docs/04-configuration/UDM_PRO_DEV_CODESPACES_PORT_FORWARD.md

# UDM Pro Port Forward — Dev/Codespaces (76.53.10.40)

**Last Updated:** 2026-02-08  
**Status:** Configured (matches UDM Pro port forwarding)  
**Reference:** [DEV_CODESPACES_76_53_10_40.md](DEV_CODESPACES_76_53_10_40.md)

---

## Port Forwarding Rules (76.53.10.40)

Configured in **UniFi Network** → **Settings** → **Firewall & Security** (Port Forwarding). WAN IP **76.53.10.40** → internal services:

| Rule Name | WAN IP | WAN Port | Forward to IP | Forward Port | Protocol |
|-----------|--------|----------|---------------|--------------|----------|
| NPMplus Dev (HTTP) | 76.53.10.40 | 80 | 192.168.11.170 | 80 | TCP |
| NPMplus Dev (HTTPS) | 76.53.10.40 | 443 | 192.168.11.170 | 443 | TCP |
| NPMplus Dev (Admin) | 76.53.10.40 | 81 | 192.168.11.170 | 81 | TCP |
| Dev VM SSH | 76.53.10.40 | 22 | 192.168.11.59 | 22 | TCP |
| Dev VM Gitea | 76.53.10.40 | 3000 | 192.168.11.59 | 3000 | TCP |

- **192.168.11.170** = fourth NPMplus (VMID 10236); proxy hosts for dev.d-bis.org, gitea.d-bis.org, codespaces.d-bis.org, pve.ml110/r630-01/r630-02.
- **192.168.11.59** = dev VM (VMID 5700); Cursor SSH (22), Gitea (3000).

**Note:** Restrict port 81 (NPMplus Admin) to VPN or IP allowlist if possible.

---

## Verification

From LAN:

```bash
curl -s -o /dev/null -w "%{http_code}" http://192.168.11.170:80/
curl -s -o /dev/null -w "%{http_code}" -k https://192.168.11.170:81/
```

After port forward (from internet): `curl -s -o /dev/null -w "%{http_code}" https://76.53.10.40:443/`
docs: Ledger Live integration, contract deploy learnings, NEXT_STEPS updates - ADD_CHAIN138_TO_LEDGER_LIVE: Ledger form done; public code review repo bis-innovations/LedgerLive; init/push commands - CONTRACT_DEPLOYMENT_RUNBOOK: Chain 138 gas price 1 gwei, 36-addr check, TransactionMirror workaround - CONTRACT_*: AddressMapper, MirrorManager deployed 2026-02-12; 36-address on-chain check - NEXT_STEPS_FOR_YOU: Ledger done; steps completable now (no LAN); run-completable-tasks-from-anywhere - MASTER_INDEX, OPERATOR_OPTIONAL, SMART_CONTRACTS_INVENTORY_SIMPLE: updates - LEDGER_BLOCKCHAIN_INTEGRATION_COMPLETE: bis-innovations/LedgerLive reference Co-authored-by: Cursor <cursoragent@cursor.com> 2026-02-12 15:46:57 -08:00			`# UDM Pro Port Forward — Dev/Codespaces (76.53.10.40)`

			`Last Updated: 2026-02-08`
			`Status: Configured (matches UDM Pro port forwarding)`
			`Reference: [DEV_CODESPACES_76_53_10_40.md](DEV_CODESPACES_76_53_10_40.md)`

			`---`

			`## Port Forwarding Rules (76.53.10.40)`

			`Configured in UniFi Network → Settings → Firewall & Security (Port Forwarding). WAN IP 76.53.10.40 → internal services:`

			`\| Rule Name \| WAN IP \| WAN Port \| Forward to IP \| Forward Port \| Protocol \|`
			`\|-----------\|--------\|----------\|---------------\|--------------\|----------\|`
			`\| NPMplus Dev (HTTP) \| 76.53.10.40 \| 80 \| 192.168.11.170 \| 80 \| TCP \|`
			`\| NPMplus Dev (HTTPS) \| 76.53.10.40 \| 443 \| 192.168.11.170 \| 443 \| TCP \|`
			`\| NPMplus Dev (Admin) \| 76.53.10.40 \| 81 \| 192.168.11.170 \| 81 \| TCP \|`
Sync all local changes: docs, config, scripts, submodule refs, verification evidence Co-authored-by: Cursor <cursoragent@cursor.com> 2026-02-21 15:46:06 -08:00			`\| Dev VM SSH \| 76.53.10.40 \| 22 \| 192.168.11.59 \| 22 \| TCP \|`
			`\| Dev VM Gitea \| 76.53.10.40 \| 3000 \| 192.168.11.59 \| 3000 \| TCP \|`
docs: Ledger Live integration, contract deploy learnings, NEXT_STEPS updates - ADD_CHAIN138_TO_LEDGER_LIVE: Ledger form done; public code review repo bis-innovations/LedgerLive; init/push commands - CONTRACT_DEPLOYMENT_RUNBOOK: Chain 138 gas price 1 gwei, 36-addr check, TransactionMirror workaround - CONTRACT_*: AddressMapper, MirrorManager deployed 2026-02-12; 36-address on-chain check - NEXT_STEPS_FOR_YOU: Ledger done; steps completable now (no LAN); run-completable-tasks-from-anywhere - MASTER_INDEX, OPERATOR_OPTIONAL, SMART_CONTRACTS_INVENTORY_SIMPLE: updates - LEDGER_BLOCKCHAIN_INTEGRATION_COMPLETE: bis-innovations/LedgerLive reference Co-authored-by: Cursor <cursoragent@cursor.com> 2026-02-12 15:46:57 -08:00
			`- 192.168.11.170 = fourth NPMplus (VMID 10236); proxy hosts for dev.d-bis.org, gitea.d-bis.org, codespaces.d-bis.org, pve.ml110/r630-01/r630-02.`
Sync all local changes: docs, config, scripts, submodule refs, verification evidence Co-authored-by: Cursor <cursoragent@cursor.com> 2026-02-21 15:46:06 -08:00			`- 192.168.11.59 = dev VM (VMID 5700); Cursor SSH (22), Gitea (3000).`
docs: Ledger Live integration, contract deploy learnings, NEXT_STEPS updates - ADD_CHAIN138_TO_LEDGER_LIVE: Ledger form done; public code review repo bis-innovations/LedgerLive; init/push commands - CONTRACT_DEPLOYMENT_RUNBOOK: Chain 138 gas price 1 gwei, 36-addr check, TransactionMirror workaround - CONTRACT_*: AddressMapper, MirrorManager deployed 2026-02-12; 36-address on-chain check - NEXT_STEPS_FOR_YOU: Ledger done; steps completable now (no LAN); run-completable-tasks-from-anywhere - MASTER_INDEX, OPERATOR_OPTIONAL, SMART_CONTRACTS_INVENTORY_SIMPLE: updates - LEDGER_BLOCKCHAIN_INTEGRATION_COMPLETE: bis-innovations/LedgerLive reference Co-authored-by: Cursor <cursoragent@cursor.com> 2026-02-12 15:46:57 -08:00
			`Note: Restrict port 81 (NPMplus Admin) to VPN or IP allowlist if possible.`

			`---`

			`## Verification`

			`From LAN:`

			```bash
			`curl -s -o /dev/null -w "%{http_code}" http://192.168.11.170:80/`
			`curl -s -o /dev/null -w "%{http_code}" -k https://192.168.11.170:81/`
			```

			After port forward (from internet): `curl -s -o /dev/null -w "%{http_code}" https://76.53.10.40:443/`