Sanitized mirror from private repository - 2026-03-18 10:31:50 UTC
This commit is contained in:
Gitea Mirror Bot
313
docs/diagrams/tailscale-mesh.md
Normal file
313
docs/diagrams/tailscale-mesh.md
Normal file
@@ -0,0 +1,313 @@
|
||||
# 🔗 Tailscale Mesh Network
|
||||
|
||||
## Overview
|
||||
|
||||
All homelab locations are connected via Tailscale, creating a secure mesh VPN that allows seamless access between sites regardless of NAT or firewall configurations.
|
||||
|
||||
**Total Devices: 31 Tailscale nodes** across 4 physical locations + cloud + mobile devices.
|
||||
|
||||
---
|
||||
|
||||
## 📊 Complete Device Inventory
|
||||
|
||||
### 🟢 Active / Exit Nodes
|
||||
| Device | Tailscale IP | Type | Location | Notes |
|
||||
|--------|--------------|------|----------|-------|
|
||||
| **atlantis** | 100.83.230.112 | Synology NAS | Concord | ⚡ Exit node, Primary NAS |
|
||||
| **calypso** | 100.103.48.78 | Synology NAS | Concord | ⚡ Exit node |
|
||||
| **setillo** | 100.125.0.20 | Synology NAS | Tucson | ⚡ Exit node, Off-site backup |
|
||||
| **seattle** | 100.82.197.124 | Cloud VPS | Seattle | ⚡ Exit node, Contabo |
|
||||
| **vish-concord-nuc** | 100.72.55.21 | Intel NUC | Concord (Backup ISP) | ⚡ Exit node |
|
||||
| **homeassistant** | 100.112.186.90 | HA Device | Concord | ⚡ Exit node |
|
||||
|
||||
### 🖥️ Servers & VMs
|
||||
| Device | Tailscale IP | Type | Location | Notes |
|
||||
|--------|--------------|------|----------|-------|
|
||||
| **homelab** | 100.67.40.126 | Proxmox VM | Concord | Main experimentation VM |
|
||||
| **matrix-ubuntu** | 100.85.21.51 | Atlantis VM | Concord | Mastodon, Matrix, Mattermost |
|
||||
| **pve** | 100.87.12.28 | Proxmox Host | Concord | VM hypervisor |
|
||||
| **guava** | 100.75.252.64 | Physical | Concord | 10GbE host |
|
||||
| **jellyfish** | 100.69.121.120 | Linux | Concord | Server |
|
||||
| **shinku-ryuu** | 100.98.93.15 | Windows | Concord | Desktop workstation |
|
||||
|
||||
### 📡 Network Devices
|
||||
| Device | Tailscale IP | Type | Location | Notes |
|
||||
|--------|--------------|------|----------|-------|
|
||||
| **gl-mt3000** | 100.126.243.15 | GL.iNet Router | Concord | Router/subnet `192.168.12.0/24`, HA subnet |
|
||||
| **gl-be3600** | 100.105.59.123 | GL.iNet Router | Concord | Router/subnet `192.168.8.0/24`, exit node |
|
||||
|
||||
### 🥧 Raspberry Pi
|
||||
| Device | Tailscale IP | Type | Location | Notes |
|
||||
|--------|--------------|------|----------|-------|
|
||||
| **pi-5** | 100.77.151.40 | RPi 5 | Concord | Edge device |
|
||||
| **pi-5-kevin** | 100.123.246.75 | RPi 5 | Concord (Backup ISP) | Edge device |
|
||||
|
||||
### 📱 Mobile Devices
|
||||
| Device | Tailscale IP | Type | Status |
|
||||
|--------|--------------|------|--------|
|
||||
| **iphone16** | 100.79.252.108 | iOS | Personal phone |
|
||||
| **google-pixel-10-pro** | 100.122.119.40 | Android | Pixel phone |
|
||||
| **ipad-pro-12-9-6th-gen** | 100.68.71.48 | iOS | iPad Pro |
|
||||
| **samsung-sm-x510** | 100.72.118.117 | Android | Samsung tablet |
|
||||
|
||||
