66 lines
3 KiB
Markdown
66 lines
3 KiB
Markdown
|
# Unknowns and Clarification Questions
|
||
|
|
|
||
|
|
## Description
|
||
|
|
|
||
|
|
This page lists information that is missing or unclear from the current homelab documentation.
|
||
|
|
|
||
|
|
## Current configuration
|
||
|
|
|
||
|
|
The currently documented configuration is limited to:
|
||
|
|
|
||
|
|
- Raspberry Pi 5 as the main server.
|
||
|
|
- Docker, Portainer, and Nginx Proxy Manager as the core stack.
|
||
|
|
- NAT with forwarded ports:
|
||
|
|
- `80-81` to `4480-4481`
|
||
|
|
- `443` to `4443`
|
||
|
|
- Public access through Nginx Proxy Manager with Let's Encrypt HTTPS.
|
||
|
|
- Private access through Tailscale.
|
||
|
|
- Hetzner VPS handoff:
|
||
|
|
- Hostname: `ubuntu-4gb-hel1-1`
|
||
|
|
- Tailscale IP: `100.95.58.48`
|
||
|
|
- Public IPv4: `135.181.153.108`
|
||
|
|
- Public IPv6: `2a01:4f9:c014:98f0::1`
|
||
|
|
- Running container: `npm`
|
||
|
|
- Joplin files created but not running.
|
||
|
|
|
||
|
|
## Known facts
|
||
|
|
|
||
|
|
- The homelab is documented only from the known facts above.
|
||
|
|
- Anything not listed as known remains unconfirmed.
|
||
|
|
|
||
|
|
## Unknown / needs clarification
|
||
|
|
|
||
|
|
1. What operating system and version is running on the Raspberry Pi 5?
|
||
|
|
2. What is the Raspberry Pi 5 RAM size?
|
||
|
|
3. What storage devices are used, and where is persistent service data stored?
|
||
|
|
4. What is the Raspberry Pi 5 LAN IP address?
|
||
|
|
5. Is the Raspberry Pi 5 using DHCP or a static IP address?
|
||
|
|
6. What router or firewall performs NAT and port forwarding?
|
||
|
|
7. Is the WAN IP static, dynamic, or behind CGNAT?
|
||
|
|
8. Does external port `80` map to internal port `4480`, and does external port `81` map to internal port `4481`?
|
||
|
|
9. Are the forwarded ports TCP only, UDP only, or both?
|
||
|
|
10. Are any other ports forwarded?
|
||
|
|
11. What domain names or subdomains point to the homelab?
|
||
|
|
12. What are the Nginx Proxy Manager proxy hosts?
|
||
|
|
13. Which services are public, and which are private-only?
|
||
|
|
14. Is HTTP-to-HTTPS redirection enabled in Nginx Proxy Manager?
|
||
|
|
15. Are Nginx Proxy Manager access lists used?
|
||
|
|
16. How are Docker, Portainer, and Nginx Proxy Manager deployed?
|
||
|
|
17. Are Docker Compose files, Portainer stacks, or other manifests available?
|
||
|
|
18. What containers are currently running?
|
||
|
|
19. What Docker networks and volumes exist?
|
||
|
|
20. What is the Tailscale device name for the Raspberry Pi 5?
|
||
|
|
21. Does the Raspberry Pi 5 advertise Tailscale subnet routes?
|
||
|
|
22. Is the Raspberry Pi 5 configured as a Tailscale exit node?
|
||
|
|
23. Is Tailscale SSH enabled?
|
||
|
|
24. What backup system exists, if any?
|
||
|
|
25. What monitoring or alerting exists, if any?
|
||
|
|
26. Is the Hetzner VPS part of the homelab documentation scope, a separate system, or both?
|
||
|
|
27. What is the operating system version on `ubuntu-4gb-hel1-1`?
|
||
|
|
28. Is public Nginx Proxy Manager admin access on port `81` intentionally reachable on `135.181.153.108`?
|
||
|
|
29. Has DNS record `joplin.okit.pl -> 135.181.153.108` been created?
|
||
|
|
30. Has optional AAAA record `joplin.okit.pl -> 2a01:4f9:c014:98f0::1` been created?
|
||
|
|
31. Has `POSTGRES_PASSWORD=CHANGE_ME_STRONG_PASSWORD` been changed before first Joplin production start?
|
||
|
|
32. Has the Nginx Proxy Manager proxy host for `joplin.okit.pl` been created?
|
||
|
|
33. Are ports `80` and `443` publicly reachable on the Hetzner VPS for Let's Encrypt HTTP validation?
|