# Configuration (deprecated)

## DHCP Server

| Domain | Subnet | Gateway |
|--------|--------|---------|
| hermz  | 10.0.0.0/21 | 10.0.1.1 |

### IP Reservations

A few reservations were setup to ensure certain interfaces get a static IP address assigned to make managing these machines/devices easier.

| MAC Address       | Client Id    | IP Address | Description                  |
| ----------------- |:-------------| ----------:|:-----------------------------|
| `02:1c:83:7d:15:8e` | firewall     | 10.0.1.1   | PfSense firewall             |
| `02:1c:83:7d:15:8e` | pihole       | 10.0.2.2   | Pi-hole DNS                  |
| `02:1c:83:7d:15:8e` | wireguarded  | 10.0.2.2   | wireguarded                  |
| `b4:fb:e4:8f:f9:74` |              | 10.0.2.99  | Ubiquiti UniFi Switch 8      |
| `e0:d5:5e:63:fe:30`	| blackbox     | 10.0.3.2   | [blackbox](https://bookstack.swigg.net/books/blackboxhermz) proxmox management  |
| `e0:d5:5e:63:fe:30`	| mini         | 10.0.3.3   | [mini](https://bookstack.swigg.net/books/minihermz) proxmox management      |
| `d0:a6:37:ed:8c:7f`	| silverbook   | 10.0.4.4   | Dustin's MacBook Pro (wifi)  |
| `82:13:00:9c:c7:00` |		       | 10.0.4.5	| thunderbolt ethernet adapter | | `d0:a6:37:ed:8c:7f` | jess         | 10.0.4.8   | Jess's MacBook Air (wifi)    |
| `32:cc:fb:a3:1a:57`	| docked	   | 10.0.44.4	| docker services              |

## DNS Resolver

DNS overrides were setup to allow accessing some services directly across the LAN instead of going through the router.

<table>
  <thead>
    <th>Home</th>
    <th>Domain</th>
    <th>Address/Alias</th>
    <th>Description</th>
  </thead>
  <tr>
    <td colspan="4">No overrides are currently being used</td>
  </tr>
</table>

## Firewall/NAT

| Interface | Protocol     | Destination       | Port(s)                 | 
|-----------|--------------|-------------------|-------------------------|
| WAN       | IPv4 TCP     | docked.hermz      | 80 *(HTTP)*<br />8080 *(HTTP alternative)*<br />443 *(HTTPS)*<br />8443 *(HTTPS alternative)*             |
| WAN       | IPv4 TCP     | docked.hermz      | 2222 *(SSH alternative)* |
| WAN       | IPv4 TCP/UDP | wireguarded.hermz | 51820 *(Wireguard)*      |

## Dynamic DNS

| Interface | Service | Hostname           |
|-----------|-----------|-----------------:|
| WAN       | Namecheap | @.swigg.net      |
| WAN       | Namecheap | \*.swigg.net     |
| WAN       | Namecheap | @.dustins.site   |
| WAN       | Namecheap | \*.dustins.site  |
| WAN       | Namecheap | @.notgandhi.com  |
| WAN       | Namecheap | \*.notgandhi.com |