### 💻 Laptops & PCs
|
||||
| Device | Tailscale IP | Type | Location | Notes |
|
||||
|--------|--------------|------|----------|-------|
|
||||
| **bluecrownpassionflower** | 100.110.25.127 | Linux | Honolulu | Partner's PC |
|
||||
| **mah-pc** | 100.121.22.51 | Windows | Honolulu | Partner's PC |
|
||||
| **kevinlaptop** | 100.89.160.65 | Windows | Mobile | Kevin's laptop |
|
||||
| **uqiyoe** | 100.124.91.52 | Windows | Mobile | Laptop |
|
||||
|
||||
### 💤 Offline / Legacy
|
||||
| Device | Tailscale IP | Type | Last Seen | Notes |
|
||||
|--------|--------------|------|-----------|-------|
|
||||
| **mastodon-rocky** | 100.111.200.21 | Linux | 2d ago | Legacy Mastodon |
|
||||
| **vish-mint** | 100.115.169.43 | Linux | 49d ago | Linux Mint |
|
||||
| **vishdebian** | 100.86.60.62 | Linux | 55d ago | Debian VM |
|
||||
| **rocky9-playground** | 100.105.250.128 | Linux | 59d ago | Test VM |
|
||||
| **nvidia-shield-android-tv** | 100.89.79.99 | Android | 127d ago | Shield TV |
|
||||
| **sd** | 100.83.141.1 | Linux | 16d ago | Unknown |
|
||||
| **glkvm** | 100.64.137.1 | Linux | 85d ago | KVM device |
|
||||
|
||||
---
|
||||
|
||||
## 🕸️ Mesh Topology (Mermaid)
|
||||
|
||||
```mermaid
|
||||
graph TB
|
||||
subgraph Tailscale["🔐 Tailscale Mesh Network (31 Devices)"]
|
||||
|
||||
subgraph Concord_Primary["🏠 Concord Primary - 25Gbps Fiber"]
|
||||
subgraph NAS_Cluster["📦 NAS + VMs"]
|
||||
A_ATL["🗄️ atlantis<br/>100.83.230.112<br/>⚡ EXIT NODE"]
|
||||
A_MATRIX["🐧 matrix-ubuntu<br/>100.85.21.51<br/>VM on Atlantis"]
|
||||
end
|
||||
A_CAL["🗄️ calypso<br/>100.103.48.78<br/>⚡ EXIT NODE<br/>Headscale host"]
|
||||
A_GUAVA["💻 guava<br/>100.75.252.64<br/>TrueNAS Scale"]
|
||||
A_DESKTOP["🖥️ shinku-ryuu<br/>100.98.93.15"]
|
||||
A_PVE["🖥️ pve<br/>100.87.12.28"]
|
||||
A_JELLY["🐟 jellyfish<br/>100.69.121.120"]
|
||||
A_HA["🏠 homeassistant<br/>100.112.186.90<br/>⚡ EXIT NODE<br/>(via GL-MT3000)"]
|
||||
A_PI["🥧 pi-5<br/>100.77.151.40"]
|
||||
A_GL_MT["📡 gl-mt3000<br/>100.126.243.15<br/>subnet 192.168.12.0/24"]
|
||||
A_GL_BE["📡 gl-be3600<br/>100.105.59.123<br/>⚡ EXIT NODE<br/>subnet 192.168.8.0/24"]
|
||||
|
||||
subgraph Proxmox_VMs["Proxmox VMs"]
|
||||
A_HLB["homelab<br/>100.67.40.126"]
|
||||
end
|
||||
end
|
||||
|
||||
subgraph Concord_Backup["🏠 Concord Backup - 2Gbps"]
|
||||
B_NUC["🖥️ vish-concord-nuc<br/>100.72.55.21<br/>⚡ EXIT NODE"]
|
||||
B_PI_K["🥧 pi-5-kevin<br/>100.123.246.75"]
|
||||
end
|
||||
|
||||
subgraph Tucson["🌵 Tucson, AZ"]
|
||||
T_SET["🗄️ setillo<br/>100.125.0.20<br/>⚡ EXIT NODE"]
|
||||
end
|
||||
|
||||
subgraph Honolulu["🌺 Honolulu, HI"]
|
||||
H_BCPF["💻 bluecrownpassionflower<br/>100.110.25.127"]
|
||||
H_MAH["💻 mah-pc<br/>100.121.22.51"]
|
||||
end
|
||||
|
||||
subgraph Seattle["🌲 Seattle (Cloud)"]
|
||||
S_SEA["☁️ seattle<br/>100.82.197.124<br/>⚡ EXIT NODE"]
|
||||
end
|
||||
|
||||
subgraph Mobile["📱 Mobile Devices"]
|
||||
M_IPHONE["📱 iphone16"]
|
||||
M_PIXEL["📱 pixel-10-pro"]
|
||||
M_IPAD["📱 ipad-pro"]
|
||||
M_TAB["📱 samsung-tablet"]
|
||||
M_KLAP["💻 kevinlaptop"]
|
||||
end
|
||||
end
|
||||
|
