commit 0059631aa6be064da578d141c5fdfec7499b5f42 Author: Alvis Date: Sun Mar 8 07:17:30 2026 +0000 Initial README: Juris server config (LXD, network, storage, Xray) Co-Authored-By: Claude Sonnet 4.6 diff --git a/README.md b/README.md new file mode 100644 index 0000000..68478cc --- /dev/null +++ b/README.md @@ -0,0 +1,124 @@ +# Juris Server + +Documentation and configuration reference for the Juris remote server. + +## Hardware & OS + +- **OS**: Ubuntu 24.04.3 LTS +- **Kernel**: 6.8.0-100-generic +- **Public IP**: `83.99.190.32` +- **LAN IP**: `192.168.54.230/24` (via `eno1`, DHCP from router at `192.168.54.254`) + +## Storage Layout + +| Disk | Size | VG | LV | Mount | Use | +|------|------|----|----|-------|-----| +| `sda` (old SSD) | 223GB | `oldssdg` | `oldssd` | `/mnt/hdd2` | spare/unused | +| `sdb` (HDD) | 931GB | `ubuntu-vg` | `ubuntu-lv` | `/` (OS) | 100GB | +| `sdb` (HDD) | 931GB | `ubuntu-vg` | `data` | `/mnt/data` | 828GB | + +### /mnt/data contents + +| Path | Size | Purpose | +|------|------|---------| +| `/mnt/data/shared` | 408GB | File sharing (copyparty) | +| `/mnt/data/copyparty` | — | copyparty config/state | + +## Network + +- **Interface**: `eno1` (MAC `8c:dc:d4:40:0d:96`) +- **IP**: `192.168.54.230/24`, gateway `192.168.54.254` (DHCP) +- **Public access**: via router NAT (port forwarding to `192.168.54.230`) + +### Port Forwarding (router → Juris) + +| External Port | Internal | Service | +|--------------|----------|---------| +| 443 | → LXD proxy → xray container | Xray VPN (VLESS+XHTTP+Reality) | +| 16627 | → LXD proxy → xray container | x-ui admin panel | +| 22 | 22 | SSH | + +## LXD + +LXD manages the `xray` container. The host forwards ports 443 and 16627 into the container via LXD proxy devices. + +### Storage pool + +| Name | Driver | Source | +|------|--------|--------| +| `default` | dir | `/var/snap/lxd/common/lxd/storage-pools/default` | + +### Network + +| Name | Type | Subnet | +|------|------|--------| +| `lxdbr0` | bridge (managed) | `10.187.159.1/24` | + +### Container: xray + +| Setting | Value | +|---------|-------| +| Image | Ubuntu 24.04 LTS (noble), amd64 | +| IP | `10.187.159.41` (via `lxdbr0`) | +| State | RUNNING | +| Profile | default | + +**Proxy devices** (host → container): + +| Device | Listen | Connect | +|--------|--------|---------| +| `proxy-443` | `tcp:0.0.0.0:443` | `tcp:127.0.0.1:443` | +| `proxy-16627` | `tcp:0.0.0.0:16627` | `tcp:127.0.0.1:16627` | + +**Services inside xray container**: + +| Service | Description | +|---------|-------------| +| `x-ui` | Xray panel — manages Xray config and inbounds | +| Xray (via x-ui) | VLESS+XHTTP+Reality inbound on port 443 | + +### Useful commands + +```bash +# Enter xray container +lxc exec xray -- bash + +# Check xray config +lxc exec xray -- cat /usr/local/x-ui/bin/config.json + +# Restart x-ui (and xray) +lxc exec xray -- systemctl restart x-ui + +# View x-ui logs +lxc exec xray -- journalctl -u x-ui -f +``` + +## Xray VPN Configuration + +See [ai-xray repo](http://localhost:3000/alvis/ai-xray) for full benchmark and config details. + +**Active config**: VLESS + XHTTP + Reality + +| Setting | Value | +|---------|-------| +| Protocol | VLESS | +| Transport | XHTTP | +| Security | Reality | +| Reality destination | `www.delfi.lv:443` | +| Allowed SNIs | `www.delfi.lv`, `www.lmt.lv`, `www.inbox.lv`, `e-klase.lv` | +| XHTTP path | `/xt-6036d37d` | +| Port | 443 | + +x-ui panel: `https://share.alogins.net:16627/gBdsRLtVZdgZ63wmVR/` + +## Monitoring + +Zabbix agent 2 running on the host in active mode → reports to `zb.alogins.net:10051`. +Zabbix host: **Juris Server** (template: Linux by Zabbix agent active). + +## Access + +| Method | Details | +|--------|---------| +| SSH | `ssh juris@83.99.190.32` (key auth) | +| sudo | password required (`VitaIeva2A.`) |