithole_org(hobbithole.org);
hobbithole_org<-->opnsense;
opnsense<-->caddy;
caddy<-->vault;
caddy<-->proxmox;
opnsense<-->hh_lan(hh.lan)<-->bind<-->unbound;
unbound<-->vault;
unbound<-->proxmox;
proxmox[proxmox + VMs];
- External domain:
hobbithole.org- Hosted on SquareSpace, about to move over to PorkBun
- Internal domain:
hh.lan- Unbound transparent domain --> BIND authoritative domain
- Hosted on OPNsense
- Unbound transparent domain --> BIND authoritative domain
IPAM
- wifi:
192.168.86.0/24 - services:
192.168.200.0/24
Proxmox
Hosts
proxmox1.hh.lan- 192.168.200.101
proxmox2.hh.lan- 192.168.200.102
proxmox3.hh.lan- 192.168.200.103