||||
%% VM relationships
|
||||
A_ATL -->|"Hosts VM"| A_MATRIX
|
||||
A_PVE -->|"Hosts VM"| A_HLB
|
||||
|
||||
%% Primary mesh connections
|
||||
A_ATL <-->|"10GbE LAN"| A_CAL
|
||||
A_ATL <-->|"10GbE LAN"| A_GUAVA
|
||||
A_ATL <-->|"10GbE LAN"| A_DESKTOP
|
||||
|
||||
%% Cross-location Tailscale
|
||||
A_ATL <-.->|"Tailscale"| T_SET
|
||||
A_ATL <-.->|"Tailscale"| S_SEA
|
||||
A_ATL <-.->|"Tailscale"| B_NUC
|
||||
|
||||
%% GL router subnets
|
||||
A_GL_MT -->|"subnet route"| A_HA
|
||||
|
||||
%% Honolulu local
|
||||
H_BCPF <-.->|"Tailscale"| A_ATL
|
||||
H_MAH <-.->|"Tailscale"| A_ATL
|
||||
|
||||
classDef nas fill:#3498db,stroke:#333,stroke-width:2px,color:#fff
|
||||
classDef exit fill:#e74c3c,stroke:#333,stroke-width:2px,color:#fff
|
||||
classDef compute fill:#9b59b6,stroke:#333,stroke-width:2px,color:#fff
|
||||
classDef mobile fill:#1abc9c,stroke:#333,stroke-width:2px,color:#fff
|
||||
classDef network fill:#f39c12,stroke:#333,stroke-width:2px,color:#fff
|
||||
|
||||
class A_ATL,A_CAL,T_SET nas
|
||||
class S_SEA,B_NUC,A_HA exit
|
||||
class A_GUAVA,A_DESKTOP,A_PVE,A_HLB,A_MATRIX,A_JELLY compute
|
||||
class M_IPHONE,M_PIXEL,M_IPAD,M_TAB,M_KLAP mobile
|
||||
class A_GL_MT,A_GL_BE network
|
||||
```
|
||||
|
||||
---
|
||||
|
||||
## 📝 ASCII Tailscale Network Map
|
||||
|
||||
```
|
||||
╔══════════════════════════════════════════════════════════════════════════════════════════╗
|
||||
║ HEADSCALE MESH NETWORK (self-hosted Tailscale control server) ║
|
||||
║ 7 Exit Nodes • 4 Locations • Full Mesh Connectivity ║
|
||||
║ Control Server: headscale.vish.gg:8443 (on Calypso) ║
|
||||
╚══════════════════════════════════════════════════════════════════════════════════════════╝
|
||||
|
||||
┌─────────────────┐
|
||||
│ TAILSCALE │
|
||||
│ COORDINATION │
|
||||
│ (DERP Relays) │
|
||||
└────────┬────────┘
|
||||
│
|
||||
┌───────────────────────────────────────┼───────────────────────────────────────┐
|
||||
│ │ │
|
||||
▼ ▼ ▼
|
||||
|
||||
┌────────────────────────────────────────────────────────────────────────────────────────┐
|
||||
│ 🏠 CONCORD, CA - PRIMARY (25Gbps Fiber) │
|
||||
│ ══════════════════════════════════════════════════════════════════════════════════════│
|
||||
│ │
|
||||
│ ┌─────────────────────────────────────────────────────────────────────────────────┐ │
|
||||
│ │ 10GbE BACKBONE (TP-Link TL-SX1008) │ │
|
||||
│ │ ────────────────────────────────────────────────────────────────────────────── │ │
|
||||
│ │ │ │
|
||||
│ │ ┌─────────────────┐ ┌─────────────────┐ ┌─────────────────┐ │ │
|
||||
│ │ │ ⚡ ATLANTIS │ │ ⚡ CALYPSO │ │ GUAVA │ │ │
|
||||
│ │ │ 100.83.230.112 │ │ 100.103.48.78 │ │ 100.75.252.64 │ │ │
|
||||
│ │ │ DS1823xs+ │ │ DS723+ │ │ Physical Host │ │ │
|
||||
│ │ │ EXIT NODE │ │ EXIT NODE │ │ │ │ │
|
||||
│ │ │ │ │ │ │ │ │ │
|
||||
│ │ │ ┌─────────────┐ │ │ │ │ │ │ │
|
||||
│ │ │ │matrix-ubuntu│ │ │ │ │ │ │ │
|
||||
│ │ │ │100.85.21.51 │ │ │ │ │ │ │ │
|
||||
│ │ │ │Mastodon/ │ │ │ │ │ │ │ │
|
||||
│ │ │ │Matrix/MM │ │ │ │ │ │ │ │
|
||||
│ │ │ └─────────────┘ │ │ │ │ │ │ │
|
||||
