fbda1b4beb
Some checks failed
Deploy to Phoenix / deploy (push) Has been cancelled
- ADD_CHAIN138_TO_LEDGER_LIVE: Ledger form done; public code review repo bis-innovations/LedgerLive; init/push commands - CONTRACT_DEPLOYMENT_RUNBOOK: Chain 138 gas price 1 gwei, 36-addr check, TransactionMirror workaround - CONTRACT_*: AddressMapper, MirrorManager deployed 2026-02-12; 36-address on-chain check - NEXT_STEPS_FOR_YOU: Ledger done; steps completable now (no LAN); run-completable-tasks-from-anywhere - MASTER_INDEX, OPERATOR_OPTIONAL, SMART_CONTRACTS_INVENTORY_SIMPLE: updates - LEDGER_BLOCKCHAIN_INTEGRATION_COMPLETE: bis-innovations/LedgerLive reference Co-authored-by: Cursor <cursoragent@cursor.com>
203 lines
4.5 KiB
Markdown
203 lines
4.5 KiB
Markdown
# Nginx Public IP Configuration - Complete
|
|
|
|
**Last Updated:** 2026-01-31
|
|
**Document Version:** 1.0
|
|
**Status:** Active Documentation
|
|
|
|
---
|
|
|
|
**Date**: 2026-01-09
|
|
**Status**: ✅ Complete
|
|
**Public IP**: `76.53.10.36`
|
|
**Internal IP**: `192.168.11.26`
|
|
**Router**: UDM Pro
|
|
|
|
---
|
|
|
|
## Configuration Summary
|
|
|
|
### ✅ Port Forwarding (UDM Pro)
|
|
|
|
**Rule 1: HTTPS (Port 443)**
|
|
- **Public IP**: `76.53.10.36:443`
|
|
- **Internal IP**: `192.168.11.26:443`
|
|
- **Protocol**: TCP
|
|
- **Status**: ✅ Manually configured
|
|
|
|
**Rule 2: HTTP (Port 80)**
|
|
- **Public IP**: `76.53.10.36:80`
|
|
- **Internal IP**: `192.168.11.26:80`
|
|
- **Protocol**: TCP
|
|
- **Status**: ✅ Manually configured
|
|
|
|
### ✅ Nginx Proxy Manager (VMID 105)
|
|
|
|
- **Container**: nginxproxymanager
|
|
- **Internal IP**: `192.168.11.26/24`
|
|
- **Host**: r630-01 (192.168.11.11)
|
|
- **Status**: ✅ Running
|
|
- **Web UI**: `http://192.168.11.26:81`
|
|
|
|
---
|
|
|
|
## DNS Configuration
|
|
|
|
### ✅ Cloudflare DNS Records
|
|
|
|
All DNS records have been updated to point to `76.53.10.36`:
|
|
|
|
**sankofa.nexus zone:**
|
|
- `sankofa.nexus` → `76.53.10.36`
|
|
- `www.sankofa.nexus` → `76.53.10.36`
|
|
- `phoenix.sankofa.nexus` → `76.53.10.36`
|
|
- `www.phoenix.sankofa.nexus` → `76.53.10.36`
|
|
- `the-order.sankofa.nexus` → `76.53.10.36`
|
|
|
|
**d-bis.org zone:**
|
|
- `rpc-http-pub.d-bis.org` → `76.53.10.36`
|
|
- `rpc-ws-pub.d-bis.org` → `76.53.10.36`
|
|
- `rpc-http-prv.d-bis.org` → `76.53.10.36`
|
|
- `rpc-ws-prv.d-bis.org` → `76.53.10.36`
|
|
- `explorer.d-bis.org` → `76.53.10.36`
|
|
- `dbis-admin.d-bis.org` → `76.53.10.36`
|
|
- `dbis-api.d-bis.org` → `76.53.10.36`
|
|
- `dbis-api-2.d-bis.org` → `76.53.10.36`
|
|
- `secure.d-bis.org` → `76.53.10.36`
|
|
|
|
**mim4u.org zone:**
|
|
- `mim4u.org` → `76.53.10.36`
|
|
- `www.mim4u.org` → `76.53.10.36`
|
|
- `secure.mim4u.org` → `76.53.10.36`
|
|
- `training.mim4u.org` → `76.53.10.36`
|
|
|
|
**defi-oracle.io zone:**
|
|
- `rpc.public-0138.defi-oracle.io` → `76.53.10.36`
|
|
|
|
**All records are configured with:**
|
|
- **Proxy Mode**: DNS Only (gray cloud)
|
|
- **TTL**: 1 (auto)
|
|
|
|
---
|
|
|
|
## Architecture
|
