Services Overview
Service Map
| Service | Host | IP | Port | Purpose |
|---|---|---|---|---|
| Grafana | energonhub (PVE2 CT100) | 192.168.5.9 | 3000 | Unified NOC dashboard |
| Wazuh Dashboard | SOC (PVE2 CT105) | 192.168.5.211 | 443 | SIEM / security dashboard |
| Wazuh Manager | SOC (PVE2 CT105) | 192.168.5.211 | 1514/1515 | Agent mgmt |
| OpenSearch | SOC (PVE2 CT105) | 192.168.5.211 | 9200 | Log indexer |
| Zabbix | PVE2 VM101 | 192.168.5.x | — | Infrastructure monitoring |
| Proxmox Mail Gateway | pmg-backup-mx (PVE2 CT106) | 192.168.5.154 | — | MX backup / mail filtering |
| Hestia Control Panel | PVE1 VM111 | 192.168.1.20 | — | Web hosting panel |
| ISPConfig | PVE2 CT102 | 192.168.5.209 | — | Web hosting panel (backup) |
| TDAI | PVE1 VM108 | 192.168.1.22 | — | AI / automation platform |
| master-control | PVE1 VM110 | 192.168.1.21 | — | Docker control plane |
| optination-phase-vault | PVE1 VM112 | 192.168.1.32 | — | Secrets / vault (Docker) |
| optination-panel | PVE1 VM113 | 192.168.1.50 | — | OptiNation management |
| CF-HQ | PVE2 CT103 | 192.168.127.55 | — | Cloudflare Zero Trust |
Grafana
- URL:
http://192.168.5.9:3000 - Dashboard:
optination-unified-noc(UID:optination-unified-noc) - Auth: admin /
Admin2026! - Datasources: Prometheus, Loki, Infinity (for static/JSON panels)
- Panels include: network topology (nodeGraph), host status, Wazuh alerts
Mail Stack
INTERNET → PMG (192.168.5.154) → Internal mail servers → mx1 (PVE1 CT105 — 192.168.1.15) → mx2 / pmg-backup (PVE2 CT106)- PMG handles spam filtering, anti-virus, and quarantine
- mx1 is the primary mail gateway for optination.net
- MX backup via CT106 (pmg-backup-mx)
Cloudflare Integration
- CF-HQ (CT103) runs the Cloudflare Zero Trust connector on VLAN127
- Cloudflare SSH CA available for short-lived SSH certificate auth
- For machine-to-machine: use internal SSH CA (Cloudflare for external access only)
Proxmox Backup
- PBS (Proxmox Backup Server) monitored as Wazuh agent 007 (
pbs) - Location: separate host (not PVE1 or PVE2)
Domain / DNS
| Domain | Host | IP |
|---|---|---|
| optination.net | CT115 (prod) | 192.168.1.111 / 199.119.84.164 |
| mail.optination-hosting.local | VM111 | 192.168.1.20 |
| mx1.mail-gateway.edge.optination.net | CT105 PVE1 | 192.168.1.15 |
| afterschooltoysco.com | HestiaCP (VM111) | (migration pending) |
| planettoysutah.com | Various | — |