fred/homelab-docs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
80debaf96858ccca761d9cb4410f3f8fe74c6d07
homelab-docs/infrastructure/IP-ALLOCATION.md
Funky (OpenClaw) dc8cbf127c FIX: Correct RustDesk configuration (both ID+Relay on VPS 51.222.12.162) 
- Updated ID Server: 51.222.12.162:21116 (was 10.0.10.23)
- Updated Relay Server: 51.222.12.162:21117 (was 66.63.182.168)
- Updated Public Key: EPO75IeD+yJo5S5wtKePpyokHGXv9FN1w5Fx+Db5UCk=
- Marked CT 123 (10.0.10.23) as deprecated - RustDesk now VPS-only
- Source: Screenshot from 2026-02-22
2026-02-23 03:48:40 +00:00

263 lines
11 KiB
Markdown
Raw Blame History

# Network IP Allocation Plan
**Last Updated:** 2026-01-18
**Status:** Active - Source of Truth
**Network:** 10.0.10.0/24
**Gateway:** 10.0.10.1 (UCG Ultra)
---
## IP Range Allocation
| Range | Purpose | Count | Method |
|-------|---------|-------|--------|
| 10.0.10.1-9 | **Core Infrastructure** | 9 | Static on device |
| 10.0.10.10-19 | **Management & Remote Access** | 10 | Static on device |
| 10.0.10.20-29 | **Production Services** | 10 | Static on device |
| 10.0.10.30-39 | **IoT & 3D Printing** | 10 | Static/Reserved |
| 10.0.10.40-49 | **Utility Services & Gaming** | 10 | Static on device |
| 10.0.10.50-254 | **DHCP Pool** | 205 | Dynamic |
**Note:** IPs 10.0.10.1-49 use static configuration on devices, NOT DHCP reservations on UCG Ultra.
---
## Detailed IP Assignments
### Core Infrastructure (10.0.10.1-9)
| IP | Hostname | Device/Service | Location | CT/VM ID | Status |
|----|----------|----------------|----------|----------|--------|
| 10.0.10.1 | ucg-ultra | UCG Ultra Gateway | - | - | Active |
| 10.0.10.2 | pve-router | i5 Proxmox Node (8c/8GB) | Office | Host | Active |
| 10.0.10.3 | main-pve | DL380p Proxmox (32c/96GB) | Remote | Host | Active |
| 10.0.10.4 | pve-storage | Proxmox Host for OMV | - | Host | Active |
| 10.0.10.5 | omv | OpenMediaVault (12TB) | pve-storage | VM 400 | Active |
| 10.0.10.6 | - | AVAILABLE | - | - | - |
| 10.0.10.7 | - | AVAILABLE | - | - | - |
| 10.0.10.8 | - | AVAILABLE | - | - | - |
| 10.0.10.9 | - | AVAILABLE | - | - | - |
### Management & Remote Access (10.0.10.10-19)
| IP | Hostname | Device/Service | Location | CT/VM ID | Status |
|----|----------|----------------|----------|----------|--------|
| 10.0.10.10 | homelab-command | Gaming PC (RTX 5060, Wyoming, Ollama) | Office | Physical | Active |
| 10.0.10.11 | freds-imac | Fred's iMac (Late 2013, 3.2GHz i5, 24GB RAM, OpenClaw Desktop, user: fredi5) - Ethernet | Office | Physical | Configured |
| 10.0.10.12 | - | AVAILABLE | - | - | - |
| 10.0.10.13 | ilo | HP iLO (DL380p Management) | Remote | Physical | Active |
| 10.0.10.14 | - | AVAILABLE | - | - | - |
| 10.0.10.15 | ca-server | Step-CA Certificate Authority | main-pve | CT 115 | Active |
| 10.0.10.16 | - | AVAILABLE | - | - | - |
| 10.0.10.17 | - | AVAILABLE | - | - | - |
| 10.0.10.18 | - | AVAILABLE | - | - | - |
| 10.0.10.19 | - | AVAILABLE | - | - | - |
