Skip to content

Engineering Log: 2026-02-16

🚀 Strategic Shift: Permanent Static IP Migration

  • ISP Migration Complete: Transitioned from dynamic IP (Vocus CGNAT) to a Permanent Static IP (202.62.142.11) via Tangerine Telecom.
  • Architecture Upgrade: Retired the "Wormhole" (Oracle Tunnel) for high-bandwidth traffic. Fleet now utilizes a Direct-to-Home architecture for primary services.
  • Performance Gains: iperf3 tests verified a throughput increase from ~14 Mbps (tunneled) to ~441 Mbps (direct download) / ~45 Mbps (direct upload).

🛠️ Infrastructure Repairs & Hardening

  • Risa Recovery: Resolved "No Route to Host" issue via physical hard reboot. All media and gateway services restored.
  • TrueNAS Maintenance: Cleared checksum errors on TheWarpCore. Pool status: 🟢 HEALTHY.
  • SSH Perimeter: Implemented Oracle Jump Host architecture.
    • SSH keys synced to Oracle VPS.
    • Master ~/.ssh/config deployed on Oracle for internal fleet access.
    • Local Mac config updated to use ProxyJump oracle.
  • Tailscale Optimization: Enabled IP Masquerading on memory-alpha to resolve office subnet conflicts.
  • Remote Access: Deployed Chromium-in-Docker on holodeck-lab (port 3001), accessible via https://browser.the-lal.net for out-of-band router management.

🌐 Network & DNS Configuration

  • Cloudflare DNS Sync:
    • Updated all primary records (@, plex, photos, paperless, dashboard, audio) to 202.62.142.11.
    • Plex Optimization: Set plex.the-lal.net to DNS Only (Grey Cloud) to enable direct high-bitrate streaming.
    • Cleanup: Deleted decommissioned domains fleet.the-lal.net, direct.the-lal.net, pdf.the-lal.net, and pdf-direct.the-lal.net.
  • Gateway SSL: Reconfigured Risa Caddyfile to handle SSL certificates directly via Cloudflare DNS challenge.
  • DDNS Retirement: Stopped and removed federation_ddns container on Memory-Alpha as it is no longer required.

💾 Backup Automation

  • TrueNAS Config Export: Created and scheduled tools/backup_truenas_config.py to pull the DS9 config database daily at 06:00 AM.

📊 Fleet Status

Node IP Status Role
risa-mediacore 192.168.1.21 🟢 UP Gateway & Media
starfleet-compute 192.168.1.35 🟢 UP AI & Acquisition
memory-alpha 192.168.1.13 🟢 UP Bridge & Docs
ds9-truenas 192.168.1.100 🟢 UP Storage Vault
oracle-vps 152.67.102.122 🟢 UP Sentinel & Jump Host
  • SD 2026.12: Jump host and remote browser deployment completed; logs updated.
  • SD 2026.12: Permanent static IP migration and SSH Jump Host hardening completed.