# Red y Homelab - Consultoria-AS

## Resumen de Infraestructura

- **IP Publica**: 201.142.168.178
- **ISP**: Infinitum (Telmex)
- **Modem/Gateway**: 192.168.10.254
- **Red principal**: 192.168.10.0/24
- **Reverse Proxy**: Caddy (en container Dockge, 192.168.10.74)
- **DNS**: Cloudflare (consultoria-as.com) + AWS Route 53 (horuxfin.com)
- **Monitoreo**: UptimeKuma (https://status.consultoria-as.com)

## Servidores Fisicos

### Servidor 1: TYAN (192.168.10.3)
| Caracteristica | Valor |
|---|---|
| **Nodo Proxmox** | Consultoria-AS |
| **PVE Version** | 8.4.14 |
| **CPU** | Intel Xeon Gold 5120 @ 2.20GHz (14c/28t) |
| **RAM** | 755 GB |
| **Disco root** | 64 GB |
| **Acceso** | https://192.168.10.3:8006 |

### Servidor 2: Dell T430 #1 Cisco1 (192.168.10.185)
| Caracteristica | Valor |
|---|---|
| **Nodo Proxmox** | Cisco1 |
| **PVE Version** | 8.4.14 |
| **CPU** | Intel Xeon E5-2609 v4 @ 1.70GHz (16c/16t, 2 sockets) |
| **RAM** | 755 GB |
| **Disco root** | 94 GB |
| **Acceso** | https://192.168.10.185:8006 |

### Servidor 3: Dell T430 #2 DellT430-2 (192.168.10.187)
| Caracteristica | Valor |
|---|---|
| **Nodo Proxmox** | DellT430-2 |
| **PVE Version** | 9.1.2 |
| **CPU** | Intel Xeon E5-2620 v4 @ 2.10GHz (8c/16t) |
| **RAM** | 126 GB |
| **Disco root** | 94 GB |
| **Acceso** | https://192.168.10.187:8006 |

## VMs y Containers

### Servidor TYAN (192.168.10.3)

| VMID | Nombre | Tipo | IP | RAM | Funcion | URL Externa |
|---|---|---|---|---|---|---|
| 100 | OMV | VM | 192.168.10.75 | 8 GB | NAS/Nube (SMB) | `\\\\192.168.10.75\\VAULT-OMV` |
| 102 | Dashy | LXC | - | 2 GB | Dashboard | - |
| 104 | Immich | LXC | 192.168.10.78 | 6 GB | Fotos | https://immich.consultoria-as.com |
| 105 | Hotel Hacienda | LXC | 192.168.10.67 | 16 GB | Gestion Hotel | https://hacienda.consultoria-as.com |
| 106 | Dockge | LXC | 192.168.10.74 | 40 GB | Multimedia/Docker/Reverse Proxy | http://192.168.10.74:5001 |
| 108 | n8n | LXC | 192.168.10.83 | 8 GB | Automatizacion | https://n8n.consultoria-as.com |
| 109 | Navidrome | LXC | 192.168.10.85 | 10 GB | Musica | https://navidrome.consultoria-as.com |
| 110 | UptimeKuma | LXC | 192.168.10.87 | 1 GB | Monitoreo | https://status.consultoria-as.com |
| 111 | Metabase | LXC | 192.168.10.70 | 20 GB | Analytics | https://metabase.consultoria-as.com |
| 112 | Gitea | LXC | 192.168.10.69 | 10 GB | Git | https://git.consultoria-as.com |

### Servidor Dell T430 #1 Cisco1 (192.168.10.185)

| VMID | Nombre | Tipo | IP | RAM | Funcion | URL |
|---|---|---|---|---|---|---|
| 100 | OpenClaw | VM | 192.168.10.105 | 20 GB | Bot WhatsApp + ClawLibrary | https://192.168.10.105 / http://192.168.10.105:5173 |
| 106 | AfterlifeProject | VM | - | 41 GB | Proyecto Afterlife | Pendiente |

