From 752f98d8bcb840223e8d1ab669cb1078e5fd87f3 Mon Sep 17 00:00:00 2001 From: Snider Date: Tue, 3 Mar 2026 13:44:22 +0000 Subject: [PATCH] docs: remove DNS records from plans dir (not a Charon task) Co-Authored-By: Virgil --- docs/plans/2026-03-03-unifi-dns-records.md | 87 ---------------------- 1 file changed, 87 deletions(-) delete mode 100644 docs/plans/2026-03-03-unifi-dns-records.md diff --git a/docs/plans/2026-03-03-unifi-dns-records.md b/docs/plans/2026-03-03-unifi-dns-records.md deleted file mode 100644 index 1f47e9a..0000000 --- a/docs/plans/2026-03-03-unifi-dns-records.md +++ /dev/null @@ -1,87 +0,0 @@ -# UniFi Gateway DNS Records — lthn.sh - -> **For:** snider (UniFi gateway config) -> **Date:** 3 Mar 2026 - -## Overview - -UniFi gateway doesn't support wildcard DNS. Each service needs an individual A record pointing to the homelab box (10.69.69.165). - -All covered by a single GoGetSSL cert with SANs: `lthn.sh`, `*.lthn.sh`, `*.infra.lthn.sh`. - -## Lab Services — `*.lthn.sh` - -| Hostname | IP | Service | -|----------|-----|---------| -| `hub.lthn.sh` | 10.69.69.165 | Laravel admin hub | -| `lab.lthn.sh` | 10.69.69.165 | LEM Lab | -| `ollama.lthn.sh` | 10.69.69.165 | Ollama inference + embeddings | -| `qdrant.lthn.sh` | 10.69.69.165 | Qdrant vector search | -| `eaas.lthn.sh` | 10.69.69.165 | EaaS scoring API | - -## Infrastructure — `*.infra.lthn.sh` - -| Hostname | IP | Service | -|----------|-----|---------| -| `traefik.infra.lthn.sh` | 10.69.69.165 | Traefik dashboard | -| `grafana.infra.lthn.sh` | 10.69.69.165 | Grafana | -| `prometheus.infra.lthn.sh` | 10.69.69.165 | Prometheus | -| `influx.infra.lthn.sh` | 10.69.69.165 | InfluxDB | -| `auth.infra.lthn.sh` | 10.69.69.165 | Authentik SSO | -| `portainer.infra.lthn.sh` | 10.69.69.165 | Portainer | -| `phpmyadmin.infra.lthn.sh` | 10.69.69.165 | phpMyAdmin | -| `maria.infra.lthn.sh` | 10.69.69.165 | MariaDB admin | -| `postgres.infra.lthn.sh` | 10.69.69.165 | PostgreSQL admin | -| `redis.infra.lthn.sh` | 10.69.69.165 | Redis admin | - -## Bare domain - -| Hostname | IP | Service | -|----------|-----|---------| -| `lthn.sh` | 10.69.69.165 | Redirects to `hub.lthn.sh` (or landing page) | - -## Total: 16 A records - -All pointing to the same IP. Add more as new services come online. - -## After UniFi Config - -Once DNS is live, remove the old `/etc/hosts` entries on Mac: - -``` -# REMOVE these lines from /etc/hosts: -10.69.69.165 ollama.lthn.lan -10.69.69.165 qdrant.lthn.lan -10.69.69.165 eaas.lthn.lan -10.69.69.165 lthn.lan -10.69.69.165 traefik.lthn.lan -10.69.69.165 blesta.lthn.lan -10.69.69.165 auth.lthn.lan -10.69.69.165 phpmyadmin.lthn.lan -10.69.69.165 portainer.lthn.lan -10.69.69.165 grafana.lthn.lan -10.69.69.165 lab.lthn.lan -10.69.69.165 prometheus.lthn.lan -10.69.69.165 influx.lthn.lan -10.69.69.165 maria.lthn.lan -10.69.69.165 postgres.lthn.lan -10.69.69.165 redis.lthn.lan -``` - -Test resolution: -```bash -# Should resolve to 10.69.69.165 via UniFi DNS -dig hub.lthn.sh @ +short - -# Test each service -for h in hub lab ollama qdrant eaas; do - echo -n "$h.lthn.sh → "; dig $h.lthn.sh +short -done -``` - -## Notes - -- UniFi gateway DNS serves these records to all LAN clients automatically -- No public DNS records exist for `lthn.sh` — the zone in CloudNS is empty (used only for ACME DNS-01 cert validation) -- The Mac, the Linux homelab, and any other LAN device will all resolve via UniFi -- Charon's CoreDNS on the Linux box can coexist — it handles `leth.in` (prod internal), UniFi handles `lthn.sh` (homelab)