# Dienste-Übersicht Alle erreichbaren Web-Interfaces und Dienste im Überblick. ## Web-Interfaces | Dienst | URL | System | Zugangsdaten | |--------|-----|--------|-------------| | Proxmox VE | https://192.168.0.48:8006 | pve-braetter | root | | Nginx Proxy Manager | http://192.168.0.79:81 | CT 101 | NPM-Admin | | OctoPrint | http://192.168.0.80:5000 | CT 102 | lokal | | Notes Manager | http://192.168.0.92 | CT 109 | lokal | | Notes Manager (extern) | http://notes.braetter-int.de | CT 109 | lokal | | IDS Grafana | http://192.168.0.85:3000 | CT 207 | lokal | | NetBox | http://192.168.0.86 | CT 208 (stopped) | lokal | | authentik | http://192.168.0.87 | CT 209 (stopped) | lokal | | Wazuh Dashboard | https://192.168.0.88 | CT 210 (stopped) | lokal | | Aquarium Logbuch | http://192.168.0.246 | CT 211 | - | | pgAdmin4 | http://192.168.0.223/pgadmin4/ | CT 303 | nicolay.braetter@googlemail.com | | PatchMon | http://192.168.0.78:3000 | CT 100 | lokal | | Technitium DNS | http://192.168.0.202:5380 | VM 103 | lokal | | Navidrome | http://192.168.0.98:4533 | VM 105 | lokal | | Paperless-NGX | http://192.168.0.89:8000 | VM 106 | lokal | | Vaultwarden | http://192.168.0.90:8080 | VM 107 | Bitwarden-App | | Outline | http://192.168.0.240 | VM 200 | lokal | | Pritunl VPN | https://192.168.0.175 | VM 201 | lokal | | Gitea | http://gitea.braetter.local | extern | nicolay.braetter@icloud.com | ## Datenbanken | System | Typ | Version | Host | Port | |--------|-----|---------|------|------| | SQL-Cluster (Primary) | PostgreSQL 16 | 16 | 192.168.0.220 | 5432 | | SQL-Cluster (Replica) | PostgreSQL 16 | 16 | 192.168.0.221 | 5432 | | SQL-Cluster (Replica) | PostgreSQL 16 | 16 | 192.168.0.222 | 5432 | | Paperless | PostgreSQL 16 | 16 | 192.168.0.89 (lokal) | 5432 | | PatchMon | PostgreSQL 17 | 17 | 192.168.0.78 (lokal) | 5432 | | Outline | MariaDB 10.11 | 10.11 | 192.168.0.240 (lokal) | 3306 | | Pritunl | MongoDB | - | 192.168.0.175 (lokal) | 27017 | ## Monitoring-Dienste | Dienst | System | URL | Funktion | |--------|--------|-----|---------| | Grafana | CT 207 (ids-monitor) | http://192.168.0.85:3000 | Dashboards | | Loki | CT 207 (ids-monitor) | http://192.168.0.85:3100 | Log-Aggregation | | Suricata | CT 207 (ids-monitor) | - | IDS/IPS | | Wazuh | CT 210 (wazuh) | https://192.168.0.88 | SIEM/HIDS | | PatchMon | CT 100 (patchmon) | http://192.168.0.78:3000 | Patch-Monitoring | | Fail2Ban | CT 202 (logserver) | - | Brute-Force-Schutz | | Promtail | CT 202, CT 207, VM 201 | - | Log-Shipper | ## Sicherheits-Infrastruktur | Komponente | System | Beschreibung | |------------|--------|-------------| | Nginx Proxy Manager | CT 101 | Reverse Proxy, SSL-Terminierung | | Fail2Ban | CT 202 | Automatisches IP-Blocking | | Wazuh Agents | VM 107, VM 108, VM 200, VM 201 | HIDS auf kritischen Systemen | | Suricata IDS | CT 207 | Netzwerk-Angriffserkennung | | anomalie_check.sh | CT 202 | Tägliche Log-Analyse mit IP-Lookup | | authentik SSO | CT 209 (stopped) | Zentrales Identity Management | ## Datei-Shares | Share | Protokoll | Host | Beschreibung | |-------|-----------|------|-------------| | \\192.168.0.91 | SMB/Samba | VM 108 | Arbeitsfreigaben | | \\192.168.0.47\nicolay\Musik | SMB | WD MyCloud NAS | Musik-Bibliothek (3 TB) | ## Gitea Repositories | Repo | URL | Inhalt | |------|-----|--------| | aqualog | http://gitea.braetter.local/braetter/aqualog | Aquarium Logbuch React/Node App | | noteapp | http://gitea.braetter.local/braetter/noteapp | Notes Manager Flask App | | homelabdoku | http://gitea.braetter.local/braetter/homelabdoku | Diese Dokumentation |