From 3519c82bdd99b29ed917ac3455b96db7e165acc8 Mon Sep 17 00:00:00 2001 From: jester Date: Sun, 29 Mar 2026 18:00:40 +0000 Subject: [PATCH] Add LXC template standard - Ubuntu 24.04 for all containers --- SCRATCH/handover-mar29-2026.md | 57 ++++++++++++++++++++-------------- 1 file changed, 34 insertions(+), 23 deletions(-) diff --git a/SCRATCH/handover-mar29-2026.md b/SCRATCH/handover-mar29-2026.md index 48367c2..76ce6e3 100644 --- a/SCRATCH/handover-mar29-2026.md +++ b/SCRATCH/handover-mar29-2026.md @@ -13,7 +13,7 @@ This is a fresh chat handover. Read this file first, then read: A new dedicated server has been purchased from GTHost Detroit and is active. The platform is being migrated from the old Denver server to the new Detroit server. -The user is preparing to begin the migration today. +Migration is in progress as of Mar 29 — OPNsense routers and DNS are up on new host. **New server specs:** - Supermicro 2029TP-HTR @@ -47,22 +47,28 @@ The user is preparing to begin the migration today. --- +## Standard LXC/VM Specs (new host) + +**All LXC containers use Ubuntu 24.04** — standardized across the board. + +| Service type | CPU | RAM | Disk | +|---|---|---|---| +| Proxy (Caddy) | 1 core | 512MB | 8GB | +| DNS (Technitium) | 1 core | 512MB | 8GB | +| Velocity | 2 cores | 2GB | 16GB | +| Monitor | 2 cores | 2GB | 16GB | +| Artifacts | 1 core | 512MB | 32GB+ | +| API/Portal VMs | 2 cores | 4GB | 32GB | +| OPNsense VMs | 4 cores | 8GB | 64GB | + +--- + ## PBS Status (CRITICAL — Do This First) - Old backups only go to November 2025 — disk was full - Disk has been resized to 1.1TB -- Plan: delete old datastore, recreate fresh, run full backup of everything -- DO NOT start migration until fresh backups are confirmed green - -**Fresh backup priority order:** -1. OPNsense core router (105) -2. OPNsense zpack router (1006) -3. zlh-dns (1001) -4. zpack-api (1005) -5. zpack-portal (1100) -6. zlh-artifacts (1003) -7. zlh-velocity (300) -8. Everything else +- ✅ PBS datastore recreated fresh Mar 29 +- ✅ Fresh backup of all VMs/containers completed Mar 29 ~08:34 --- @@ -71,19 +77,19 @@ The user is preparing to begin the migration today. ### DO MIGRATE — New ID assignments: | Old ID | Name | New ID | Type | How | -|--------|------|--------|------|-----| +|--------|-------|--------|------|-----| | 105 | zlh-router (core OPNsense) | 9001 | VM | Fresh 26.1 + config import | | 1006 | zlh-zpack-router (game/dev OPNsense) | 9002 | VM | Fresh 26.1 + config import | | 1001 | zlh-dns | 9010 | LXC | Fresh + Technitium export/import | -| 1002 | zlh-proxy (Traefik core) | 9011 | LXC | Fresh + config | -| 1004 | zlh-zpack-proxy (Traefik game/dev) | 9012 | LXC | Fresh + config | +| 1002 | zlh-proxy (Caddy core) | 9011 | LXC | Fresh + config | +| 1004 | zlh-zpack-proxy (Caddy game/dev) | 9012 | LXC | Fresh + config | | 9000 | zlh-connect (Twingate) | 9013 | LXC | Fresh install | | 1003 | zlh-artifacts (Caddy file server) | 9014 | LXC | Fresh Caddy + rsync content | | 300 | zlh-velocity | 9015 | LXC | Fresh + copy jar + plugin | | 104 | zlh-monitor (Prometheus/Grafana) | 9016 | LXC | Fresh install | | 2001 | zlh-back (PBS) | 9017 | VM | Fresh + PBS config | -| 1005 | zpack-api | 9020 | VM | Fresh Ubuntu VM + copy project folder | -| 1100 | zpack-portal | 9021 | VM | Fresh Ubuntu VM + copy project folder | +| 1005 | zpac-api | 9020 | VM | Fresh Ubuntu VM + copy project folder | +| 1100 | zpac-portal | 9021 | VM | Fresh Ubuntu VM + copy project folder | | 4000 | aimeesites | 9030 | LXC | Migrate | ### DO NOT MIGRATE (legacy/unused): @@ -133,12 +139,12 @@ The user is preparing to begin the migration today. - Two routers: core (105→9001) and zpack/game/dev (1006→9002) - Installing OPNsense 26.1 fresh (upgrade from 25.7.10) - Import 25.7.10 config — upgrade path is supported -- DHCP plugin auto-installs during upgrade -- Firewall rules migration assistant available but not urgent +- **Install os-isc-dhcp plugin BEFORE importing config** — ISC DHCP no longer built-in in 26.1 +- Firewall rules migration assistant available but not urgent — do after everything is stable - Interface reassignment after config import may be needed - GTHost MAC binding required for WAN public IPs — check GTHost panel for registered MACs -**zpack-api / zpack-portal:** +**zpac-api / zpac-portal:** - Both kept as VMs (not LXC) — active development, always been VMs - Node 22.21.0 (already current LTS — no upgrade needed) - Next.js 16.1.1 (current — no upgrade needed) @@ -150,6 +156,11 @@ The user is preparing to begin the migration today. - Fresh LXC + copy Velocity jar + copy plugin jar - Check current version on old server before migrating +**zlh-proxy / zlh-zpack-proxy:** +- Both now use Caddy (not Traefik) — switched during migration +- Original Caddyfile saved at SCRATCH/caddy/Caddyfile-old +- New Caddyfile for 9011 at SCRATCH/caddy/Caddyfile-new (update IPs after API/portal are up) + --- ## Architecture Reminders @@ -172,8 +183,8 @@ The user is preparing to begin the migration today. - All services run on private IPs internally - No hardcoded public IP dependencies in application code - DNS cutover (Cloudflare A/SRV records for Velocity) is the only external change needed at cutover -- New host will have different physical NIC names — check with `ip link show` before configuring bridges -- Mirror the vmbr layout from current host exactly +- New host has different physical NIC names — ens6f0/ens6f1 (vs eno1/eno2 on old host) +- vmbr0–vmbr6 configured and working on new host - GTHost MAC binding: OPNsense WAN virtual NIC MAC must match what GTHost has registered for the public IPs ---