### Servidor Dell T430 #2 DellT430-2 (192.168.10.187)

| VMID | Nombre | Tipo | IP | RAM | Funcion | URL Externa |
|---|---|---|---|---|---|---|
| 100 | Jobhero | VM | - | 8 GB | Proyecto (Detenido) | - |
| 102 | Odoo | LXC | 192.168.10.81 | 16 GB | ERP | https://odoo.consultoria-as.com |
| 103 | NodeBB | LXC | 192.168.10.73 | 8 GB | Foro | https://foro.consultoria-as.com |
| 104 | Autopartes | VM | 192.168.10.91 | 50 GB | Sistema Autopartes | https://nexus.consultoria-as.com |
| 106 | CAS-PaginasWeb | VM | 192.168.10.92 | 8 GB | Paginas Web | cronicas/pagoda.consultoria-as.com |
| 108 | Horux | VM | 192.168.10.90 | 24 GB | Gestion Horux | https://horuxfin.com |
| 111 | SocialAutomation | VM | - | 8 GB | Automatizacion Social | - |
| 112 | Padel | VM | - | 8 GB | Proyecto Padel | - |
| 113 | MSP | VM | 192.168.10.97 | 20 GB | MeshCentral/MSP | https://mesh.consultoria-as.com |
| 117 | ESTRADA | VM | - | 8 GB | Proyecto Estrada | - |
| 118 | CRM-CLINICAS | VM | - | 16 GB | CRM Clinicas | - |

## Servicios Web y URLs

### Servicios con acceso externo (via Caddy reverse proxy)

| Servicio | URL Externa | IP:Puerto Interno | DNS |
|---|---|---|---|
| Jellyfin | https://jellyfin.consultoria-as.com | 127.0.0.1:8096 (Dockge) | Cloudflare |
| Jellyseerr | https://mediarequest.consultoria-as.com | 127.0.0.1:5055 (Dockge) | Cloudflare |
| Immich | https://immich.consultoria-as.com | 192.168.10.78:2283 | Cloudflare |
| Odoo | https://odoo.consultoria-as.com | 192.168.10.81:8069 | Cloudflare |
| n8n | https://n8n.consultoria-as.com | 192.168.10.83:5678 | Cloudflare |
| Horux | https://horuxfin.com | 192.168.10.90:3000 | AWS Route 53 |
| Hotel Hacienda | https://hacienda.consultoria-as.com | 192.168.10.67:5172 | Cloudflare |
| API Hotel | https://api-hacienda.consultoria-as.com | 192.168.10.67:4000 | Cloudflare |
| Metabase | https://metabase.consultoria-as.com | 192.168.10.70:3000 | Cloudflare |
| Autopartes | https://nexus.consultoria-as.com | 192.168.10.91:5000 | Cloudflare |
| Gitea | https://git.consultoria-as.com | 192.168.10.69:3000 | Cloudflare |
| Navidrome | https://navidrome.consultoria-as.com | 192.168.10.85:4533 | Cloudflare |
| NodeBB | https://foro.consultoria-as.com | 192.168.10.73:4567 | Cloudflare |
| UptimeKuma | https://status.consultoria-as.com | 192.168.10.87:3001 | Cloudflare |
| Cronicas | https://cronicas.consultoria-as.com | 192.168.10.92:3000 | Cloudflare |
| Pagoda | https://pagoda.consultoria-as.com | 192.168.10.92:3001 | Cloudflare |
| MeshCentral | https://mesh.consultoria-as.com | 192.168.10.97:4443 (HTTPS) | Cloudflare |

### Servicios solo acceso local

| Servicio | URL Local |
|---|---|
| OMV (NAS) | http://192.168.10.75 / `\\\\192.168.10.75\\VAULT-OMV` |
| Dockge | http://192.168.10.74:5001 |
| qBittorrent | http://192.168.10.74:8080 |
| Sonarr | http://192.168.10.74:8989 |
| Radarr | http://192.168.10.74:7878 |
| Prowlarr | http://192.168.10.74:9696 |
| Bazarr | http://192.168.10.74:6767 |
| OpenClaw | https://192.168.10.105 |
| ClawLibrary | http://192.168.10.105:5173 |
| Proxmox TYAN | https://192.168.10.3:8006 |
| Proxmox Dell185 | https://192.168.10.185:8006 |
| Proxmox Dell187 | https://192.168.10.187:8006 |

