docs: documentacion extensiva de infraestructura CAS - Junio 2026

- README principal actualizado con indice completo - Documentacion detallada de 4 servidores fisicos - Topologia de red completa con diagramas ASCII - Asignacion de IPs y conflictos identificados - Documentacion DNS para 3 dominios - Servicios: Caddy, Jellyfin Stack, Multimedia - Proyectos: Afterlife, Nexus, Horux - Seguridad: politica y riesgos identificados - Automatizacion: n8n workflows y scripts - Scripts utilitarios: backup, update-dns, check-ip - Roadmap 2026 Q2-Q4 - Documentacion Hermes AI server (actualizada)
2026-06-09 07:53:16 +00:00
parent 8ae5336fbf
commit 62047f660f
18 changed files with 2190 additions and 340 deletions
--- a/red/README.md
+++ b/red/README.md
@@ -0,0 +1,146 @@
+# Documentación de Red — Consultoria-AS
+
+> **Rango**: 192.168.10.0/24  
+> **Gateway**: 192.168.10.254 (Modem ISP)  
+> **Máscara**: 255.255.255.0
+
+---
+
+## Topología de Red
+
+```
+                              INTERNET
+                                 |
+                    +------------+------------+
+                    |    Modem ISP (Telmex)   |
+                    |     192.168.10.254      |
+                    |      Infinitum          |
+                    +------------+------------+
+                                 |
+                    +------------+------------+
+                    |   Switch Cisco Managed  |
+                    |   (SG300/SG350 series)  |
+                    |   VLANs: pendientes     |
+                    +------------+------------+
+                                 |
+        +------------------------+------------------------+
+        |                        |                        |
+   +----+----+              +----+----+              +----+----+
+   |  TYAN   |              | Cisco1  |              |DellT430-2|
+   |192.168. |              |192.168. |              |192.168. |
+   |  10.3   |              | 10.185  |              | 10.187  |
+   |  (PVE)  |              |  (PVE)  |              |  (PVE)  |
+   +----+----+              +----+----+              +----+----+
+        |                        |                        |
+   +----+----+              +----+----+              +----+----+
+   |  VMs/   |              |  VMs/   |              |  VMs/   |
+   |  LXC    |              |  LXC    |              |  LXC    |
+   +----+----+              +----+----+              +----+----+
+        |                        |                        |
+        +------------------------+------------------------+
+                                 |
+                    +------------+------------+
+                    |    Ryzen AI Server      |
+                    |     192.168.10.144      |
+                    +-------------------------+
+                                 |
+                    +------------+------------+
+                    |   Dispositivos varios   |
+                    |  (PCs oficina, etc.)    |
+                    +-------------------------+
+```
+
+---
+
+## Asignación de IPs
+
+### Infraestructura Core
+
+| IP | Dispositivo/Servicio | Notas |
+|---|---|---|
+| 192.168.10.254 | Modem ISP (Gateway) | Telmex Infinitum |
+| 192.168.10.3 | Proxmox TYAN | Nodo principal |
+| 192.168.10.185 | Proxmox Cisco1 | Nodo desarrollo |
+| 192.168.10.187 | Proxmox DellT430-2 | Nodo producción |
+
+### Servicios TYAN
+
+| IP | Servicio | VMID | Tipo |
+|---|---|---|---|
+| 192.168.10.69 | Gitea | 112 | LXC |
+| 192.168.10.74 | Dockge/Caddy | 106 | LXC |
+| 192.168.10.75 | OMV | 100 | VM |
+| 192.168.10.78 | Immich | 104 | LXC |
+| 192.168.10.83 | n8n | 108 | LXC |
+| 192.168.10.85 | Navidrome | 109 | LXC |
+| 192.168.10.86 | Dashy | 102 | LXC |
+| 192.168.10.87 | UptimeKuma | 110 | LXC |
+| 192.168.10.138 | NexusManager | 200 | LXC |
+| 192.168.10.139 | VisasChinas | 201 | LXC |
+| 192.168.10.167 | Hotel Hacienda | 105 | LXC |
+| 192.168.10.170 | Metabase | 111 | LXC |
+
+### Servicios Cisco1
+
+| IP | Servicio | VMID | Tipo |
+|---|---|---|---|
+| 192.168.10.84 | AfterlifeProject | 106 | VM |
+| 192.168.10.108 | vm-nier | 100 | VM |
+| 192.168.10.135 | OpenWebUI | 101 | LXC |
+| 192.168.10.140 | CraneGOO | 102 | VM |
+
+### Servicios DellT430-2
+
+| IP | Servicio | VMID | Tipo |
+|---|---|---|---|
+| 192.168.10.73 | NodeBB | 103 | LXC |
+| 192.168.10.81 | Odoo | 102 | LXC |
+| 192.168.10.90 | Horux | 108 | VM |
+| 192.168.10.91 | Autopartes | 104 | VM |
+| 192.168.10.92 | CAS-PaginasWeb | 106 | VM |
+| 192.168.10.97 | MSP/MeshCentral | 113 | VM |
+| 192.168.10.100 | SKEEN.MX | 100 | VM |
+| 192.168.10.104 | 3D STL Manager | 105 | VM |
+| 192.168.10.156 | CocinaConAlma | 101 | VM |
+
+### Otros Dispositivos
+
+| IP | Dispositivo | Notas |
+|---|---|---|
+| 192.168.10.117 | Strada | Refaccionaria independiente |
+| 192.168.10.123 | wger | Gym tracker independiente |
+| 192.168.10.144 | Ryzen AI Server | Ollama + Hermes |
+| 192.168.10.148 | PostgreSQL (n8n) | Base de datos workflow |
+
+---
+
+## Conflictos de IP
+
+| IP | Dispositivo 1 | Dispositivo 2 | Severidad | Acción |
+|---|---|---|---|---|
+| 192.168.10.140 | CraneGOO (Cisco1) | VT210 (TYAN) | 🔴 Crítico | Asignar IP estática diferente a VT210 |
+
+---
+
+## Segmentación Propuesta (VLANs)
+
+| VLAN | Rango | Uso | Dispositivos |
+|---|---|---|---|
+| VLAN 10 | 192.168.10.0/24 | Infraestructura (actual) | Servidores, VMs |
+| VLAN 20 | 192.168.20.0/24 | Oficina/Usuarios | PCs, laptops, impresoras |
+| VLAN 30 | 192.168.30.0/24 | IoT/Invitados | Dispositivos IoT, WiFi invitados |
+| VLAN 40 | 192.168.40.0/24 | Management | IPMI, iDRAC, switch admin |
+| VLAN 50 | 192.168.50.0/24 | DMZ | Servicios expuestos (futuro) |
+
+---
+
+## Port Forwarding
+
+| Puerto Ext. | Destino | Puerto Int. | Servicio | Protocolo |
+|---|---|---|---|---|
+| 80 | 192.168.10.74 | 80 | Caddy HTTP | TCP |
+| 443 | 192.168.10.74 | 443 | Caddy HTTPS | TCP |
+
+---
+
+*Documentación de red - Consultoria-AS*