Mark migration complete - Denver decommissioned Apr 2 2026

2026-04-02 22:00:17 +00:00 · 2026-04-02 22:00:17 +00:00 · 790bdd450e
commit 790bdd450e
parent eb150e80b4
1 changed files with 37 additions and 89 deletions
--- a/SCRATCH/migration-new-host.md
+++ b/SCRATCH/migration-new-host.md
@ -1,100 +1,48 @@
-# Migration Checklist — New GTHost Detroit Server
+# Migration Checklist — GTHost Detroit Server
 **New hardware:** Supermicro 2029TP-HTR, Intel Gold 6152 22c/44t, 192GB DDR4, 2x1.92TB SSD
 **Target OS:** Proxmox 9 ✅ installed by GTHost
-**Old server:** Denver, Silver 4116, $103/mo → cancel after migration confirmed
+**Old server:** Denver, Silver 4116, $103/mo → ✅ DECOMMISSIONED Apr 2, 2026
 ---
-## Current Status (Mar 29 — in progress)
+## Migration Status — COMPLETE ✅
- ✅ New server provisioned and up — Proxmox 9 installed
+Denver server has been decommissioned. OS reinstalled and disks striped to wipe all data.
- ✅ PBS datastore disk resized to 1.1TB
+All services running on Detroit (GTHost, 66.163.115.x). Internal FQDNs active.
 - ✅ PBS datastore recreated fresh
 - ✅ Fresh backup of all VMs/containers completed Mar 29 ~08:34
 - ✅ Network bridges configured (vmbr0–vmbr6) on new host
 - ✅ OPNsense core router 9001 up
 - ✅ OPNsense zpack router 9002 up
 - ✅ zlh-dns 9010 up — Technitium config restored
 - ✅ zlh-proxy 9011 up — Caddy configured
 ---
-## Pre-Migration
+## What Was Done
- [x] Export OPNsense config (both routers)
+- ✅ PBS datastore recreated + full backup of old host
- [x] Delete old PBS datastore and recreate fresh
+- ✅ Network bridges (vmbr0–vmbr6) configured on new host
- [x] Run fresh backup — all VMs/containers
+- ✅ OPNsense core router 9001 — fresh 26.1, config imported
- [x] Verify all backups show green
+- ✅ OPNsense zpack router 9002 — fresh 26.1, config imported, NAT fixed
 - ✅ zlh-dns 9010 — Technitium, config restored, internal.zlh zone active
 - ✅ zlh-proxy 9011 — Caddy, core routing
 - ✅ zlh-zpack-proxy 9012 — Traefik v3.6.12, Cloudflare DNS-01 certs
 - ✅ zlh-artifacts 9014 — Caddy file server, content synced from B2
 - ✅ zpack-velocity 9015 — running
 - ✅ zlh-monitor 9016 — Prometheus, scrape targets updated
 - ✅ zlh-back 9017 — PBS, MGMT_LAN connected, backed up from B2
 - ✅ zpack-api 9020 — Node 22, MariaDB, Redis, FQDN migration done
 - ✅ zpack-portal 9021 — Next.js, FQDN migration done
 - ✅ Proxmox API permissions — apiuser@pve + ZLH-API/ZLH-API-CT roles
 - ✅ LXC base template 820 — working
 - ✅ Dev container provisioning — working end-to-end
 - ✅ Browser IDE — confirmed working at dev-XXXX.zerolaghub.dev
 - ✅ Internal FQDN migration — all services on internal.zlh
 - ✅ Denver server — OS wiped, disks striped, decommissioned
---
+## Outstanding
 - [ ] aimeesites 9030 — content migration
 - [ ] zlh-connect 9013 — Twingate fresh connector
 - [ ] update.go compiled constant — fix hardcoded artifacts IP, recompile agent
 - [ ] Minecraft player connection test via Velocity
 - [ ] DNS cutover — Namecheap A record update when portal is ready for public launch
 - [ ] OPNsense firewall rule migration (26.1 new UI) — not urgent
 - [ ] Set DHCP reservations by MAC in OPNsense
-## Phase 1 — New Server Setup
+## New Host IPs
-
+See SCRATCH/new-host-ips.md for full IP table.
 - [x] Configure network bridges (vmbr0–vmbr6)
 - [ ] Set up VLANs
 - [ ] Add PBS as backup target on new server
 - [ ] Verify new server can see PBS backup repository
 ---
 ## Phase 2 — Restore VMs
 - [x] OPNsense core router 9001 — fresh 26.1 + config import + os-isc-dhcp
 - [x] OPNsense zpack router 9002 — fresh 26.1 + config import + os-isc-dhcp
 - [x] zlh-dns 9010 (Technitium)
 - [x] zlh-proxy 9011 (Caddy core)
 - [ ] zlh-zpack-proxy 9012 (Traefik game/dev edge)
 - [ ] zlh-monitor 9016 (Prometheus/Grafana)
 - [ ] zlh-artifacts 9014
 - [ ] zpac-api 9020
 - [ ] zpac-portal 9021
 - [ ] zlh-velocity 9015 (Minecraft proxy)
 - [ ] zlh-back 9017 (PBS)
 - [ ] zlh-connect 9013 (Twingate)
 - [ ] aimeesites 9030
 - [ ] Game/dev containers
 ---
 ## Phase 3 — Verification (est. 2-4 hrs)
 - [ ] Internal networking between VMs working
 - [ ] Portal loads
 - [ ] API responds
 - [ ] Twingate connector online — update connector to new server if needed
 - [ ] Dev container provisions and browser IDE loads
 - [ ] Game server provisions and Minecraft connects via Velocity
 - [ ] PBS backup runs successfully on new host
 - [ ] Monitoring shows all services
 ---
 ## Phase 4 — DNS Cutover (est. 30 mins)
 - [ ] Update Cloudflare A record for Velocity public IP
 - [ ] Update Cloudflare SRV records for Minecraft
 - [ ] Update any other DNS records pointing to old server IPs
 - [ ] Monitor for issues — 30 min observation window
 - [ ] Confirm everything stable
 ---
 ## Phase 5 — Cleanup
 - [ ] Cancel old Denver server (or let expire)
 - [ ] Update PROJECT_CONTEXT.md with new VM map and IPs
 - [ ] Update OPEN_THREADS.md — mark migration complete
 ---
 ## Notes
 - Everything runs on private IPs internally — no hardcoded public IP dependencies
 - DNS cutover is the only external change
 - Worst case: reinstall Proxmox 8 and repeat
 - IPMI available via GTHost panel for out-of-band access if needed
 - Proxmox 9 ships with kernel 6.14, LXC 6.0 — no API changes required
 - OPNsense 26.1: install os-isc-dhcp plugin BEFORE importing config (ISC DHCP no longer built-in)
 - Firewall rule migration assistant available in 26.1 — not urgent, do after everything is stable
 - Caddy used for 9011 (core proxy) instead of Traefik — simpler for static routes