MajorLinux
2045c090c0
New articles: UFW firewall management, Fail2ban Apache 404 scanner jail, SELinux Fail2ban execmem fix, updating n8n Docker, Ansible SSH timeout during dnf upgrade, n8n proxy X-Forwarded-For fix, macOS mirrored notification alert loop. Updated dca→dcaprod reference in network overview. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
1.4 KiB
1.4 KiB
🌐 Network Overview
The MajorInfrastructure infrastructure is connected via a private Network Overview#Tailscale mesh network. This allows secure, peer-to-peer communication between devices across different geographic locations (US and UK) without exposing services to the public internet.
🏛️ Infrastructure Summary
- Address Space: 100.x.x.x (Tailscale CGNAT)
- Management: Centralized via Network Overview#Ansible (
MajorAnsiblerepo) - Host Groupings: Functional (web, mail, homelab, bots), OS (Fedora, Ubuntu), and Location (US, UK).
🌍 Geographic Nodes
| Host | Location | IP | OS |
|---|---|---|---|
| `[[dcaprod | dcaprod]]` | 🇺🇸 US | 100.104.11.146 |
| `[[majortoot | majortoot]]` | 🇺🇸 US | 100.110.197.17 |
| `[[majorhome | majorhome]]` | 🇺🇸 US | 100.120.209.106 |
| `[[teelia | teelia]]` | 🇬🇧 UK | 100.120.32.69 |
🔗 Tailscale Setup
Tailscale is configured as a persistent service on all nodes. Key features used include:
- Tailscale SSH: Enabled for secure management via Ansible.
- MagicDNS: Used for internal hostname resolution (e.g.,
majorlab.tailscale.net). - ACLs: Managed via the Tailscale admin console to restrict cross-group communication where necessary.
Last updated: 2026-03-04