│ │ └─────────────────┘ └─────────────────┘ └─────────────────┘ │ │
|
||||
│ │ │ │
|
||||
│ │ ┌─────────────────┐ │ │
|
||||
│ │ │ SHINKU-RYUU │ Desktop Workstation │ │
|
||||
│ │ │ 100.98.93.15 │ │ │
|
||||
│ │ └─────────────────┘ │ │
|
||||
│ └─────────────────────────────────────────────────────────────────────────────────┘ │
|
||||
│ │
|
||||
│ ┌─────────────────────────────────────────────────────────────────────────────────┐ │
|
||||
│ │ 2.5GbE / 1GbE DEVICES │ │
|
||||
│ │ ────────────────────────────────────────────────────────────────────────────── │ │
|
||||
│ │ ┌─────────────┐ ┌─────────────┐ ┌─────────────┐ ┌─────────────┐ ┌────────────┐ │ │
|
||||
│ │ │ PVE │ │ JELLYFISH │ │⚡HOMEASSIST │ │ PI-5 │ │ HOMELAB VM │ │ │
|
||||
│ │ │100.87.12.28 │ │100.69.121.120│ │100.112.186.90│ │100.77.151.40│ │100.67.40.126│ │ │
|
||||
│ │ │ Proxmox │ │ Server │ │ EXIT NODE │ │ RPi 5 │ │ (on PVE) │ │ │
|
||||
│ │ │ │ │ │ │via GL-MT3000│ │ │ │ │ │ │
|
||||
│ │ └─────────────┘ └─────────────┘ └─────────────┘ └─────────────┘ └────────────┘ │ │
|
||||
│ │ ┌─────────────────────┐ ┌─────────────────────┐ │ │
|
||||
│ │ │ ⚡ GL-BE3600 │ │ GL-MT3000 │ │ │
|
||||
│ │ │ 100.105.59.123 │ │ 100.126.243.15 │ │ │
|
||||
│ │ │ EXIT NODE │ │ HA subnet router │ │ │
|
||||
│ │ │ 192.168.8.0/24 │ │ 192.168.12.0/24 │ │ │
|
||||
│ │ └─────────────────────┘ └─────────────────────┘ │ │
|
||||
│ └─────────────────────────────────────────────────────────────────────────────────┘ │
|
||||
│ │
|
||||
└─────────────────────────────────────────────────────────────────────────────────────────┘
|
||||
|
||||
┌────────────────────────────────────────────────────────────────────────────────────────┐
|
||||
│ 🏠 CONCORD BACKUP ISP (2Gbps/500Mbps) │
|
||||
│ ══════════════════════════════════════════════════════════════════════════════════════│
|
||||
│ ┌─────────────────────┐ ┌─────────────────────┐ │
|
||||
│ │ ⚡ VISH-CONCORD-NUC │ │ PI-5-KEVIN │ │
|
||||
│ │ 100.72.55.21 │ │ 100.123.246.75 │ │
|
||||
│ │ Intel NUC │ │ RPi 5 │ │
|
||||
│ │ EXIT NODE │ │ │ │
|
||||
│ └─────────────────────┘ └─────────────────────┘ │
|
||||
└────────────────────────────────────────────────────────────────────────────────────────┘
|
||||
|
||||
◄─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ TAILSCALE MESH ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─ ─►
|
||||
|
||||
┌───────────────────────────┐ ┌───────────────────────────┐ ┌───────────────────────────┐
|
||||
│ 🌵 TUCSON, AZ │ │ 🌺 HONOLULU, HI │ │ 🌲 SEATTLE (CLOUD) │
|
||||
│ ═════════════════════════│ │ ═════════════════════════│ │ ═════════════════════════│
|
||||
│ │ │ │ │ │
|
||||
│ ┌─────────────────────┐ │ │ ┌─────────────────────┐ │ │ ┌─────────────────────┐ │
|
||||
│ │ ⚡ SETILLO │ │ │ │ bluecrownpassion... │ │ │ │ ⚡ SEATTLE │ │
|
||||
│ │ 100.125.0.20 │ │ │ │ 100.110.25.127 │ │ │ │ 100.82.197.124 │ │
|
||||
│ │ DS223j NAS │ │ │ │ Partner's PC │ │ │ │ Contabo VPS │ │
|
||||
│ │ EXIT NODE │ │ │ └─────────────────────┘ │ │ │ EXIT NODE │ │
|
||||
│ │ Off-site Backup │ │ │ ┌─────────────────────┐ │ │ └─────────────────────┘ │