## Red

### Topologia

```
Internet
  |
Modem ISP (192.168.10.254)
  |
Switch Cisco (administrable)
  |
  +-- Servidor TYAN (192.168.10.3)
  +-- Servidor Dell T430 #1 (192.168.10.185)
  +-- Servidor Dell T430 #2 (192.168.10.187)
  +-- PCs de oficina
  +-- Otros dispositivos
```

### Port Forwarding (Modem)

| Puerto Externo | Destino | Puerto Interno | Servicio |
|---|---|---|---|
| 80 | 192.168.10.74 | 80 | Caddy (HTTP/ACME) |
| 443 | 192.168.10.74 | 443 | Caddy (HTTPS) |

### Reverse Proxy (Caddy)

- **Ubicacion**: Container Dockge (VMID 106, TYAN)
- **IP**: 192.168.10.74
- **Modo**: Docker container con --network host
- **SSL**: Automatico via Lets Encrypt
- **Config**: /opt/caddy/Caddyfile

### Asignacion de IPs

| IP | Dispositivo/Servicio |
|---|---|
| 192.168.10.3 | Proxmox TYAN |
| 192.168.10.67 | Hotel Hacienda (LXC 105) |
| 192.168.10.69 | Gitea (LXC 112) |
| 192.168.10.70 | Metabase (LXC 111) |
| 192.168.10.73 | NodeBB (LXC 103) |
| 192.168.10.74 | Dockge/Caddy (LXC 106) |
| 192.168.10.75 | OMV (VM 100) |
| 192.168.10.78 | Immich (LXC 104) |
| 192.168.10.81 | Odoo (LXC 102) |
| 192.168.10.83 | n8n (LXC 108) |
| 192.168.10.85 | Navidrome (LXC 109) |
| 192.168.10.87 | UptimeKuma (LXC 110) |
| 192.168.10.90 | Horux (VM 108) |
| 192.168.10.91 | Autopartes (VM 104) |
| 192.168.10.92 | CAS-PaginasWeb (VM 106) |
| 192.168.10.97 | MSP/MeshCentral (VM 113) |
| 192.168.10.105 | OpenClaw (VM 100, Cisco1) |
| 192.168.10.185 | Proxmox Dell T430 #1 |
| 192.168.10.187 | Proxmox Dell T430 #2 |
| 192.168.10.254 | Modem ISP |

## Servicios Multimedia (Container Dockge - 192.168.10.74)

| Servicio | Puerto | Funcion |
|---|---|---|
| Jellyfin | 8096 | Streaming video |
| Jellyseerr | 5055 | Peticiones multimedia |
| Sonarr | 8989 | Gestion de series |
| Radarr | 7878 | Gestion de peliculas |
| Prowlarr | 9696 | Indexadores |
| Bazarr | 6767 | Subtitulos |
| qBittorrent | 8080 | Descargas |
| Dockge | 5001 | Gestion Docker |
| Caddy | 80/443 | Reverse Proxy |

## Pendientes

- [ ] Levantar proyecto Afterlife (restauracion de juegos)
- [ ] Acceder al switch Cisco para configurar VLANs
- [ ] Reparar/reemplazar NIC re1 del firewall OPNsense
- [ ] Considerar reinstalar OPNsense con NIC funcional

## Notas importantes

- El firewall OPNsense esta desactivado temporalmente por fallo en NIC re1
- El modem ISP actua como gateway directo (192.168.10.254)
- Todas las PCs salen a internet directo por el modem sin firewall
- La IP publica (201.142.168.178) puede ser dinamica - verificar con ISP
- El container n8n tiene un workflow desactivado por falta de conexion a PostgreSQL en 192.168.10.148

---
*Documentacion actualizada el 23 de Marzo de 2026*
*Consultoria-AS*