**Note on Fred's iMac:**
- **Ethernet (en0)**: 10.0.10.11 (Static) - MAC: ac:87:a3:2b:43:62 - **Status: Configured, cable not connected**
- **Wi-Fi (en1)**: 10.0.10.144 (DHCP) - MAC: b8:09:8a:ca:6c:53 - **Status: Active**
- When Ethernet cable is connected, both interfaces will be active simultaneously
- OpenClaw Desktop client accessible via either IP
### Production Services (10.0.10.20-29)
| IP | Hostname | Service | Location | CT/VM ID | Status |
|----|----------|---------|----------|----------|--------|
| 10.0.10.20 | postgresql | PostgreSQL (Shared DB) | main-pve | CT 102 | Active |
| 10.0.10.21 | authentik | Authentik SSO | main-pve | CT 121 | Active |
| 10.0.10.22 | n8n | n8n Workflow Automation | main-pve | CT 106 | Active |
| 10.0.10.23 | rustdesk | RustDesk ID Server (DEPRECATED - moved to VPS) | main-pve | CT 123 | Inactive |
| 10.0.10.24 | homeassistant | Home Assistant OS | pve-router | VM 104 | Active |
| 10.0.10.25 | prometheus | Prometheus + Grafana | main-pve | CT 125 | Active |
| 10.0.10.26 | uptime-kuma | Uptime Kuma Monitoring | main-pve | CT 128 | Active |
| 10.0.10.27 | dockge | Dockge + Media Stack (Sonarr, Radarr, Prowlarr, Bazarr, Deluge, Calibre-Web) + Vikunja (deprecated) + Dashboard + Caddy Internal Proxy | main-pve | CT 127 | Active |
| 10.0.10.28 | openclaw | OpenClaw Gateway (Multi-Agent AI Coordinator) - Port 18789 | main-pve | CT 130 | Active |
| 10.0.10.29 | - | AVAILABLE | - | - | - |
### IoT & 3D Printing (10.0.10.30-39)
| IP | Hostname | Device | MAC Address | Status |
|----|----------|--------|-------------|--------|
| 10.0.10.30 | ad5m | Flashforge AD5M 3D Printer | 88:a9:a7:99:c3:64 | Active |
| 10.0.10.31 | bambu-a1 | Bambu Lab A1 3D Printer | cc:ba:97:21:4c:f8 | Active |
| 10.0.10.32 | - | AVAILABLE | - | - |
| 10.0.10.33 | - | AVAILABLE | - | - |
| 10.0.10.34 | - | AVAILABLE | - | - |
| 10.0.10.35 | vehicle-tracker | Vehicle Maintenance Tracker (FastAPI) - CT 135 main-pve | - | Planned |
| 10.0.10.36 | - | AVAILABLE | - | - |
| 10.0.10.37 | - | AVAILABLE | - | - |
| 10.0.10.38 | - | AVAILABLE | - | - |
| 10.0.10.39 | - | AVAILABLE | - | - |
### Utility Services & Gaming (10.0.10.40-49)
| IP | Hostname | Service | Location | CT/VM ID | Status |
|----|----------|---------|----------|----------|--------|
| 10.0.10.40 | bar-assistant | Cocktail Recipe Manager | main-pve | CT 103 | Active |
| 10.0.10.41 | minecraft-forge | Minecraft Forge (CFMRPGU) | main-pve | CT 130 | Active |
| 10.0.10.42 | minecraft-stoneblock4 | Minecraft Stoneblock 4 | main-pve | CT 131 | Active |
| 10.0.10.43 | - | AVAILABLE | - | - | - |
| 10.0.10.44 | - | AVAILABLE | - | - | - |
| 10.0.10.45 | pterodactyl-panel | Pterodactyl Game Panel | main-pve | CT 105 | Active |
| 10.0.10.46 | pterodactyl-wings | Pterodactyl Wings (Node) | main-pve | CT 107 | Active |
| 10.0.10.47 | - | AVAILABLE | - | - | - |
| 10.0.10.48 | - | AVAILABLE | - | - | - |
| 10.0.10.49 | - | AVAILABLE | - | - | - |
---
## DHCP Pool Devices (10.0.10.50-254)
These devices receive dynamic IPs from UCG Ultra DHCP. Some have DHCP reservations.
