2026-05-17 15:54:19 +02:00
|
|
|
host: vps
|
|
|
|
|
|
|
|
|
|
services:
|
feat(node-agent): implement health monitor and safe cleanup policy
scripts/monitor/health-monitor.sh (new):
- Standalone bash health monitor: disk/RAM/CPU checks + docker container health
- Per-node-type cleanup policy enforced:
lte_node (chelsty-infra, chelsty-ha): NO cleanup, no docker ops
sd_card (piha, saturn): dangling images + containers, rate-limited once/24h
ai_node (solaria): dangling + containers + build cache, NEVER -a
standard (vps): dangling + containers + build cache + CP filesystem rotation
- VPS filesystem rotation: completed/failed actions >7d, deploy logs >30d,
events >3d AND past observer checkpoint
- Emits structured JSON events (node_health, disk_pressure, high_memory, high_cpu,
containers_not_running, healthcheck_failed)
services/node-agent/ (new):
- Python daemon (node_agent.py): same policy as bash script, Docker SDK
for container checks and cleanup, /proc for system metrics
- Optional event shipping to VPS via rsync+SSH (VPS_EVENTS_HOST env var)
- Dockerfile: python:3.11-slim + openssh-client + rsync + docker>=6.0
- docker-compose.yml: mounts docker socket, /opt/homelab, repo read-only
observer.py:
- Handle node_health: update node status + disk/mem/cpu metrics, clear disk_pressure
- Handle disk_pressure: record severity on node, clear when healthy
- Handle high_memory / high_cpu: record pressure level for correlation
supervisor.py:
- Add NO_DISK_CLEANUP_NODES = {chelsty-infra, chelsty-ha}
- reconcile() step 3: generate disk_cleanup actions for nodes with high disk pressure
- _generate_disk_cleanup_recommendation(): stable ID disk-cleanup-{node},
checks all active states, risk=guarded (operator approval required)
executor.py:
- Handle disk_cleanup action type via _execute_disk_cleanup()
- Commands come from action payload; safety gate rejects any command touching
/opt/homelab/data/, /opt/homelab/config/, /opt/homelab/state/, or rm -rf /
hosts/*/services.yaml:
- Rename stability-agent -> node-agent on piha, vps, solaria, chelsty-infra
- Add node-agent to chelsty-ha (previously missing)
- Add cleanup policy notes to LTE node comments
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-27 13:15:06 +02:00
|
|
|
node-agent:
|
2026-05-17 15:54:19 +02:00
|
|
|
role: node-stability-monitor
|
|
|
|
|
deployment_model: docker-compose
|
|
|
|
|
exposure: local-only
|
|
|
|
|
offline_required: true
|
|
|
|
|
depends_on:
|
|
|
|
|
local: []
|
|
|
|
|
external: []
|
|
|
|
|
runtime:
|
feat(node-agent): implement health monitor and safe cleanup policy
scripts/monitor/health-monitor.sh (new):
- Standalone bash health monitor: disk/RAM/CPU checks + docker container health
- Per-node-type cleanup policy enforced:
lte_node (chelsty-infra, chelsty-ha): NO cleanup, no docker ops
sd_card (piha, saturn): dangling images + containers, rate-limited once/24h
ai_node (solaria): dangling + containers + build cache, NEVER -a
standard (vps): dangling + containers + build cache + CP filesystem rotation
- VPS filesystem rotation: completed/failed actions >7d, deploy logs >30d,
events >3d AND past observer checkpoint
- Emits structured JSON events (node_health, disk_pressure, high_memory, high_cpu,
containers_not_running, healthcheck_failed)
services/node-agent/ (new):
- Python daemon (node_agent.py): same policy as bash script, Docker SDK
