Created without disruption:
- 6 VLANs (10,20,30,35,40,50) on bridge
- DHCP pools and servers for each VLAN
- Inter-VLAN firewall rules
- WiFi SSIDs: Home-Trusted, Home-IoT, Home-Guest
- Legacy 192.168.31.0/24 still active
Next: Enable VLAN filtering to activate segmentation
- Phase 1: N100 Intel iGPU setup (Ollama, Open WebUI, Aider)
- Phase 2: Future migration to N5 Air AMD 780M
- Phase 3: Network topology for AI management
- Customized for current infrastructure (192.168.31.x)
- Added mikrotik-containers-bridge-setup.rsc for shared container networking
- Added mikrotik-tailscale-setup.rsc for Tailscale container
- Added docs/10-MIKROTIK-TAILSCALE.md with full documentation
- Both containers now use containers-br bridge (172.17.0.1/24)
- AdGuard: 172.17.0.2, Tailscale: 172.17.0.3
New Structure:
- 01-NETWORK-MAP.md - Network topology, IPs, Docker networks, services
- 02-SERVICES-CRITICAL.md - DNS, Auth, Routing (P0/P1 services)
- 03-SERVICES-OTHER.md - All non-critical services
- 04-HARDWARE-INVENTORY.md - Physical devices and specs
- 05-CHANGELOG.md - Major events only
New Folders:
- docs/archive/ - Legacy docs (read-only reference)
- docs/wip/ - Planned changes and ideas
- UPGRADE-2026-HARDWARE.md - N5 Air + N100 migration plan
- GITOPS-CONTAINERS.md - Phase 2 container GitOps
Changes:
- Moved all 22 legacy docs to archive/
- Consolidated container IPs, physical map, and services into single network map
- Extracted critical vs non-critical service classification
- Simplified changelog to major events only
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Fix ZX1-3 port reference (PP2-2, XU2)
- Fix CSS1-2 connection to KVM1
- Fix CSS326 PP1 port references (19-24)
- Fix CSS1-SFP1 to show ZX1 connection
- Fix CSS1-18 status (remove double check)
- Fix PP2 section title (U8)
- Add ZX1 to IP allocation table
- Regenerate topology diagram with backbone ports marked
- Add NetBox plugins documentation to current state
- Removed Pi-hole container (using MikroTik AdGuard Home as primary)
- Removed nebula-sync container (not in use)
- Added adguardhome-sync for rule syncing between MikroTik and Unraid AdGuard
- Added 27 monitors to Uptime Kuma for all services
- Updated container IP assignments
- Migrated NetBox to shared postgresql17
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Replaced Pi-hole container with AdGuard Home (172.17.0.5)
- Configured native DoH/DoT/DoQ with TLS certificates
- Updated DNS architecture diagram
- Updated NAT rules documentation
- Added encrypted DNS endpoints
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Added Slurpit server stack (6 containers) to infrastructure
- Updated service table with all current containers and static IPs
- Documented docker-compose managed stacks
- Added Slurpit, NetBox plugin fixes to changelog
- Fixed actual-budget and netbox Traefik routing
- Updated container IP assignments with Slurpit stack
- All dockerproxy containers now have static IPs via Unraid templates
- NetBox, NetDisco, Gitea, Woodpecker, Pangolin use docker-compose with static IPs
- br0 macvlan containers have static IPs via templates
- Documented compose file locations for maintenance
- Removed housekeeping container (not functional)
- Recovered from bzfirmware corruption on USB boot drive
- Assigned static IPs to all dockerproxy containers (172.18.0.x)
- Assigned static IPs to all netbox containers (172.24.0.x)
- Created comprehensive IP assignment documentation
- Rebuilt NetBox stack with correct network configuration
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Added MikroTik DHCP to NetBox sync script
- Installed Slurp'it plugin v1.2.7 in NetBox
- Enhanced NetDisco to NetBox sync with ARP/MAC data
- Enabled SNMP on Unraid server (4 devices now discoverable)
- Updated Phase 8 documentation with all scripts and configs
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Database: netdisco_db in postgresql17 (schema v96)
- Containers: netdisco-web (port 5000), netdisco-backend
- All 3 MikroTik devices discovered via SNMP
- MAC/ARP data collection working
- Web UI: http://192.168.31.2:5000