### Fixed DHCP Reservations (on UCG Ultra)
| IP | Hostname | Device | MAC Address | DNS Record |
|----|----------|--------|-------------|------------|
| 10.0.10.179 | twingate-connector | Twingate Zero-Trust | bc:24:11:26:54:60 | - |
| 10.0.10.204 | cutter | Cutter iMac | 7c:c3:a1:af:d6:93 | cutter.nianticbooks.home |
### Known Dynamic Devices (as of 2026-01-13)
**Computers & Workstations:**
| IP | Hostname | Device | MAC Address |
|----|----------|--------|-------------|
| .105 | Freds-Mac-Pro | Jill's MacPro | 80:00:6e:f2:13:52 |
| .116 | HP8610 | HP Printer | 6c:c2:17:53:4e:f8 |
| .144 | Freds-iMac-WiFi | Fred's iMac Wi-Fi (Late 2013, 3.2GHz i5, 24GB RAM, OpenClaw Desktop, macOS Sequoia, user: fredi5) | b8:09:8a:ca:6c:53 |
| .156 | KobePC | Kobe's PC | 64:5d:86:15:de:20 |
| .157 | TP15 | ThinkPad 15 | 78:20:51:f6:9d:d0 |
| .162 | TP25 | ThinkPad 25 | b0:19:21:df:79:30 |
| .213 | Kevin-PC | Kevin's PC | a0:ad:9f:30:8c:af |
**Smart Home & IoT:**
| IP | Device | MAC Address |
|----|--------|-------------|
| .62 | SolarEdge SE7K Inverter | 84:d6:c5:4a:70:32 |
| .170 | TY_WR (Tuya Device) | 68:57:2d:b4:dd:25 |
| .185 | GoveeLife Tower Fan | 98:17:3c:90:5e:aa |
| .190 | Ecobee Thermostat | 44:61:32:90:e0:a3 |
| .154 | Blink XT Camera | ac:41:6a:69:3a:8e |
| .176 | Blink Sync Module 2 | e8:4c:4a:12:03:32 |
| .189 | Sony PlayStation 5 | 70:66:2a:b2:3f:ec |
| .235 | Jill's Monitor | a8:2c:3e:bc:e2:bf |
**Mesh WiFi (eero):**
| IP | Device | MAC Address |
|----|--------|-------------|
| .101 | eero node | 64:da:ed:29:12:ad |
| .216 | eero node | 64:da:ed:29:2e:8d |
| .227 | eero node | 64:da:ed:1c:b5:6d |
**ESP/Raspberry Pi Devices:**
| IP | Hostname | MAC Address | Purpose |
|----|----------|-------------|---------|
| .81 | wlan0 | 70:89:76:ba:0f:d4 | Unknown Pi |
| .90 | ESP_C1DDAA | 84:f3:eb:c1:dd:aa | ESPHome device |
| .171 | raspberrypi | b8:27:eb:a9:03:66 | Unknown |
| .207 | esphome-web-055c68 | 6c:c8:40:05:5c:68 | ESPHome device |
| .246 | raspberrypi | b8:27:eb:fc:56:33 | Unknown |
**Mobile Devices:** Various iPhones, iPads, Watches in DHCP pool (transient)
---
## External Infrastructure
### VPS (Hudson Valley Host)
| IP | Hostname | Service |
|----|----------|---------|
| 66.63.182.168 | vps.nianticbooks.com | Caddy Reverse Proxy |
### Gaming VPS (deadeyeg4ming.vip)
| IP | Hostname | Service |
|----|----------|---------|
| 51.222.12.162 | deadeyeg4ming.vip | WireGuard Server (unlimited bandwidth) |
### WireGuard Tunnel (10.0.9.0/24)
| IP | Endpoint | Role |
|----|----------|------|
| 10.0.9.1 | Gaming VPS | WireGuard Server |
| 10.0.9.2 | UCG Ultra | WireGuard Client |
| 10.0.9.3 | VPS Proxy | Internal proxy IP (used by Caddy) |
---
## Public Domain Routes (via Caddy on VPS)
| Domain | Backend | Status |
|--------|---------|--------|
| freddesk.nianticbooks.com | 10.0.10.3:8006 | Active |
