35 lines
1.1 KiB
Markdown
35 lines
1.1 KiB
Markdown
|
# Access
|
||
|
|
|
||
|
|
## Description
|
||
|
|
|
||
|
|
This page documents the currently known access methods for the homelab.
|
||
|
|
|
||
|
|
## Current configuration
|
||
|
|
|
||
|
|
- Public services are accessed through Nginx Proxy Manager.
|
||
|
|
- Public HTTPS certificates are issued using Let's Encrypt.
|
||
|
|
- Private access is provided through Tailscale.
|
||
|
|
|
||
|
|
## Known facts
|
||
|
|
|
||
|
|
- Nginx Proxy Manager is the public reverse proxy.
|
||
|
|
- HTTPS is used for public services.
|
||
|
|
- Let's Encrypt is used for public TLS certificates.
|
||
|
|
- Tailscale is used for private access.
|
||
|
|
|
||
|
|
## Unknown / needs clarification
|
||
|
|
|
||
|
|
- Public domain names and subdomains.
|
||
|
|
- Which services are public.
|
||
|
|
- Which services are private-only.
|
||
|
|
- Nginx Proxy Manager proxy hosts.
|
||
|
|
- Nginx Proxy Manager SSL certificate settings.
|
||
|
|
- Whether HTTP-to-HTTPS redirection is enabled.
|
||
|
|
- Whether Nginx Proxy Manager access lists are used.
|
||
|
|
- Tailscale device name for the Raspberry Pi 5.
|
||
|
|
- Whether Tailscale SSH is enabled.
|
||
|
|
- Whether the Raspberry Pi 5 advertises subnet routes.
|
||
|
|
- Whether the Raspberry Pi 5 is an exit node.
|
||
|
|
- User accounts or groups with access through Tailscale.
|
||
|
|
- Local administrator access method for the Raspberry Pi 5.
|