- Deployed Ollama + Open WebUI on Unraid
- Created custom unraid-assistant model with full infrastructure knowledge:
- Network topology (8 VLANs, all IPs/gateways)
- 45+ Docker containers with ports and purposes
- RouterOS 7 commands and VLAN patterns
- Traefik labels and Authentik SSO middleware
- All xtrm-lab.org external URLs
- Added /usr/local/bin/ai terminal helper command
- Documented RAM optimization (stopped 5 containers)
- Added future upgrade notes for Mac Mini M4
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Issues fixed after first activation attempt:
- DHCP DNS now points to each VLAN gateway
- DNS redirect rules cover all VLANs
- VLAN interfaces added to LAN firewall list
- NAT masquerade for VLAN→AdGuard traffic
CSS326 switch configured via SwOS.
MikroTik backup saved.
Ready to enable VLAN filtering when convenient.
- Actual IP: 192.168.31.22 (was documented as .7)
- Verified via ARP table and web interface access
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Enabled SFP1 on CSS326 (was disabled)
- 10G DAC link to ZX1-SFP1 now active
- Updated port utilization diagrams
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Both AdGuard instances now use Quad9 DoH (dns.quad9.net)
- Bootstrap DNS: 9.9.9.9, 149.112.112.112
- New 02-PORT-UTILIZATION.md with ASCII diagrams for all devices
- Fixed Tailscale container DNS and route configuration
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
New Structure:
- 01-NETWORK-MAP.md - Network topology, IPs, Docker networks, services
- 02-SERVICES-CRITICAL.md - DNS, Auth, Routing (P0/P1 services)
- 03-SERVICES-OTHER.md - All non-critical services
- 04-HARDWARE-INVENTORY.md - Physical devices and specs
- 05-CHANGELOG.md - Major events only
New Folders:
- docs/archive/ - Legacy docs (read-only reference)
- docs/wip/ - Planned changes and ideas
- UPGRADE-2026-HARDWARE.md - N5 Air + N100 migration plan
- GITOPS-CONTAINERS.md - Phase 2 container GitOps
Changes:
- Moved all 22 legacy docs to archive/
- Consolidated container IPs, physical map, and services into single network map
- Extracted critical vs non-critical service classification
- Simplified changelog to major events only
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Removed Pi-hole container (using MikroTik AdGuard Home as primary)
- Removed nebula-sync container (not in use)
- Added adguardhome-sync for rule syncing between MikroTik and Unraid AdGuard
- Added 27 monitors to Uptime Kuma for all services
- Updated container IP assignments
- Migrated NetBox to shared postgresql17
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Replaced Pi-hole container with AdGuard Home (172.17.0.5)
- Configured native DoH/DoT/DoQ with TLS certificates
- Updated DNS architecture diagram
- Updated NAT rules documentation
- Added encrypted DNS endpoints
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Added Slurpit server stack (6 containers) to infrastructure
- Updated service table with all current containers and static IPs
- Documented docker-compose managed stacks
- Added Slurpit, NetBox plugin fixes to changelog
- Fixed actual-budget and netbox Traefik routing
- Updated container IP assignments with Slurpit stack
- Recovered from bzfirmware corruption on USB boot drive
- Assigned static IPs to all dockerproxy containers (172.18.0.x)
- Assigned static IPs to all netbox containers (172.24.0.x)
- Created comprehensive IP assignment documentation
- Rebuilt NetBox stack with correct network configuration
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Added MikroTik DHCP to NetBox sync script
- Installed Slurp'it plugin v1.2.7 in NetBox
- Enhanced NetDisco to NetBox sync with ARP/MAC data
- Enabled SNMP on Unraid server (4 devices now discoverable)
- Updated Phase 8 documentation with all scripts and configs
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
