# Network Topology — dzonicasa.xyz

## Machines

| Name | Device | LAN IP | WireGuard IP | Location |
|------|--------|--------|-------------|----------|
| home-core-dev | Mini PC | 192.168.0.240 | 10.8.0.6 | Home |
| lenovo | Laptop | DHCP | 10.8.0.3 | Mobile |
| vpn-server | Oracle VPS | 10.0.0.197 | 10.8.0.1 | Cloud |

## VPNs

### 1. Wolkabout Office VPN
- **Endpoint**: `79.101.44.157:51820`
- **Config on lenovo**: `/etc/wireguard/njovanovic.conf` (and duplicate `njovanovic.conf.conf`)
- **Lenovo IP**: `10.8.0.3/24`
- **DNS**: `10.0.50.15`
- **PrivateKey**: `yFNg+e6esP1K5PofLKNZQqFJ1+InjC9DpXhFldECm1o=`
- **Peer PublicKey**: `HsupulTLfUrQXUNSu2NMpM9RsUja5drl73a9bvZz31s=`
- **PSK**: `s3zCeMxAr44V/QDiyf4opHgcwtZfoDojL/JvJ/b5s0Q=`
- **AllowedIPs**: `0.0.0.0/0` (full tunnel)

### 2. Oracle VPS Personal VPN (wg-easy)
- **Endpoint**: `130.162.209.80:51820`
- **Web UI**: `http://localhost:51821` (SSH tunnel, password `WZaadgj6`)
- **Subnet**: `10.8.0.0/24`

#### Peers on Oracle VPS:
| Name | WG IP | Public Key |
|------|-------|-----------|
| dzoni-mob (OLD) | 10.8.0.2 | `T+2YH4hS970lyRsCmxybHzEaCszWZPIyoU31uRXgO2M=` |
| dzoni-lenovo | 10.8.0.3 | `bP3tvdeAEHqZnVXBKd7qqe9S9PhI3nMX7DhNQ200sj8=` |
| mini-pc (CURRENT) | 10.8.0.6 | `xekIYyq18hcW9vP3LoRbMG/w0q4UcxX1c0cK96NJFQA=` |

#### Mini PC WireGuard Config (`/etc/wireguard/wg0.conf`):
```ini
[Interface]
PrivateKey = 8F/FUxwzSRAo8TS49YIRRpEnktQ9dNWlrg4JXFiFvnI=
Address = 10.8.0.6/24

[Peer]
PublicKey = d5Vvb77K6aI0IvcpzBfRBWwCk6ou6BNh710y0spylyE=
PresharedKey = sNicM+F7kR+uRMWy2ZREhS/clOco5lSV+xQSnz+wUP0=
Endpoint = 130.162.209.80:51820
AllowedIPs = 10.8.0.0/24
PersistentKeepalive = 25
```

## Routing Flow
```
Office → Wolkabout VPN (79.101.44.157) → Oracle VPS (130.162.209.80) → nginx → WireGuard → Mini PC (192.168.0.240)
```

## Services (via nginx on Oracle VPS)

| Service | URL | Backend |
|---------|-----|---------|
| Home Assistant | `https://ha.dzonicasa.xyz` | `192.168.0.240:8123` |
| Pi-hole | `https://pihole.dzonicasa.xyz` | `192.168.0.240:8180` |
| Docs Portal | `https://docs.dzonicasa.xyz` | Static + Authelia |
| Authelia SSO | `https://docs.dzonicasa.xyz/authelia/` | `authelia:9091` |

## Oracle VPS SSH Access
```
ssh -i ~/.ssh/ssh-key-2024-10-17.key ubuntu@130.162.209.80
```

## Mini PC SSH Access
```
ssh devops@192.168.0.240
```