homelab-docs/config-summary.md

# Linode Homelab Configuration Summary (Dec 2025)

## 1. Hardware & OS
- **Provider:** Linode (Akamai) - Chicago (US-ORD)
- **Plan:** Shared CPU 2GB RAM / 50GB NVMe
- **OS:** Ubuntu 24.04 LTS
- **Primary User:** drew (Sudo & Docker groups)
- **Host Security:** Disk Encryption enabled (Platform-managed)

## 2. Storage Architecture
- **Volume:** 20GB Block Storage (Encrypted)
- **Mount Point:** `/mnt/docker_data`
- **Symlink:** `/opt/docker` -> `/mnt/docker_data` (All Docker files live here)
- **Mount Logic:** Persistent via `/etc/fstab` with `noatime,nofail`.

## 3. Docker Networking
- **web_gateway:** External bridge network for Cloudflare Tunnel connectivity.
- **db_network:** External bridge network for centralized database connectivity.

## 4. Active Containers
- **global_postgres:** PostgreSQL 16 (Universal DB).
  - Location: `/opt/docker/global-db`
  - Features: Automatic multi-DB creation via init-script.
- **gitea:** Self-hosted Git.
  - Location: `/opt/docker/gitea`
  - DB: Universal DB (Postgres)
  - Access: Via Cloudflare Tunnel (git.yourdomain.com)
- **cloudflared-tunnel:** Outbound tunnel to Cloudflare Edge.
  - Location: `/opt/docker/cloudflared`

## 5. Security Model
- **Inbound:** Restricted to SSH (Port 22).
- **Web Access:** No open ports (80/443/3000). All traffic enters via outbound Cloudflare Tunnel.