Infrastructure
| Item | Status | Notes |
|---|---|---|
| Proxmox VE 9.1.1 | ✓ Complete | Kernel 6.17.2-1-pve, fully upgraded |
| ZFS Pool (vmpool) | ✓ Complete | 20.9T ONLINE, ashift=12, lz4 |
| ZFS Datasets | ✓ Complete | 7 datasets: prod, prod-db, dev, dev-db, workstation, backups, migration |
| pvesm Storage Pools | ✓ Complete | vmpool-prod, vmpool-prod-db, vmpool-dev, vmpool-dev-db, vmpool-ws, vmpool-backups |
| Resource Pools | ✓ Complete | prod, dev, workstation |
| Network Bond | ✓ Complete | bond0 active-backup (nic2+nic3), vmbr0 @ 10.1.50.11/24 |
| vmbr1 | ✓ Complete | VLAN-aware bridge on nic0, VIDs 2–4094 |
| PERC H710P | ✓ Verified | 26 drives optimal, BBU healthy, 0 errors |
| Tailscale | ⏳ Pending Auth | https://login.tailscale.com/a/13d98ea001f4b7 |
| iDRAC | ⚠ Temporary | 10.1.50.211 (temp) — target: 10.1.10.10 after switch VLAN config |
Virtual Machines
| VM | ID | Status | Spec | Notes |
|---|---|---|---|---|
| ubuntu-2404-template | 9000 | ✓ Complete | 2 core / 2 GB | Cloud-init, Ubuntu 24.04 |
| prod-postgres | 112 | ✓ Running | 8 core / 16 GB | PG16 + n8n.dump restored (74 tables) |
| prod-n8n | 113 | ⏳ In Progress | 4 core / 8 GB | Docker + n8n setup in progress |
| pbs01 (Proxmox Backup) | 110 | 📋 Planned | — | Week 2 |
| dev-postgres | 114 | 📋 Planned | — | Week 2 |
| dev-docker | 115 | 📋 Planned | — | Week 2 — Ollama CPU, open-webui, Supabase |
| prod-splunk | 116 | 📋 Planned | — | Week 2 — Migrate from ThinkPad |
| home-workstation | 117 | 📋 Planned | — | Week 2 — WSL projects |
Services
| Service | Status | Location | Notes |
|---|---|---|---|
| PostgreSQL 16 | ✓ Running | VM 112 @ 10.1.50.112 | n8n db restored, remote access on port 5432 |
| n8n 2.x | ⏳ In Progress | VM 113 @ 10.1.50.113 | Docker install + restore in progress |
| CF Tunnel (n8n) | ⏳ Pending | VM 113 | fe21786c — activates after n8n confirmed |
| CF Tunnel (prod) | 📋 Planned | VM 113 | New tunnel for prod services |
| CF Tunnel (dev) | 📋 Planned | VM 115 | New tunnel for dev services |
| Twingate | 📋 Planned | Network | pve01 + VMs to be added |
Security Actions Required
⚠️
Immediate action needed: Two high-priority credential exposures must be rotated before any new services come online.
| Action | Priority | Notes |
|---|---|---|
| Rotate pve01 root password | 🔴 HIGH | Was shared in plaintext — rotate immediately |
| Rotate Anthropic API key | 🔴 HIGH | Found hardcoded in OpenClaw docker-compose.yml |
| Tailscale auth | 🟡 MEDIUM | Visit auth URL |
| iDRAC final move | 🟡 MEDIUM | After switch VLAN 10 config — move to 10.1.10.10 |
Migrations Queued
| Service | Source | Target | Status |
|---|---|---|---|
| n8n + PostgreSQL | n8n-cmtg (10.1.50.206) | VM 112 / 113 | ⏳ In Progress |
| Splunk | ThinkPad (10.1.50.132) | VM 116 | 📋 Planned |
| Dev Databases | ThinkPad | VM 114 | 📋 Planned |
| WSL Projects | WSL + ThinkPad | VM 117 | 📋 Planned (rsync done) |
| OpenClaw n8n | OpenClaw (10.1.50.233) | VM 115 | ⚠ Blocked |
⚠️ OpenClaw migration blocked — Anthropic API key must be rotated before proceeding.