The heart of the homelab infrastructure, running 40+ production services with centralized authentication, workflow automation, and AI capabilities.
## Service health overview
docker ps --format "table {{.Names}}\t{{.Status}}\t{{.Ports}}"
## Resource usage
df -h
docker system df
## Update all services
docker compose pull && docker compose up -d
## View service logs
docker logs -f <service-name>
## Restart specific service
docker compose restart <service-name>
auth.speicher.family - Authentik SSO
paperless.speicher.family - Document Management
n8n.speicher.family - Workflow Automation
ollama.speicher.family - AI Language Models
grafana.speicher.family - Monitoring Dashboards
- 🔐 Authentik SSO - Centralized authentication and identity management
- 📄 Paperless-ngx - Document processing with OCR and AI capabilities
- 🔄 n8n Workflows - Business process automation and integrations
- 🤖 AI Services - Ollama LLMs, MetaMCP, and vector databases
- 📊 Monitoring - Grafana dashboards, Dozzle logs, Seq aggregation
- 🐳 Docker Compose - 40+ containerized services
- 🌐 Caddy Proxy - Automatic HTTPS and reverse proxy
- 🔒 Security Hardening - Docker socket proxy, network segmentation
- 💾 Automated Backups - Daily backups with retention policies
- 📈 Resource Monitoring - Real-time performance tracking
- 💻 Code-Server - Browser-based VS Code
- 📊 Jupyter Hub - Data science and development notebooks
- 🗄️ Database Access - PostgreSQL, MongoDB, Redis interfaces
- 🔧 Utilities - Development and administration tools
¶ Operations & Maintenance
- CPU: Intel Core i7 (8 cores)
- Memory: 32GB DDR4
- Storage: 2TB NVMe SSD + 4TB HDD
- Network: Gigabit Ethernet + Tailscale VPN
- Primary IP: 192.168.1.101
- Tailscale VPN: 100.83.87.19
- Domain: *.speicher.family
- Proxy: Caddy with automatic HTTPS
- Orchestration: Docker Compose v2
- Networks: Caddy (public), Internal (private)
- Volumes: Named volumes for persistence
- Security: Non-root containers, network isolation
- Authentik: SSO provider and identity management
- LDAP: Directory services integration
- Paperless-ngx: Document OCR and management
- Mealie: Recipe and meal planning
- Wiki.js: Knowledge base and documentation
- n8n: Visual workflow automation
- Home Assistant: IoT and device automation
- Cron: Scheduled task management
- Ollama: Large language model serving
- MetaMCP: AI agent coordination
- Vector Databases: Embeddings and semantic search
- Grafana: Metrics visualization
- Dozzle: Real-time container logs
- Seq: Structured log aggregation
- cAdvisor: Container resource monitoring
- Code-Server: Browser-based IDE
- Jupyter: Data science notebooks
- Git: Version control and collaboration
- Uptime: 99.9% availability target
- Services: 40+ containers running
- Storage: 60% capacity utilization
- Memory: 24GB allocated to containers
- Response Time: <200ms for most services
- CPU Usage: 40-60% average load
- Network: Sub-5ms latency on local network
- Backup: Daily automated backups to NAS02
- Container Images: Regular cleanup and pruning
- Log Rotation: Automated log management
- Backup Retention: 30-day local, 90-day offsite
- Volume Management: Persistent data organization
- Memory Limits: Per-container resource constraints
- CPU Allocation: Balanced across service tiers
- Network QoS: Traffic prioritization
- Disk I/O: SSD for databases, HDD for bulk storage
## Restart all services
docker compose down && docker compose up -d
## Restore from backup
./scripts/restore-backup.sh <backup-date>
## Emergency service isolation
docker network disconnect caddy <service-name>
- SSH Access: Via Tailscale if local network fails
- Console Access: Direct server access for critical issues
- Backup Recovery: Restore from NAS02 or cloud backups
- Service Isolation: Network segmentation for problem containment
- NAS02: Backup storage and media sharing
- Loose-seal: Monitoring data aggregation
- Lucille5: Development environment coordination
- Family Devices: SSO and service access
- Cloudflare: DNS and external access
- 1Password: Secret and credential management
- GitHub: Code repositories and CI/CD
- Cloud Backup: Offsite backup storage