fix: update audit with Plane decommission and port 25 resolution
Corrections based on Michael's feedback: - Removed Ghost VPS port 25 warning (already fixed with Breezehost) - Marked Plane stack on TX1 as SCHEDULED FOR REMOVAL - Updated issue #4 from monitoring to decommission status - Noted Plane containers (20 total) scheduled for removal - Updated immediate action items Plane issues (monitor restart loop, space unhealthy) are now expected for deprecated service pending decommission. Signed-off-by: Chronicler #43 <claude@firefrostgaming.com>
This commit is contained in:
Claude
@@ -79,7 +79,7 @@
|
||||
|
||||
**Docker Containers:** 0 (all native services)
|
||||
|
||||
**⚠️ Known Issue:** Inbound port 25 blocked at provider level (Breezehost). Internal mail works, external inbound does not. Requires support ticket to Jon at Breezehost.
|
||||
**Note:** Port 25 issue previously resolved with Breezehost.
|
||||
|
||||
---
|
||||
|
||||
@@ -169,7 +169,7 @@
|
||||
|
||||
**Services Running:**
|
||||
- Pterodactyl Wings - Ports 8080 (HTTP), 2022 (SFTP)
|
||||
- Plane Project Management (tasks.firefrostgaming.com) - Port 8090 → Nginx 80
|
||||
- ~~Plane Project Management (tasks.firefrostgaming.com)~~ - **SCHEDULED FOR REMOVAL**
|
||||
- Firefrost Codex (codex.firefrostgaming.com):
|
||||
- Dify API - Port 5001 (localhost)
|
||||
- Dify Web - Port 3000 (localhost)
|
||||
@@ -180,9 +180,9 @@
|
||||
- Fail2ban - Security
|
||||
- Cockpit - Port 9090
|
||||
|
||||
**Docker Containers:** 35 total
|
||||
**Docker Containers:** 35 total (20 Plane containers scheduled for removal)
|
||||
- **7 Game Servers** (Pterodactyl Wings managed)
|
||||
- **20 Plane Containers** (full stack)
|
||||
- **20 Plane Containers** (full stack) - **SCHEDULED FOR REMOVAL**
|
||||
- **8 Firefrost Codex Containers** (Dify + Qdrant + n8n + Ollama)
|
||||
|
||||
**Game Servers on TX1:**
|
||||
@@ -744,42 +744,29 @@
|
||||
|
||||
## 🚨 ISSUES IDENTIFIED
|
||||
|
||||
### Critical Issues
|
||||
1. **Ghost VPS Port 25 Blocked**
|
||||
- **Impact:** Cannot receive external email
|
||||
- **Workaround:** Internal mail only
|
||||
- **Resolution:** Support ticket to Breezehost (Jon) to unblock 38.68.14.188:25
|
||||
- **Ticket Status:** Not yet submitted
|
||||
|
||||
### Warning Issues
|
||||
2. **Billing VPS Disk Usage: 70%**
|
||||
1. **Billing VPS Disk Usage: 70%**
|
||||
- **Risk:** May hit capacity during high email volume
|
||||
- **Action:** Review Mailcow container logs and volumes
|
||||
- **Timeline:** Monitor weekly, expand if hits 80%
|
||||
|
||||
3. **NC1 Charlotte Disk Usage: 66%**
|
||||
2. **NC1 Charlotte Disk Usage: 66%**
|
||||
- **Risk:** Game worlds growing, may hit capacity
|
||||
- **Action:** Implement world pruning or disk expansion
|
||||
- **Timeline:** Monitor weekly, expand if hits 75%
|
||||
|
||||
4. **Ghost VPS Firewall Not Audited**
|
||||
3. **Ghost VPS Firewall Not Audited**
|
||||
- **Risk:** Unknown firewall state (audit failed due to permissions)
|
||||
- **Action:** Re-run audit as root
|
||||
- **Timeline:** Next maintenance window
|
||||
|
||||
### Monitoring Issues
|
||||
5. **Plane Monitor Container Restarting**
|
||||
- **Server:** TX1 Dallas
|
||||
- **Container:** plane-monitor-1
|
||||
- **Status:** Restarting (1) 6 seconds ago
|
||||
- **Impact:** Unknown - appears to be continuous restart loop
|
||||
- **Action:** Investigate logs, may need container restart or config fix
|
||||
|
||||
6. **Plane Space Container Unhealthy**
|
||||
- **Server:** TX1 Dallas
|
||||
- **Container:** plane-space-1
|
||||
- **Status:** Up 11 days (unhealthy)
|
||||
- **Impact:** Potential feature degradation
|
||||
### Scheduled for Decommission
|
||||
4. **Plane Project Management Stack (TX1 Dallas)**
|
||||
- **Status:** SCHEDULED FOR REMOVAL
|
||||
- **Containers:** 20 containers (plane-monitor-1, plane-space-1, plane-api-1, etc.)
|
||||
- **Reason:** No longer needed
|
||||
- **Action:** Complete decommission and remove all Plane containers
|
||||
- **Note:** Monitor and space containers currently showing issues (expected for deprecated service)
|
||||
- **Action:** Check health endpoint and logs
|
||||
|
||||
---
|
||||
@@ -861,11 +848,10 @@
|
||||
|
||||
### Immediate Actions (Next 7 Days)
|
||||
1. ✅ Complete this audit document
|
||||
2. ⚠️ Submit Breezehost ticket for Ghost VPS port 25
|
||||
3. ⚠️ Re-audit Ghost VPS firewall as root
|
||||
4. ⚠️ Investigate Plane monitor container restart loop
|
||||
5. ⚠️ Check Plane space container health
|
||||
6. ✅ Document port allocation strategy in operations manual
|
||||
2. ✅ ~~Submit Breezehost ticket for Ghost VPS port 25~~ (Already resolved)
|
||||
3. **Decommission Plane stack on TX1 Dallas** - Remove 20 containers, reclaim resources
|
||||
4. ⚠️ Re-audit Ghost VPS firewall as root
|
||||
5. ✅ Document port allocation strategy in operations manual
|
||||
|
||||
### Short-Term Actions (Next 30 Days)
|
||||
7. ⚠️ Review Billing VPS disk usage, plan expansion if needed
|
||||
|
||||
Reference in New Issue
Block a user