for container checks and cleanup, /proc for system metrics
- Optional event shipping to VPS via rsync+SSH (VPS_EVENTS_HOST env var)
- Dockerfile: python:3.11-slim + openssh-client + rsync + docker>=6.0
- docker-compose.yml: mounts docker socket, /opt/homelab, repo read-only
observer.py:
- Handle node_health: update node status + disk/mem/cpu metrics, clear disk_pressure
- Handle disk_pressure: record severity on node, clear when healthy
- Handle high_memory / high_cpu: record pressure level for correlation
supervisor.py:
- Add NO_DISK_CLEANUP_NODES = {chelsty-infra, chelsty-ha}
- reconcile() step 3: generate disk_cleanup actions for nodes with high disk pressure
- _generate_disk_cleanup_recommendation(): stable ID disk-cleanup-{node},
checks all active states, risk=guarded (operator approval required)
executor.py:
- Handle disk_cleanup action type via _execute_disk_cleanup()
- Commands come from action payload; safety gate rejects any command touching
/opt/homelab/data/, /opt/homelab/config/, /opt/homelab/state/, or rm -rf /
hosts/*/services.yaml:
- Rename stability-agent -> node-agent on piha, vps, solaria, chelsty-infra
- Add node-agent to chelsty-ha (previously missing)
- Add cleanup policy notes to LTE node comments
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-27 13:15:06 +02:00
|
|
|
config_path: /opt/homelab/config/node-agent
|
2026-05-17 15:54:19 +02:00
|
|
|
data_path: /opt/homelab/state
|
|
|
|
|
logs_path: /opt/homelab/events
|
2026-05-20 12:06:23 +02:00
|
|
|
|
|
|
|
|
control-plane:
|
|
|
|
|
role: management-and-orchestration
|
|
|
|
|
deployment_model: docker-compose
|
|
|
|
|
exposure: tailscale-internal
|
|
|
|
|
offline_required: false
|
|
|
|
|
depends_on:
|
|
|
|
|
local:
|
feat(node-agent): implement health monitor and safe cleanup policy
scripts/monitor/health-monitor.sh (new):
- Standalone bash health monitor: disk/RAM/CPU checks + docker container health
- Per-node-type cleanup policy enforced:
lte_node (chelsty-infra, chelsty-ha): NO cleanup, no docker ops
sd_card (piha, saturn): dangling images + containers, rate-limited once/24h
ai_node (solaria): dangling + containers + build cache, NEVER -a
standard (vps): dangling + containers + build cache + CP filesystem rotation
- VPS filesystem rotation: completed/failed actions >7d, deploy logs >30d,
events >3d AND past observer checkpoint
- Emits structured JSON events (node_health, disk_pressure, high_memory, high_cpu,
containers_not_running, healthcheck_failed)
services/node-agent/ (new):
- Python daemon (node_agent.py): same policy as bash script, Docker SDK
for container checks and cleanup, /proc for system metrics
- Optional event shipping to VPS via rsync+SSH (VPS_EVENTS_HOST env var)
- Dockerfile: python:3.11-slim + openssh-client + rsync + docker>=6.0
- docker-compose.yml: mounts docker socket, /opt/homelab, repo read-only
observer.py:
- Handle node_health: update node status + disk/mem/cpu metrics, clear disk_pressure
- Handle disk_pressure: record severity on node, clear when healthy
- Handle high_memory / high_cpu: record pressure level for correlation
supervisor.py:
- Add NO_DISK_CLEANUP_NODES = {chelsty-infra, chelsty-ha}
- reconcile() step 3: generate disk_cleanup actions for nodes with high disk pressure
- _generate_disk_cleanup_recommendation(): stable ID disk-cleanup-{node},
checks all active states, risk=guarded (operator approval required)
