feat: initial commit with AGENTS, network topology, and mini-pc handoff
This commit is contained in:
@@ -0,0 +1,71 @@
|
||||
# Network Topology — dzonicasa.xyz
|
||||
|
||||
## Machines
|
||||
|
||||
| Name | Device | LAN IP | WireGuard IP | Location |
|
||||
|------|--------|--------|-------------|----------|
|
||||
| home-core-dev | Mini PC | 192.168.0.240 | 10.8.0.6 | Home |
|
||||
| lenovo | Laptop | DHCP | 10.8.0.3 | Mobile |
|
||||
| vpn-server | Oracle VPS | 10.0.0.197 | 10.8.0.1 | Cloud |
|
||||
|
||||
## VPNs
|
||||
|
||||
### 1. Wolkabout Office VPN
|
||||
- **Endpoint**: `79.101.44.157:51820`
|
||||
- **Config on lenovo**: `/etc/wireguard/njovanovic.conf` (and duplicate `njovanovic.conf.conf`)
|
||||
- **Lenovo IP**: `10.8.0.3/24`
|
||||
- **DNS**: `10.0.50.15`
|
||||
- **PrivateKey**: `yFNg+e6esP1K5PofLKNZQqFJ1+InjC9DpXhFldECm1o=`
|
||||
- **Peer PublicKey**: `HsupulTLfUrQXUNSu2NMpM9RsUja5drl73a9bvZz31s=`
|
||||
- **PSK**: `s3zCeMxAr44V/QDiyf4opHgcwtZfoDojL/JvJ/b5s0Q=`
|
||||
- **AllowedIPs**: `0.0.0.0/0` (full tunnel)
|
||||
|
||||
### 2. Oracle VPS Personal VPN (wg-easy)
|
||||
- **Endpoint**: `130.162.209.80:51820`
|
||||
- **Web UI**: `http://localhost:51821` (SSH tunnel, password `WZaadgj6`)
|
||||
- **Subnet**: `10.8.0.0/24`
|
||||
|
||||
#### Peers on Oracle VPS:
|
||||
| Name | WG IP | Public Key |
|
||||
|------|-------|-----------|
|
||||
| dzoni-mob (OLD) | 10.8.0.2 | `T+2YH4hS970lyRsCmxybHzEaCszWZPIyoU31uRXgO2M=` |
|
||||
| dzoni-lenovo | 10.8.0.3 | `bP3tvdeAEHqZnVXBKd7qqe9S9PhI3nMX7DhNQ200sj8=` |
|
||||
| mini-pc (CURRENT) | 10.8.0.6 | `xekIYyq18hcW9vP3LoRbMG/w0q4UcxX1c0cK96NJFQA=` |
|
||||
|
||||
#### Mini PC WireGuard Config (`/etc/wireguard/wg0.conf`):
|
||||
```ini
|
||||
[Interface]
|
||||
PrivateKey = 8F/FUxwzSRAo8TS49YIRRpEnktQ9dNWlrg4JXFiFvnI=
|
||||
Address = 10.8.0.6/24
|
||||
|
||||
[Peer]
|
||||
PublicKey = d5Vvb77K6aI0IvcpzBfRBWwCk6ou6BNh710y0spylyE=
|
||||
PresharedKey = sNicM+F7kR+uRMWy2ZREhS/clOco5lSV+xQSnz+wUP0=
|
||||
Endpoint = 130.162.209.80:51820
|
||||
AllowedIPs = 10.8.0.0/24
|
||||
PersistentKeepalive = 25
|
||||
```
|
||||
|
||||
## Routing Flow
|
||||
```
|
||||
Office → Wolkabout VPN (79.101.44.157) → Oracle VPS (130.162.209.80) → nginx → WireGuard → Mini PC (192.168.0.240)
|
||||
```
|
||||
|
||||
## Services (via nginx on Oracle VPS)
|
||||
|
||||
| Service | URL | Backend |
|
||||
|---------|-----|---------|
|
||||
| Home Assistant | `https://ha.dzonicasa.xyz` | `192.168.0.240:8123` |
|
||||
| Pi-hole | `https://pihole.dzonicasa.xyz` | `192.168.0.240:8180` |
|
||||
| Docs Portal | `https://docs.dzonicasa.xyz` | Static + Authelia |
|
||||
| Authelia SSO | `https://docs.dzonicasa.xyz/authelia/` | `authelia:9091` |
|
||||
|
||||
## Oracle VPS SSH Access
|
||||
```
|
||||
ssh -i ~/.ssh/ssh-key-2024-10-17.key ubuntu@130.162.209.80
|
||||
```
|
||||
|
||||
## Mini PC SSH Access
|
||||
```
|
||||
ssh devops@192.168.0.240
|
||||
```
|
||||
Reference in New Issue
Block a user