| ad5m.nianticbooks.com | 10.0.10.30:80 | Active |
| bob.nianticbooks.com | 10.0.10.24:8123 | Active |
| auth.nianticbooks.com | 10.0.10.21:9000 | Active |
| cocktails.nianticbooks.com | 10.0.10.40 | Active |
| tasks.nianticbooks.com | 10.0.10.27:3456 | Active (Vikunja - no longer actively used) |
## Internal HTTPS Routes (via Caddy Internal Proxy on CT 127)
| Domain | Backend | Purpose | Certificate |
|--------|---------|---------|-------------|
| sonarr.nianticbooks.home | 10.0.10.27:8989 | TV automation | Caddy Internal PKI |
| radarr.nianticbooks.home | 10.0.10.27:7878 | Movie automation | Caddy Internal PKI |
| prowlarr.nianticbooks.home | 10.0.10.27:9696 | Indexer manager | Caddy Internal PKI |
| bazarr.nianticbooks.home | 10.0.10.27:6767 | Subtitle automation | Caddy Internal PKI |
| deluge.nianticbooks.home | 10.0.10.27:8112 | BitTorrent client | Caddy Internal PKI |
| calibre.nianticbooks.home | 10.0.10.27:8083 | eBook library | Caddy Internal PKI |
| vikunja.nianticbooks.home | 10.0.10.27:3456 | Task management (deprecated) | Caddy Internal PKI |
| dockge.nianticbooks.home | 10.0.10.27:5001 | Docker stack mgmt | Caddy Internal PKI |
---
## Container/VM Quick Reference
### main-pve (10.0.10.3)
| CT ID | Name | IP |
|-------|------|-----|
| 102 | postgresql | 10.0.10.20 |
| 103 | bar-assistant | 10.0.10.40 |
| 105 | pterodactyl-panel | 10.0.10.45 |
| 106 | n8n | 10.0.10.22 |
| 107 | pterodactyl-wings | 10.0.10.46 |
| 115 | ca-server | 10.0.10.15 |
| 121 | authentik | 10.0.10.21 |
| 123 | rustdesk | 10.0.10.23 | DEPRECATED - RustDesk now on VPS (51.222.12.162) |
| 125 | prometheus | 10.0.10.25 |
| 127 | dockge | 10.0.10.27 |
| 128 | uptime-kuma | 10.0.10.26 |
| 130 | openclaw | 10.0.10.28 |
| 131 | minecraft-forge | 10.0.10.41 |
| 132 | minecraft-stoneblock4 | 10.0.10.42 |
| 135 | vehicle-tracker | 10.0.10.35 |
### pve-router (10.0.10.2)
| ID | Name | IP |
|----|------|-----|
| VM 104 | haos16.2 (Home Assistant) | 10.0.10.24 |
| CT 101 | twingate-connector | 10.0.10.179 |
### pve-storage (10.0.10.4)
| ID | Name | IP |
|----|------|-----|
| VM 400 | OMV | 10.0.10.5 |
---
## Deprecated/Removed
| Date | Item | Reason |
|------|------|--------|
| 2026-01-13 | CT 100 pve-scripts-local | Unused experiment, caused IP conflict with bar-assistant |
| - | 10.0.10.71 spoolman | Bambu printer incompatible |
| - | 10.0.10.112 authelia | Failed experiment |
---
## Audit History
| Date | Action | Notes |
|------|--------|-------|
| 2026-01-13 | Full network audit | Compared UCG DHCP export vs documentation, verified all running services |
| 2026-01-13 | Removed CT 100 | pve-scripts-local on pve-router - IP conflict resolved |
| 2025-12-29 | Initial audit | Infrastructure audit template completed |
Reference in New Issue View Git Blame Copy Permalink