|
|
|
```
|
|
Internet
|
|
↓
|
|
Cloudflare DNS (76.53.10.36)
|
|
↓
|
|
UDM Pro Port Forwarding (76.53.10.36:80/443)
|
|
↓
|
|
Nginx Proxy Manager (192.168.11.26:80/443)
|
|
↓
|
|
Internal Services (based on hostname)
|
|
```
|
|
|
|
---
|
|
|
|
## Verification
|
|
|
|
### Test DNS Resolution
|
|
|
|
```bash
|
|
# Test DNS resolution
|
|
dig sankofa.nexus +short
|
|
dig explorer.d-bis.org +short
|
|
dig mim4u.org +short
|
|
|
|
# All should return: 76.53.10.36
|
|
```
|
|
|
|
### Test Connectivity
|
|
|
|
```bash
|
|
# Test HTTP connectivity
|
|
curl -I http://76.53.10.36
|
|
|
|
# Test HTTPS connectivity
|
|
curl -I https://76.53.10.36
|
|
|
|
# Test with domain (after DNS propagation)
|
|
curl -I http://explorer.d-bis.org
|
|
curl -I https://explorer.d-bis.org
|
|
```
|
|
|
|
### Test Nginx Routing
|
|
|
|
```bash
|
|
# Test internal Nginx routing
|
|
curl -H "Host: explorer.d-bis.org" http://192.168.11.26/
|
|
|
|
# Test RPC endpoint
|
|
curl -H "Host: rpc-http-pub.d-bis.org" http://192.168.11.26/ \
|
|
-X POST -H "Content-Type: application/json" \
|
|
-d '{"jsonrpc":"2.0","method":"eth_chainId","params":[],"id":1}'
|
|
```
|
|
|
|
---
|
|
|
|
## Public IP Block #1 Reference
|
|
|
|
| IP Address | Purpose | Status |
|
|
|------------|---------|--------|
|
|
| 76.53.10.33 | Gateway | ✅ Reserved |
|
|
| 76.53.10.34 | UDM Pro (edge; replaced ER605) | ✅ Active |
|
|
| 76.53.10.35 | Available | Available |
|
|
| **76.53.10.36** | **Nginx Proxy (NAT)** | ✅ **In Use** |
|
|
| 76.53.10.37-46 | Available | Available |
|
|
| 76.53.10.47 | Broadcast | Reserved |
|
|
|
|
---
|
|
|
|
## Changes from Previous Configuration
|
|
|
|
### Previous Setup (ER605)
|
|
- **Public IP**: `76.53.10.35`
|
|
- **Router**: ER605
|
|
- **Status**: Replaced
|
|
|
|
### Current Setup (UDM Pro)
|
|
- **Public IP**: `76.53.10.36`
|
|
- **Router**: UDM Pro
|
|
- **Internal IP**: `192.168.11.26` (confirmed)
|
|
- **Status**: ✅ Active
|
|
|
|
---
|
|
|
|
## Maintenance
|
|
|
|
### Update DNS Records
|
|
|
|
To update all DNS records to a new IP:
|
|
|
|
```bash
|
|
cd /home/intlc/projects/proxmox
|
|
PUBLIC_IP=76.53.10.36 bash scripts/update-all-dns-to-public-ip.sh
|
|
```
|
|
|
|
### Verify Nginx Status
|
|
|
|
```bash
|
|
# Check container status
|
|
ssh root@192.168.11.11 "pct status 105"
|
|
|
|
# Check Nginx configuration
|
|
ssh root@192.168.11.11 "pct exec 105 -- nginx -t"
|
|
|
|
# View Nginx logs
|
|
ssh root@192.168.11.11 "pct exec 105 -- tail -f /data/logs/fallback_error.log"
|
|
```
|
|
|
|
---
|
|
|
|
## Related Documentation
|
|
|
|
- **[CENTRAL_NGINX_ROUTING_SETUP.md](../05-network/CENTRAL_NGINX_ROUTING_SETUP.md)** - Central Nginx routing architecture
|
|
- **[CLOUDFLARE_ROUTING_MASTER.md](../05-network/CLOUDFLARE_ROUTING_MASTER.md)** - Cloudflare routing master reference
|
|
- **[NETWORK_ARCHITECTURE.md](../02-architecture/NETWORK_ARCHITECTURE.md)** - Complete network architecture
|
|
|
|
---
|
|
|
|
**Last Updated**: 2026-01-09
|
|
**Configuration Status**: ✅ Complete
|