From b70ea227974e42e94182d2bea20e1d3d8885181a Mon Sep 17 00:00:00 2001 From: Claude Date: Fri, 27 Mar 2026 16:29:08 +0000 Subject: [PATCH] fix: update audit with Plane decommission and port 25 resolution Corrections based on Michael's feedback: - Removed Ghost VPS port 25 warning (already fixed with Breezehost) - Marked Plane stack on TX1 as SCHEDULED FOR REMOVAL - Updated issue #4 from monitoring to decommission status - Noted Plane containers (20 total) scheduled for removal - Updated immediate action items Plane issues (monitor restart loop, space unhealthy) are now expected for deprecated service pending decommission. Signed-off-by: Chronicler #43 --- docs/infrastructure/network-audit-2026.md | 50 ++++++++--------------- 1 file changed, 18 insertions(+), 32 deletions(-) diff --git a/docs/infrastructure/network-audit-2026.md b/docs/infrastructure/network-audit-2026.md index c278c8a..37adbd3 100644 --- a/docs/infrastructure/network-audit-2026.md +++ b/docs/infrastructure/network-audit-2026.md @@ -79,7 +79,7 @@ **Docker Containers:** 0 (all native services) -**⚠️ Known Issue:** Inbound port 25 blocked at provider level (Breezehost). Internal mail works, external inbound does not. Requires support ticket to Jon at Breezehost. +**Note:** Port 25 issue previously resolved with Breezehost. --- @@ -169,7 +169,7 @@ **Services Running:** - Pterodactyl Wings - Ports 8080 (HTTP), 2022 (SFTP) -- Plane Project Management (tasks.firefrostgaming.com) - Port 8090 → Nginx 80 +- ~~Plane Project Management (tasks.firefrostgaming.com)~~ - **SCHEDULED FOR REMOVAL** - Firefrost Codex (codex.firefrostgaming.com): - Dify API - Port 5001 (localhost) - Dify Web - Port 3000 (localhost) @@ -180,9 +180,9 @@ - Fail2ban - Security - Cockpit - Port 9090 -**Docker Containers:** 35 total +**Docker Containers:** 35 total (20 Plane containers scheduled for removal) - **7 Game Servers** (Pterodactyl Wings managed) -- **20 Plane Containers** (full stack) +- **20 Plane Containers** (full stack) - **SCHEDULED FOR REMOVAL** - **8 Firefrost Codex Containers** (Dify + Qdrant + n8n + Ollama) **Game Servers on TX1:** @@ -744,42 +744,29 @@ ## 🚨 ISSUES IDENTIFIED -### Critical Issues -1. **Ghost VPS Port 25 Blocked** - - **Impact:** Cannot receive external email - - **Workaround:** Internal mail only - - **Resolution:** Support ticket to Breezehost (Jon) to unblock 38.68.14.188:25 - - **Ticket Status:** Not yet submitted - ### Warning Issues -2. **Billing VPS Disk Usage: 70%** +1. **Billing VPS Disk Usage: 70%** - **Risk:** May hit capacity during high email volume - **Action:** Review Mailcow container logs and volumes - **Timeline:** Monitor weekly, expand if hits 80% -3. **NC1 Charlotte Disk Usage: 66%** +2. **NC1 Charlotte Disk Usage: 66%** - **Risk:** Game worlds growing, may hit capacity - **Action:** Implement world pruning or disk expansion - **Timeline:** Monitor weekly, expand if hits 75% -4. **Ghost VPS Firewall Not Audited** +3. **Ghost VPS Firewall Not Audited** - **Risk:** Unknown firewall state (audit failed due to permissions) - **Action:** Re-run audit as root - **Timeline:** Next maintenance window -### Monitoring Issues -5. **Plane Monitor Container Restarting** - - **Server:** TX1 Dallas - - **Container:** plane-monitor-1 - - **Status:** Restarting (1) 6 seconds ago - - **Impact:** Unknown - appears to be continuous restart loop - - **Action:** Investigate logs, may need container restart or config fix - -6. **Plane Space Container Unhealthy** - - **Server:** TX1 Dallas - - **Container:** plane-space-1 - - **Status:** Up 11 days (unhealthy) - - **Impact:** Potential feature degradation +### Scheduled for Decommission +4. **Plane Project Management Stack (TX1 Dallas)** + - **Status:** SCHEDULED FOR REMOVAL + - **Containers:** 20 containers (plane-monitor-1, plane-space-1, plane-api-1, etc.) + - **Reason:** No longer needed + - **Action:** Complete decommission and remove all Plane containers + - **Note:** Monitor and space containers currently showing issues (expected for deprecated service) - **Action:** Check health endpoint and logs --- @@ -861,11 +848,10 @@ ### Immediate Actions (Next 7 Days) 1. ✅ Complete this audit document -2. ⚠️ Submit Breezehost ticket for Ghost VPS port 25 -3. ⚠️ Re-audit Ghost VPS firewall as root -4. ⚠️ Investigate Plane monitor container restart loop -5. ⚠️ Check Plane space container health -6. ✅ Document port allocation strategy in operations manual +2. ✅ ~~Submit Breezehost ticket for Ghost VPS port 25~~ (Already resolved) +3. **Decommission Plane stack on TX1 Dallas** - Remove 20 containers, reclaim resources +4. ⚠️ Re-audit Ghost VPS firewall as root +5. ✅ Document port allocation strategy in operations manual ### Short-Term Actions (Next 30 Days) 7. ⚠️ Review Billing VPS disk usage, plan expansion if needed