Fork: 0
root / gnexus-book
Transfer to URL with SHA Find file
Newer
Older
gnexus-book / 40-inventory / networks.yml
@Eugene Sukhodolskiy Eugene Sukhodolskiy 1 day ago 3 KB Document pfSense interfaces and router services
Raw Blame History 
# Network segments, virtual networks, and routing domains.
---
- id: internet
  name: Internet
  type: external-network
  status: active
  docs: ../10-systems/traffic-routes/public-gnexus-space-to-internal-nginx.md
  last_reviewed: 2026-05-09
  source_of_truth: documentation-convention

- id: home-lan
  name: Home LAN
  type: physical-lan
  status: active
  cidr: 192.168.1.0/24
  gateway: 192.168.1.1
  owner_host: pfsense-router
  router_interface: re2
  router_interface_description: LANMAIN
  router_interface_mac: 00:e0:4c:68:35:ba
  access_layer:
    switches: true
    wired_devices:
      - TVs
      - PCs
      - servers
      - Wi-Fi access points
    wifi:
      ssid: home
      mode: access-points
      mesh: true
      node_count: 2
  docs: ../10-systems/networks/pfsense-router.md
  last_reviewed: 2026-05-10
  source_of_truth: owner-confirmed-and-ssh-pfsense

- id: home-iot-lan
  name: Home IoT LAN
  type: physical-lan
  status: active
  cidr: 192.168.2.0/24
  gateway: 192.168.2.1
  owner_host: pfsense-router
  router_interface: re0
  router_interface_description: LANTECH
  router_interface_mac: 00:e0:4c:68:07:9f
  purpose: Service network for smart-home and other IoT devices.
  access_layer:
    switches: true
    wifi:
      mode: access-points
      mesh: false
      nodes:
        - home_iot_0
        - home_iot_1
        - home_iot_2
  current_policy:
    inter_lan_access: full
    internet_access: allowed
  planned_policy:
    inter_lan_access: restricted
    internet_access: likely-denied
  docs: ../10-systems/networks/pfsense-router.md
  last_reviewed: 2026-05-10
  source_of_truth: owner-confirmed-and-ssh-pfsense

- id: wan-uplink
  name: pfSense WAN uplink
  type: wan-uplink
  status: active
  cidr: 172.32.2.0/24
  gateway: 172.32.2.1
  owner_host: pfsense-router
  router_interface: re3
  router_interface_description: WAN
  router_interface_mac: 70:85:c2:24:ee:4b
  router_interface_ipv4: 172.32.2.78/24
  docs: ../10-systems/networks/pfsense-router.md
  last_reviewed: 2026-05-10
  source_of_truth: ssh-pfsense

- id: libvirt-default
  name: default
  type: libvirt-network
  status: active
  owner_host: hp-proliant-dl380-g6
  autostart: true
  docs: ../10-systems/networks/libvirt-networks.md
  last_reviewed: 2026-05-09
  source_of_truth: ssh-libvirt

- id: libvirt-isolated-net
  name: isolated-net
  type: libvirt-network
  status: active
  owner_host: hp-proliant-dl380-g6
  autostart: true
  docs: ../10-systems/networks/libvirt-networks.md
  last_reviewed: 2026-05-09
  source_of_truth: ssh-libvirt

- id: libvirt-opennet
  name: OpenNet
  type: libvirt-network
  status: active
  owner_host: hp-proliant-dl380-g6
  autostart: true
  docs: ../10-systems/networks/libvirt-networks.md
  last_reviewed: 2026-05-09
  source_of_truth: ssh-libvirt

- id: libvirt-united
  name: united
  type: libvirt-network
  status: active
  owner_host: hp-proliant-dl380-g6
  autostart: true
  docs: ../10-systems/networks/libvirt-networks.md
  last_reviewed: 2026-05-09
  source_of_truth: ssh-libvirt

- id: openvpn-tunnel
  name: OpenVPN tunnel from external VPS to internal proxy VPS
  type: vpn-tunnel
  status: active
  owner_host: external-vps
  endpoints:
    - external-vps
    - internal-proxy-vps
  server: external-openvpn-server
  client: internal-openvpn-client
  docs: ../10-systems/traffic-routes/public-gnexus-space-to-internal-nginx.md
  last_reviewed: 2026-05-09
  source_of_truth: owner-confirmed