Jump to content
Main menu
Main menu
move to sidebar
hide
Navigation
Main page
Recent changes
Random page
Help about MediaWiki
Special pages
jb-vpn.uk Wiki
Search
Search
Appearance
Create account
Log in
Personal tools
Create account
Log in
Pages for logged out editors
learn more
Contributions
Talk
Editing
Services:Current Services
Page
Discussion
English
Read
Edit
View history
Tools
Tools
move to sidebar
hide
Actions
Read
Edit
View history
General
What links here
Related changes
Page information
Appearance
move to sidebar
hide
Warning:
You are not logged in. Your IP address will be publicly visible if you make any edits. If you
log in
or
create an account
, your edits will be attributed to your username, along with other benefits.
Anti-spam check. Do
not
fill this in!
This document provides a detailed inventory of all services currently configured on the reverse proxy system. == Service Summary == {| class="wikitable" |- | Service || Subdomain || Internal Port || Protocol || Status || SSL |- | Wiki || wiki.jb-vpn.uk || 8010 || HTTP || Active || β |- | Werbs-Wiki || werbs-wiki.jb-vpn.uk || 8011 || HTTP || Active || β |- | Synology DSM || dsm.jb-vpn.uk || 5001 || HTTPS || Active || β |- | Plex Media Server || plex.jb-vpn.uk || 32400 || HTTP || Active || β |- | VPS Default || vps.jb-vpn.uk || - || - || Active || β |} == Service Details == === 1. Wiki Service === '''Subdomain''': <code>wiki.jb-vpn.uk</code> '''Public Access''': <code>https://wiki.jb-vpn.uk</code> '''Internal Configuration''': * '''Host''': VPS (Docker) * '''Target''': <code>127.0.0.1:8010</code> (container <code>wiki-mediawiki</code>) * '''Stack''': <code>/var/www/wiki.jb/</code> * '''Protocol''': HTTP '''Reverse Proxy''': * '''Caddy''': <code>/etc/caddy/Caddyfile</code> (<code>wiki.jb-vpn.uk</code> β <code>127.0.0.1:8010</code>) '''SSL Certificate''': * '''Provider''': Let's Encrypt (via Caddy) * '''Status''': Valid '''Traffic Flow''': <pre> External Request β wiki.jb-vpn.uk:443 (HTTPS) β Caddy (SSL termination) β 127.0.0.1:8010 (MediaWiki Docker on VPS) </pre> '''Configuration Details''': * HTTP to HTTPS redirect: β Enabled * WebSocket support: β Enabled * Extended timeouts: β 300 seconds * Proxy headers: β Full set configured '''DNS Record''': <code>wiki.jb-vpn.uk</code> β <code>87.106.61.62</code> '''Test Command''': <pre class="lang-bash"> curl -I https://wiki.jb-vpn.uk == Or access directly: https://wiki.jb-vpn.uk/index.php?title=Main_Page == </pre> ---- === 2. Werbs-Wiki Service === '''Subdomain''': <code>werbs-wiki.jb-vpn.uk</code> '''Public Access''': <code>https://werbs-wiki.jb-vpn.uk</code> '''Internal Configuration''': * '''Host''': VPS (Docker) * '''Target''': <code>127.0.0.1:8011</code> (container <code>wiki-werbs-mediawiki</code>) * '''Stack''': <code>/var/www/wiki.jb/</code> * '''Protocol''': HTTP '''Reverse Proxy''': * '''Caddy''': <code>/etc/caddy/Caddyfile</code> (<code>werbs-wiki.jb-vpn.uk</code> β <code>127.0.0.1:8011</code>) '''SSL Certificate''': * '''Provider''': Let's Encrypt (via Caddy) * '''Status''': Valid '''Traffic Flow''': <pre> External Request β werbs-wiki.jb-vpn.uk:443 (HTTPS) β Caddy (SSL termination) β 127.0.0.1:8011 (MediaWiki Docker on VPS) </pre> '''Configuration Details''': * HTTP to HTTPS redirect: β Enabled * WebSocket support: β Enabled * Extended timeouts: β 300 seconds * Proxy headers: β Full set configured '''DNS Record''': <code>werbs-wiki.jb-vpn.uk</code> β <code>87.106.61.62</code> '''Test Command''': <pre class="lang-bash"> curl -I https://werbs-wiki.jb-vpn.uk </pre> ---- === 3. Synology DSM === '''Subdomain''': <code>dsm.jb-vpn.uk</code> '''Public Access''': <code>https://dsm.jb-vpn.uk</code> '''Internal Configuration''': * '''Target IP''': <code>10.8.0.2</code> (Synology NAS via VPN) * '''Target Port''': <code>5001</code> * '''Protocol''': HTTPS '''Reverse Proxy''': * '''Caddy''': <code>/etc/caddy/Caddyfile</code> (<code>dsm.jb-vpn.uk</code> β <code>https://10.8.0.2:5001</code>) '''SSL Certificate''': * '''Provider''': Let's Encrypt (via Caddy) * '''Status''': Valid '''Traffic Flow''': <pre> External Request β dsm.jb-vpn.uk:443 (HTTPS) β Caddy (SSL termination) β 10.8.0.2:5001 (HTTPS on NAS via VPN) </pre> '''Configuration Details''': * HTTP to HTTPS redirect: β Enabled * WebSocket support: β Enabled (for DSM WebSocket features) * Internal HTTPS: β Passes through to Synology HTTPS '''DNS Record''': <code>dsm.jb-vpn.uk</code> β <code>87.106.61.62</code> '''Test Command''': <pre class="lang-bash"> curl -I https://dsm.jb-vpn.uk </pre> ---- === 4. Plex Media Server === '''Subdomain''': <code>plex.jb-vpn.uk</code> '''Public Access''': <code>https://plex.jb-vpn.uk</code> '''Internal Configuration''': * '''Target IP''': <code>10.8.0.2</code> (Synology NAS via VPN) * '''Target Port''': <code>32400</code> * '''Protocol''': HTTP '''Reverse Proxy''': * '''Caddy''': <code>/etc/caddy/Caddyfile</code> (<code>plex.jb-vpn.uk</code> β <code>http://10.8.0.2:32400</code>) '''SSL Certificate''': * '''Provider''': Let's Encrypt (via Caddy) * '''Status''': Valid '''Traffic Flow''': <pre> External Request β plex.jb-vpn.uk:443 (HTTPS) β Caddy (SSL termination) β 10.8.0.2:32400 (HTTP on NAS via VPN) </pre> '''Configuration Details''': * HTTP to HTTPS redirect: β Enabled * Plex-specific headers: β Configured * X-Plex-Client-Identifier * X-Plex-Device * X-Plex-Product * X-Plex-Version * X-Plex-Platform * X-Plex-Platform-Version * X-Plex-Device-Name * X-Plex-Provides * X-Plex-Token '''DNS Record''': <code>plex.jb-vpn.uk</code> β <code>87.106.61.62</code> '''Test Command''': <pre class="lang-bash"> curl -I https://plex.jb-vpn.uk </pre> ---- === 5. VPS Default Web Directory === '''Subdomain''': <code>vps.jb-vpn.uk</code> '''Public Access''': <code>https://vps.jb-vpn.uk</code> '''Internal Configuration''': * '''Type''': Static files * '''Web Root''': <code>/var/www/html</code> * '''Protocol''': Direct file serving '''Reverse Proxy''': * '''Caddy''': <code>/etc/caddy/Caddyfile</code> (<code>vps.jb-vpn.uk</code> β <code>file_server</code> for <code>/var/www/html</code>) '''SSL Certificate''': * '''Provider''': Let's Encrypt (via Caddy) * '''Status''': Valid '''Traffic Flow''': <pre> External Request β vps.jb-vpn.uk:443 (HTTPS) β Caddy (SSL termination + file_server) β /var/www/html </pre> '''Configuration Details''': * HTTP to HTTPS redirect: β Enabled * Static file serving: β Enabled * Index files: <code>index.html</code>, <code>index.htm</code>, <code>index.nginx-debian.html</code> '''DNS Record''': <code>vps.jb-vpn.uk</code> β <code>87.106.61.62</code> '''Test Command''': <pre class="lang-bash"> curl -I https://vps.jb-vpn.uk </pre> ---- == Additional Services (Non-Web) == === SSH Port Forwarding === SSH port forwarding is managed through a centralized configuration system. See [SSH Port Forwarding Management](index.md) for complete documentation. '''Current Forwards''': * '''Synology NAS''': Port <code>22222</code> β <code>10.8.0.2:22</code> * Access: <code>ssh -p 22222 user@87.106.61.62</code> '''Management''': <pre class="lang-bash"> == List all SSH port forwards == sudo ssh-forward list == Add a new device == sudo ssh-forward add <name> <external_port> <vpn_ip> [ssh_port] == Remove a device == sudo ssh-forward remove <name> </pre> '''Configuration File''': <code>/etc/ssh-port-forwards.conf</code> '''Note''': This is a direct port forward via iptables, not handled by Caddy. ---- == Service Status Monitoring == === Check All Services === <pre class="lang-bash"> ==== Test all HTTPS services ==== for domain in wiki.jb-vpn.uk werbs-wiki.jb-vpn.uk dsm.jb-vpn.uk plex.jb-vpn.uk vps.jb-vpn.uk; do echo "Testing $domain..." curl -I -s https://$domain | head -1 done </pre> === Check Caddy === <pre class="lang-bash"> systemctl status caddy caddy validate --config /etc/caddy/Caddyfile </pre> ---- == Service Dependencies == === Required for All Services === ==== '''OpenVPN Tunnel''': Must be active (tun0 interface up) for Synology-backed services ==== == '''Synology NAS''': Must be connected to VPN (10.8.0.2 reachable) for DSM/Plex == == '''Caddy''': Must be running on the VPS (ports 80/443) == == '''DNS Records''': Must point to VPS IP (87.106.61.62) == === Service-Specific Requirements === * '''Wiki/Werbs-Wiki''': Docker stack at <code>/var/www/wiki.jb/</code> (<code>docker compose ps</code> healthy) * '''DSM''': Synology DSM must be enabled * '''Plex''': Plex Media Server must be running * '''VPS Default''': No dependencies (local files only) ---- == Maintenance Schedule == === Daily === * Check service availability (<code>curl -I</code> on key hostnames) * Review Caddy logs if something fails (<code>journalctl -u caddy</code>) === Weekly === * <code>docker compose ps</code> for wiki and WebApp stacks * Spot-check HTTPS on public hostnames === Monthly === * Backup <code>/etc/caddy/Caddyfile</code> * Review and update documentation === Quarterly === * Verify TLS renewal via Caddy logs * Review firewall rules * Update system packages ---- == Service Statistics == '''Total Services''': 5 web services + 1 SSH port forward '''Edge proxy''': Caddy (<code>/etc/caddy/Caddyfile</code>) '''Configuration''': One Caddyfile for all public hostnames '''Internal Ports Used (VPS)''': 8010, 8011, 8008, 8009, 8080 (phpMyAdmin) '''Internal Ports Used (Synology via VPN)''': 5001, 32400, 22 ---- [[Category:Documentation]] [[Category:Documentation/Services]]
Summary:
Please note that all contributions to jb-vpn.uk Wiki may be edited, altered, or removed by other contributors. If you do not want your writing to be edited mercilessly, then do not submit it here.
You are also promising us that you wrote this yourself, or copied it from a public domain or similar free resource (see
Jb-vpn.uk Wiki:Copyrights
for details).
Do not submit copyrighted work without permission!
Cancel
Editing help
(opens in new window)
Search
Search
Editing
Services:Current Services
Add topic
