il/ilnmors-homelab
0
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
da016343c0587e921e5daa37367aeef3f4142e9a
ilnmors-homelab/docs/specifications/environments.md

3.3 KiB
Raw Blame History

Server and client environments

Console

  • OS: WSL2 (Debian 13)
  • Processor: 4vCPU
  • Memory: 4GiB
  • Disk:
    • 32GiB for / (VHD file)
  • Services:
    • Terminal
    • Step-CLI
    • Ansible
    • Git
    • Kopia
    • cloud-image-utils

vmm (Hypervisor)

  • OS: Debian13
  • Processor: pCPU (N150)
  • Memory: 3GiB (margin)
    • KSM allows more than 3GiB for vmm
  • MAC:
    • c8:ff:bf:05:aa:b0
    • c8:ff:bf:05:aa:b1
  • Disk:
    • SSD:
      • 64GiB for / (ext4 in LVM)
      • 700GiB for /var/lib/libvirt (ext4 in LVM)
  • Services:
    • QEMU/KVM
    • libvirtd
    • ksmtuned

fw (Firewall)

  • OS: Debian13
  • Processor: 2vCPU
    • cputune.shares 2048
  • Memory: 4GiB
  • MAC:
    • 0a:49:6e:4d:00:00
    • 0a:49:6e:4d:00:01
  • Disk:
    • SSD: 64GiB for / (ext4 in qcow2 file)
  • Services:
    • native packages:
      • nftables (firewall based on ZONE)
      • Suricata (IDS)
      • CrowdSec LAPI (IPS)
      • Kea DHCP
      • Wireguard-tool
      • BIND9 (Local authoritative DNS)
      • Blocky (Resolver DNS)
    • Scripts:
      • ddns.sh

infra (Infrastructure)

  • OS: Debian13
  • Processor: 2vCPU
    • cputune.shares 1024
  • Memory: 6GiB
  • MAC: 0a:49:6e:4d:01:00
  • Disk:
    • SSD: 256GiB for / (ext4 in qcow2 file)
  • Services:
    • Rootless containers:
      • PostgreSQL
      • lldap
      • Step-CA
      • Caddy (with nsupdate)
      • Prometheus (alloy - push)
      • Loki (alloy)
      • Grafana

auth (Authorization)

  • OS: Debian13
  • Processor: 2vCPU
    • cputune.shares 512
  • Memory: 2GiB
  • MAC: 0a:49:6e:4d:02:00
  • Disk:
    • SSD: 64GiB for / (ext4 in qcow2 file)
  • Services:
    • Rootless containers:
      • Caddy (with nsupdate, crowdsec-http, crowdsec-bouncer module)
      • authelia

app (Application)

  • OS: Debian13
  • Processor: 4vCPU
    • cputune.shares 1024
  • Memory: 16GiB
  • MAC: 0a:49:6e:4d:03:00
  • Disk:
    • SSD: 256GiB for / (ext4 in qcow2 file)
    • HDD: 4TB for /home/app/data (btrfs)
  • VFIO (Hardware passthrough):
    • Graphic: N150 iGPU
    • Disk: SATA Controller
  • Services:
    • OIDC native services:
      • Vaultwarden
      • Gitea
      • Immich
      • Actual budget
      • Paperless-ngx
      • vikunja - When affine is verified to substitute kanban board and etc, then disable this service.
      • OpenCloud
      • affine (Notion substitution)
      • Radicale
      • Collabora office
      • WriteFreely
      • MediaCMS
      • Funkwhale
      • Kavita
      • Audiobookshelf
      • Miniflux
      • Linkwarden
      • Ralph
      • Conduit
      • SnappyMail

External Backup server

  • OS: DSM (Synology)
  • Processor: pCPU (Realtek RTD1619B)
  • Memory: 1GiB
  • MAC: 90:09:d0:65:a9:db
  • Disk:
    • HDD: 4TB
  • Services:
    • SFTP
    • Kopia repository server
    • CloudSync (Upload backup files to Cloud)
Reference in New Issue View Git Blame Copy Permalink