artanis/Inanis_Vault
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

"vault backup: 2026-03-08 13:41:28 from Flow"

Browse Source
This commit is contained in:
Spencer Grimes
2026-03-08 13:41:28 -05:00
parent 3eccd6deee
commit ec242f1052
22 changed files with 313 additions and 40 deletions
Download Patch File Download Diff File Expand all files Collapse all files

73
21-Server Reference/homelab/network.md Normal file
View File

@@ -0,0 +1,73 @@
# Network
## Physical / Host Interfaces
| Interface | IP | Notes |
|---|---|---|
| `enp0s31f6` | `192.168.2.114/24` | Primary LAN NIC |
| `tailscale0` | `100.72.0.62/32` | Tailscale VPN interface |
| `lo` | `127.0.0.1` | Loopback |
The server also has many `br-*` Docker bridge interfaces (172.x.x.x ranges) — one per Docker network. See the Docker Networks section below.
## Tailscale
The server is on the `bunny-wyvern.ts.net` Tailnet. Remote access to all services is done exclusively through Tailscale — no public port forwarding is configured.
Each major service registers itself as a separate Tailscale node via the sidecar pattern (see [[README#Key Architectural Patterns]]).
| Tailscale Hostname | Service |
|---|---|
| `dockhand.bunny-wyvern.ts.net` | Dockhand |
| `mealie.bunny-wyvern.ts.net` | Mealie |
| `linkwarden.bunny-wyvern.ts.net` | Linkwarden |
| `gitea.bunny-wyvern.ts.net` | Gitea |
| `matrix.bunny-wyvern.ts.net` | Matrix / Synapse |
| `homepage.bunny-wyvern.ts.net` | Homepage |
| `n8n.bunny-wyvern.ts.net` | n8n |
| `calibre.bunny-wyvern.ts.net` | Calibre (inactive) |
| `openproject.bunny-wyvern.ts.net` | OpenProject |
## Host Ports In Use
| Port | Protocol | Service |
|---|---|---|
| 22 | TCP | SSH (host) |
| 139, 445 | TCP | Samba |
| 631 | TCP | CUPS (printing) |
| 2222 | TCP | Gitea SSH |
| 3000 | TCP | Gitea web UI |
| 5001 | TCP | Linkwarden |
| 5010 | TCP | OpenProject |
| 5100 | TCP | Python process (unknown) |
| 5555 | TCP | Dockhand |
| 5678 | TCP | n8n |
| 8001 | TCP | Gluetun HTTP control server |
| 8388 | TCP/UDP | Gluetun Shadowsocks |
| 8888 | TCP | Gluetun HTTP proxy |
| 9170 | TCP | system-bridge |
| 25565 | TCP | Minecraft |
| 24454 | UDP | Minecraft voice chat |
| 35000 | TCP | Homepage |
## Docker Networks
| Network Name | Subnet | Connected Containers |
|---|---|---|
| `matrix_matrix-internal` | `172.25.0.0/16` | synapse, matrix-db, matrix-relay, mautrix-* |
| `dockhand_default` | `172.23.0.0/16` | dockhand |
| `docker_default` | `172.18.0.0/16` | melodix |
| `gitea_default` | `172.20.0.0/16` | gitea, gitea_db |
| `linkwarden_default` | `172.21.0.0/16` | linkwarden, linkwarden-db |
| `mealie_default` | `172.22.0.0/16` | mealie |
| `homepage_default` | `172.26.0.0/16` | homepage |
| `n8n_default` | `172.29.0.0/16` | n8n |
| `minecraft_server_default` | `172.24.0.0/16` | minecraft |
| `open-project_default` | `172.30.0.0/16` | openproject |
| `gluetun-qbittorent_default` | `172.19.0.0/16` | gluetun |
| `calibre_default` | `172.28.0.0/16` | (empty — calibre stopped) |
## DNS
- `127.0.0.53` — systemd-resolved (stub resolver)
- Gluetun is configured to use `192.168.2.112` as DNS (likely the Pihole on the LAN)