ClusterIP SOCKS5 proxy on 9050 for pod outbound via Tor, plus hidden
service for monerod (P2P 18080 + restricted RPC 18089). PVC holds
/var/lib/tor so the onion hostname persists across restarts.
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
Python checker runs on pve-control via systemd timer every 10 min,
publishes issues to NATS subject homelab_health_issue. Checks NATS,
Postgres, MariaDB, Ghost blogs, DB dependents, standalone services,
and every NodePort. Silent when healthy.
Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
Updates mail__options__host to smtp.mailgun.org and auth keys
to mailgun-smtp-user/mailgun-smtp-password in ghost-secrets.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
Adds vaultwarden, mattermost, nats (leafnode+JetStream), redis,
garage (S3+webui), mediawiki, and the NFS subdir provisioner to
the tracked service list. Remaining-to-deploy list trimmed to
what's actually left.
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
- Listmonk: newsletter/mailing list manager with PostgreSQL backend,
NodePort 32375, Postmark SMTP. Replaces Ghost's broken Mailgun-only
newsletter sending via n8n automation pipeline.
- Mattermost: team messaging manifest, NodePort 32374, PostgreSQL backend.
- Ghost: added Postmark SMTP config for transactional email, disabled
staffDeviceVerification on all three instances (Ghost has no TOTP,
only email-based verification which requires working SMTP).
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Replaced Headscale (too buggy in 0.28.x — random node drops) with direct
WireGuard hub-and-spoke + full mesh. 7 Proxmox VMs across 3 hosts form a
K3s v1.34.6 cluster: 3 control-plane/etcd nodes, 4 workers.
Running services: postgres, mariadb, ghost (x3), forgejo, authentik.
All unpinned services use local-path StorageClass. Databases pinned to
pve-worker and adder-worker with local PVs.
Includes VM provisioning scripts (create-debian-template.sh, clone-vm.sh),
K3s manifests for all services, and full deployment docs in k3s/README.md.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Track all active Proxmox swarm stack YMLs, NATS config, Postgres
init SQL, and env generation script. Update .gitignore for homelab
project. Add CLAUDE.md for project context.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Replace old AWS-oriented compose_files with updated service ymls for
the 3-node Proxmox cluster (pve, adder, game). Services now target
Docker Swarm on the VXLAN overlay (10.10.10.0/24).
New services: authentik, ghost (x3), mariadb
Updated: postgres, n8n, nats, fusionauth, monerod
Added: game node interfaces file for VXLAN config
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
