This section provides comprehensive network diagrams for the homelab infrastructure, organized into logical sections for easy understanding and navigation.
This diagram shows the high-level architecture, server relationships, and external connectivity of the entire homelab.
graph TB
Internet[Internet]
subgraph "Main Servers"
L4[lucille4<br/>Main Apps]
LS[loose-seal<br/>Monitoring]
NAS[nas02<br/>Media Storage]
L3[lucille3<br/>3D Printing]
end
subgraph "Core Services"
Auth[Authentik<br/>Login System]
Logs[Seq<br/>Log Collection]
end
subgraph "Backups"
B2[Backblaze B2]
Hetzner[Hetzner Storage]
end
Internet --> L4
Internet --> LS
L4 --> Auth
Auth --> L4
Auth --> LS
Auth --> NAS
L4 --> Logs
LS --> Logs
NAS --> Logs
L3 --> Logs
L4 --> B2
L4 --> Hetzner
NAS --> B2
classDef server fill:#e3f2fd,stroke:#1565c0,stroke-width:2px
classDef service fill:#e8f5e9,stroke:#2e7d32,stroke-width:2px
classDef backup fill:#fff3e0,stroke:#f57c00,stroke-width:2px
class L4,LS,NAS,L3 server
class Auth,Logs service
class B2,Hetzner backup
¶ Domain Structure
- speicher.family: Primary domain for lucille4 services (main applications)
- dratspiker.com: Secondary domain for loose-seal services (monitoring/dashboards)
- External Docker Network:
caddy network connects all services across servers
- Reverse Proxy: Caddy instances handle automatic HTTPS and service routing
- Service Discovery: Docker labels enable automatic proxy configuration
- Authentication: Authentik provides SSO across all services and servers
- Monitoring: Centralized logging via Seq, metrics via Grafana
- Backup: Multi-cloud strategy with Backblaze B2 and Hetzner Storage
- Automation: Ansible manages infrastructure, n8n handles workflows
- File Sync: Syncthing enables cross-server file synchronization
- lucille4: Primary application server hosting 25+ business services
- loose-seal: Monitoring hub with dashboards and uptime tracking
- nas02: Media management, storage, and network video recording
- lucille3: 3D printing management and specialized file synchronization