executor.py:
- Handle disk_cleanup action type via _execute_disk_cleanup()
- Commands come from action payload; safety gate rejects any command touching
/opt/homelab/data/, /opt/homelab/config/, /opt/homelab/state/, or rm -rf /
hosts/*/services.yaml:
- Rename stability-agent -> node-agent on piha, vps, solaria, chelsty-infra
- Add node-agent to chelsty-ha (previously missing)
- Add cleanup policy notes to LTE node comments
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-27 13:15:06 +02:00
|
|
|
- node-agent
|
2026-05-20 12:06:23 +02:00
|
|
|
external:
|
2026-05-21 11:40:55 +02:00
|
|
|
- piha:redis
|
2026-05-20 12:06:23 +02:00
|
|
|
ports:
|
|
|
|
|
- name: http
|
|
|
|
|
container_port: 18180
|
|
|
|
|
protocol: tcp
|
|
|
|
|
runtime:
|
|
|
|
|
config_path: /opt/homelab/config/control-plane
|
|
|
|
|
data_path: /opt/homelab/data/control-plane
|
|
|
|
|
logs_path: /opt/homelab/logs/control-plane
|
2026-05-21 11:40:55 +02:00
|
|
|
|
|
|
|
|
node_exporter:
|
|
|
|
|
role: metrics-exporter
|
|
|
|
|
deployment_model: docker-compose
|
|
|
|
|
exposure: local-only
|
|
|
|
|
offline_required: true
|
|
|
|
|
depends_on:
|
|
|
|
|
local: []
|
|
|
|
|
external: []
|
2026-06-01 21:44:37 +02:00
|
|
|
|
|
|
|
|
npm:
|
|
|
|
|
role: reverse-proxy-ingress
|
|
|
|
|
deployment_model: docker-compose
|
|
|
|
|
exposure: public
|
|
|
|
|
offline_required: false
|
|
|
|
|
depends_on:
|
|
|
|
|
local: []
|
|
|
|
|
external: []
|
|
|
|
|
ports:
|
|
|
|
|
- name: http
|
|
|
|
|
container_port: 80
|
|
|
|
|
protocol: tcp
|
|
|
|
|
- name: https
|
|
|
|
|
container_port: 443
|
|
|
|
|
protocol: tcp
|
|
|
|
|
- name: admin
|
|
|
|
|
container_port: 81
|
|
|
|
|
protocol: tcp
|
|
|
|
|
runtime:
|
|
|
|
|
data_path: /home/dockeruser/docker/npm/data
|
|
|
|
|
config_path: /opt/homelab/config/npm
|
|
|
|
|
|
|
|
|
|
outline:
|
|
|
|
|
role: team-wiki
|
|
|
|
|
deployment_model: docker-compose
|
|
|
|
|
exposure: public
|
|
|
|
|
offline_required: false
|
|
|
|
|
depends_on:
|
|
|
|
|
local:
|
|
|
|
|
- npm
|
|
|
|
|
external: []
|
|
|
|
|
ports:
|
|
|
|
|
- name: http
|
|
|
|
|
container_port: 3000
|
|
|
|
|
protocol: tcp
|
|
|
|
|
runtime:
|
|
|
|
|
config_path: /opt/homelab/config/outline
|
|
|
|
|
|
|
|
|
|
joplin:
|
|
|
|
|
role: note-sync-server
|
|
|
|
|
deployment_model: docker-compose
|
|
|
|
|
exposure: tailscale-internal
|
|
|
|
|
offline_required: false
|
|
|
|
|
depends_on:
|
|
|
|
|
local:
|
|
|
|
|
- npm
|
|
|
|
|
external: []
|
|
|
|
|
ports:
|
|
|
|
|
- name: http
|
|
|
|
|
container_port: 22300
|
|
|
|
|
bind: 127.0.0.1
|
|
|
|
|
protocol: tcp
|
|
|
|
|
runtime:
|
|
|
|
|
config_path: /opt/homelab/config/joplin
|
|
|
|
|
|
|
|
|
|
ai-cluster:
|
|
|
|
|
role: ai-worker-cluster
|
|
|
|
|
deployment_model: docker-compose
|
|
|
|
|
exposure: tailscale-internal
|
|
|
|
|
offline_required: false
|
|
|
|
|
depends_on:
|
|
|
|
|
local: []
|
|
|
|
|
external:
|
|
|
|
|
- piha:gateway
|
|
|
|
|
ports:
|
|
|
|
|
- name: openclaw-api
|
|
|
|
|
container_port: 8000
|
|
|
|
|
protocol: tcp
|
|
|
|
|
- name: mqtt
|
|
|
|
|
container_port: 1883
|
|
|
|
|
protocol: tcp
|
|
|
|
|
bind: tailscale
|
|
|
|
|
runtime:
|
|
|
|
|
config_path: /opt/homelab/config/ai-cluster
|
|
|
|
|
notes:
|
|
|
|
|
- "Local images must be built on VPS — not pulled from registry"
|
|
|
|
|
- "Compute workloads belong on SOLARIA; migrate when possible"
|
