Skip to main content

Configuration

DHCP Server

Domain Subnet Gateway
hermz 10.0.0.0/21 10.0.2.1.1

IP Reservations

A few reservations were setup to ensure certain interfaces get a static IP address assigned to make managing these machines/devices easier.

MAC Address Client Id IP Address Description
02:1c:83:7d:15:8e firewall 10.0.2.1.1 pfSensePfSense firwallfirewall
e0:d5:5e:63:fe:3102:1c:83:7d:15:8e blackboxpihole 10.0.2.2 blackboxPi-hole serverDNS
e0:d5:5e:63:fe:3002:1c:83:7d:15:8e wireguarded 10.0.2.32 blackbox administrationwireguarded
d0:a6:37:ed:8c:7fsilverbook10.0.2.4Dustin's MBP (wifi)
b4:fb:e4:8f:f9:74 10.0.2.99 Ubiquiti UniFi Switch 8
e0:d5:5e:63:fe:30blackbox10.0.3.2blackbox proxmox management
e0:d5:5e:63:fe:30mini10.0.3.3mini proxmox management
d0:a6:37:ed:8c:7fsilverbook10.0.4.4Dustin's MacBook Pro (wifi)
82:13:00:9c:c7:0010.0.4.5thunderbolt ethernet adapter
32:cc:fb:a3:1a:57docked10.0.44.4docker services

DNS Resolver

DNS overrides were setup to allow accessing some services directly across the LAN instead of going through the router.

HostHome Domain Address/Alias Description
No overrides are currently being used

Firewall/NAT

80 2222
InterfaceProtocolDestinationPort(s)
blackboxWAN IPv4 TCPdocked.hermz 10.0.2.2 Blackbox(HTTP)
8080 (HTTP alternative)
443 (HTTPS)
8443 (HTTPS alternative)
silverbookWAN IPv4 TCPdocked.hermz 10.0.2.4 Dustin's(SSH MacBook Pro (wifi)alternative)
blackboxWAN swigg.netIPv4 TCP/UDP 10.0.4.3wireguarded.hermz Blackbox51820 / LXC / conception
plexswigg.netAlias for blackbox.swigg.netPlex Private
nextcloudswigg.netAlias for blackbox.swigg.netNextcloud Private
sonarrswigg.netAlias for blackbox.swigg.netSonarr Private
radarrswigg.netAlias for blackbox.swigg.netRadarr Private
bookstackswigg.netAlias for blackbox.swigg.netBookstack Private
bitwardenswigg.netAlias for blackbox.swigg.netBitwarden Private
tautulliswigg.netAlias for blackbox.swigg.netTautulli Private
sabnzbdswigg.netAlias for blackbox.swigg.netSabnzbd Private
whoamiswigg.netAlias for blackbox.swigg.netWhoami Private
torrentsswigg.netAlias for blackbox.swigg.netqBittorrent Private(Wireguard)

Firewall/NAT

Port 80 (HTTP) and 443 (HTTPS) on the WAN interface are forwarded to blackbox.hermz

Dynamic DNS

Interface Service Hostname
WAN Namecheap @.swigg.net
WAN Namecheap *.swigg.net
WAN Namecheap @.dustins.site
WAN Namecheap *.dustins.site
WAN Namecheap @.notgandhi.com
WAN Namecheap *.notgandhi.com