Go to file

Sascha Dodenhöft 0baab66010 coredns: gongme.expertfab.de → 10.42.71.60 (Hairpin-NAT)

Pods im Cluster losen gongme.expertfab.de auf die interne
Traefik-LB-IP (10.42.71.60) auf, statt extern ueber die
OPNsense zu gehen. Analog zu den bestehenden Eintraegen
(docs, note, signing, auth, etc.).

Cloudflare A-Record (oeffentlich): gongme.expertfab.de → 109.230.227.34

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-06-07 13:02:47 +02:00

diagrams

Add storage flow & HA analysis diagram

2026-05-03 14:00:45 +02:00

docs

Migrate Joplin to K3s and add existing k8s manifests

2026-05-28 20:17:19 +02:00

k8s

coredns: gongme.expertfab.de → 10.42.71.60 (Hairpin-NAT)

2026-06-07 13:02:47 +02:00

README.md

Initial commit: Infrastructure documentation

2026-05-03 13:46:47 +02:00

README.md

ExpertFab – Infrastruktur Dokumentation

Zentrale Dokumentation der ExpertFab IT-Infrastruktur.

Inhalt

Dokument	Beschreibung
docs/infrastructure.md	VM-Inventar, Proxmox-Hosts, Netzwerk
docs/access.md	SSH-Zugänge, API-Token, Credentials
docs/k3s.md	K3s-Cluster, Namespaces, Ingresses, ERPNext
docs/storage.md	Longhorn Storage, PVCs, StorageClasses

Schaubilder

Datei	Beschreibung
diagrams/k8s_cluster.png	Gesamte Infrastruktur (Proxmox + K3s)
diagrams/storage_architecture.png	Longhorn Storage Architektur

Schaubilder neu generieren:

cd diagrams
python3 k8s_cluster_diagram.py
python3 storage_diagram.py

Schnellzugriff

# Proxmox
ssh -i ~/.ssh/hetzner_key root@10.42.70.1

# K3s Control Plane
ssh -i ~/.ssh/hetzner_key sd@10.42.71.50

# kubectl (am Control Plane)
sudo KUBECONFIG=/etc/rancher/k3s/k3s.yaml kubectl get pods -A

# kubectl via Proxmox (ohne sudo-Passwort)
ssh -i ~/.ssh/hetzner_key root@10.42.70.1 \
  "qm guest exec 119 -- bash -c 'KUBECONFIG=/etc/rancher/k3s/k3s.yaml kubectl get pods -A'"

README.md Unescape Escape

ExpertFab – Infrastruktur Dokumentation

Inhalt

Schaubilder

Schnellzugriff

README.md