|
||||
│ └─────────────────────┘ │ │ │ mah-pc │ │ │ │
|
||||
│ │ │ │ 100.121.22.51 │ │ └───────────────────────────┘
|
||||
│ │ │ └─────────────────────┘ │
|
||||
└───────────────────────────┘ └───────────────────────────┘
|
||||
|
||||
┌────────────────────────────────────────────────────────────────────────────────────────┐
|
||||
│ 📱 MOBILE DEVICES │
|
||||
│ ══════════════════════════════════════════════════════════════════════════════════════│
|
||||
│ │
|
||||
│ ┌──────────────┐ ┌──────────────┐ ┌──────────────┐ ┌──────────────┐ ┌──────────────┐ │
|
||||
│ │ 📱 iphone16 │ │ 📱 pixel-10 │ │ 📱 ipad-pro │ │ 📱 samsung │ │ 💻 kevinlap │ │
|
||||
│ │100.79.252.108│ │100.122.119.40│ │100.68.71.48 │ │100.72.118.117│ │100.89.160.65 │ │
|
||||
│ └──────────────┘ └──────────────┘ └──────────────┘ └──────────────┘ └──────────────┘ │
|
||||
│ │
|
||||
└────────────────────────────────────────────────────────────────────────────────────────┘
|
||||
|
||||
╔════════════════════════════════════════════════════════════════════════════════════════╗
|
||||
║ EXIT NODE SUMMARY (6 Total) ║
|
||||
║ ══════════════════════════ ║
|
||||
║ • atlantis (100.83.230.112) - Primary exit, Concord 25Gbps ║
|
||||
║ • calypso (100.103.48.78) - Secondary exit, Concord 25Gbps (Headscale host) ║
|
||||
║ • setillo (100.125.0.20) - Tucson exit, DS223j off-site NAS ║
|
||||
║ • seattle (100.82.197.124) - Cloud exit, Contabo VPS Seattle ║
|
||||
║ • vish-concord-nuc (100.72.55.21) - Backup ISP exit, Concord 2Gbps ║
|
||||
║ • homeassistant (100.112.186.90) - Home automation exit (via GL-MT3000 subnet) ║
|
||||
║ • gl-be3600 (100.105.59.123) - GL.iNet router exit, subnet 192.168.8.0/24 ║
|
||||
╚════════════════════════════════════════════════════════════════════════════════════════╝
|
||||
```
|
||||
|
||||
---
|
||||
|
||||
## 🖥️ Matrix-Ubuntu VM Details
|
||||
|
||||
This VM runs on **Atlantis** (Synology DS1823xs+ via Virtual Machine Manager):
|
||||
|
||||
| Specification | Value |
|
||||
|---------------|-------|
|
||||
| **Hostname** | matrix-ubuntu |
|
||||
| **Tailscale IP** | 100.85.21.51 |
|
||||
| **LAN IP** | 192.168.0.154 |
|
||||
| **OS** | Ubuntu 24.04.3 LTS |
|
||||
| **CPU** | 4 cores (AMD Ryzen Embedded V1780B) |
|
||||
| **RAM** | 8GB (7.7GB usable) |
|
||||
| **Storage** | 100GB (87GB available) |
|
||||
| **SSH Port** | 65533 |
|
||||
|
||||
### Services Running
|
||||
| Service | Domain | Status |
|
||||
|---------|--------|--------|
|
||||
| Mastodon | mastodon.vish.gg | ✅ Running |
|
||||
| Mattermost | mm.crista.love | ✅ Running |
|
||||
| Matrix (Synapse) | mx.vish.gg | ✅ Running |
|
||||
| PostgreSQL | - | ✅ Running |
|
||||
| Redis | - | ✅ Running |
|
||||
| TURN (coturn) | mx.vish.gg:3479 | ✅ Running |
|
||||
|
||||
---
|
||||
|
||||
## 🔗 Related Diagrams
|
||||
- [Network Topology](network-topology.md) - Physical network layout
|
||||
- [Service Architecture](service-architecture.md) - How services connect
|
||||
- [Location Overview](location-overview.md) - Geographic distribution
|
||||
Reference in New Issue
Block a user