Matt Johnson
880ff09c90
Includes: - Hardware environment reference (Proxmox cluster, VMs, LXCs) - Services inventory with current deployments - Caddy & DNS configuration reference - Runbooks for common deployment procedures Recent additions: - SearXNG deployment (utility CT 102, search.echo6.co) - TOC conversion to Proxmox with cortex VM - Syncthing sync between Contabo and cortex Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
1.5 KiB
Executable file
1.5 KiB
Executable file
Expose Service on Contabo
Prerequisites
- Service running in Docker on Contabo
- Port bound to
127.0.0.1only (never0.0.0.0)
Steps
1. Deploy the service
ssh root@100.64.0.6
mkdir -p /opt/<service>
# Create docker-compose.yml with port bound to 127.0.0.1:<port>
docker compose up -d
2. Add DNS record
# On TOC
source /home/zvx/projects/.ref/credentials
godaddy-dns.py add-a echo6.co <service> 5.189.158.149
dig +short <service>.echo6.co @8.8.8.8 # Verify
3. Add Caddy site block
ssh root@100.64.0.6
nano /etc/caddy/Caddyfile
# Add:
# <service>.echo6.co {
# reverse_proxy 127.0.0.1:<port>
# }
caddy validate --config /etc/caddy/Caddyfile
systemctl reload caddy
4. Add dnsmasq split DNS entry
ssh root@100.64.0.6
nano /etc/dnsmasq.d/tailscale-dns.conf
# Add:
# address=/<service>.echo6.co/100.64.0.6
systemctl restart dnsmasq
5. Verify
# Public
curl -I https://<service>.echo6.co
# Tailscale
dig +short <service>.echo6.co @100.64.0.6 # Should return 100.64.0.6
6. Update docs
- Update
~/.claude/docs/infrastructure/caddy.mdwith new site block - Update
~/.claude/docs/infrastructure/services.mdwith new service - Add credentials to
/home/zvx/projects/.ref/credentialsif applicable
Checklist
□ Docker container running, port on 127.0.0.1 only
□ GoDaddy DNS → 5.189.158.149
□ Caddy site block added and reloaded
□ dnsmasq entry added and restarted
□ Public access verified
□ Tailscale access verified
□ Docs updated