===== TorresVault Architecture Overview =====
This page documents the updated, high-level architecture of the **TorresVault** home lab as of **2026**, following consolidation into the new **PVE-NAS** system.
Core components included:
* Proxmox (single-node) + TrueNAS VM
* All storage (HBA → TrueNAS)
* Network (UniFi, VLANs, WiFi, APs, switches)
* Core services (DNS, reverse proxy, Pi-hole, monitoring, media)
* Home Automation (HA, BLE, FPP)
* Future expansion: backup NAS + AI cluster
----
==== 1. High-Level Diagram ====
┌──────────────── Internet ────────────────┐
│ Ting Fiber (WAN1) │
└────────────────────┬─────────────────────┘
│
[ WAN1 @ Port 5 ]
│
┌────────────────────────────────┐
│ UCG Max (192.168.1.1) │
│ - Router / Firewall │
│ - DHCP for all VLANs │
└─────┬───────────┬──────────────┘
│ │
VLAN 1 (192.168.1.0/24) │ │ VLAN 10 (192.168.10.0/24)
│ │
┌─────┴───────┐ │
│ USW-Lite-8 │ │
│ 8-PoE │ │
│ 192.168.1.194 │
└─────┬───────┘ │
│ │
┌───────────────────┼───────────┼────────────────────┐
│ │ │ │
[Hallway AP] [Front-end [Other wired [Downstream
192.168.1.236 devices] devices] uplinks]
(WiFi for multiple
VLANs via SSIDs)
Hallway AP (mesh) ──► UDB Switch (192.168.1.98)
┌────────── Compute + Storage Layer ───────────┐
┌─────────────────────────────────────────────────────────┐
│ **PVE-NAS (Primary)** │
│ Hostname: pve-nas │
│ Mgmt IP: 192.168.1.153 │
│ IPMI: 192.168.1.145 │
│ │
│ **Hardware** │
│ - ASRock Rack X570D4U-2L2T │
│ - AMD Ryzen 7 5700G (8c/16t) │
│ - 64 GiB DDR4 ECC │
│ - Boot: 2 × NVMe SSD (mirror, Proxmox OS) │
│ - VM Disks: 2 × 1.9 TB Samsung PM863 SSD │
│ - HBA: 1 × LSI (IT Mode) │
│ │
│ **Disks Passed Through to TrueNAS VM:** │
│ - 8 × Samsung PM863 1.92 TB SSD (enterprise SATA) │
│ │
│ **Networking** │
│ - Dual 1 GbE │
│ - Dual 10 GbE (Intel X550) – future storage uplink │
└─────────────────────────────────────────────────────────┘
┌─────────────────────────────────────────────────────────┐
│ **TrueNAS VM (on PVE-NAS)** │
│ - Receives all 8 × PM863 via HBA passthrough │
│ - Will expand with future SSDs (goal: 11 drives) │
│ - Main storage pools for: │
│ - Immich │
│ - Jellyfin │
│ - Nextcloud │
│ - NPM / Web / internal services │
└─────────────────────────────────────────────────────────┘
┌──────────── Automation & Lighting Layer ─────────────┐
VLAN 60 (Torres Family Lights) → 192.168.60.0/24
- FPP Controller: 192.168.60.55
- Kulp controllers / smart receivers
- WLED instances (including wled_car_warning)
==== ==== 2. Network & VLAN Layout ==== ====
The **UCG Max** serves as the router, firewall, and DHCP server for all networks.
=== Core UniFi Devices ===
**Gateway**
* UCG Max – 192.168.1.1
* WAN → Ting Fiber
* DHCP → all VLANs
* Firewall + inter-VLAN rules
**Switches**
* USW Flex – 192.168.10.7
* USW Flex 2.5G 5 – 192.168.10.104
* USW-Lite-8-PoE – 192.168.1.194
* UDB Mesh Switch – 192.168.1.98
**APs**
* Master Bedroom AP – 192.168.10.201
* Hallway AP – 192.168.1.236
=== VLANs ===
^ Name ^ VLAN ID ^ Subnet ^ DHCP ^ Notes ^
| Default | 1 | 192.168.1.0/24 | Yes | Infra / servers / storage |
| stark_user | 10 | 192.168.10.0/24 | Yes | Laptops / phones |
| stark_IOT | 20 | 192.168.20.0/24 | Yes | Low-trust IoT |
| guest | 30 | 192.168.30.0/24 | Yes | Guest WiFi |
| IOT+ | 50 | 192.168.50.0/24 | Yes | Trusted IoT / bridges |
| Torres Family lights | 60 | 192.168.60.0/24 | Yes | FPP / WLED |
=== WiFi SSIDs ===
^ SSID ^ VLAN ^ Bands ^ Purpose ^
| stark_IOT | 20 | 2.4 / 5 GHz | IoT |
| stark_user | 10 | 2.4 / 5 GHz | Users |
| stark_IOT+ | 50 | 2.4 / 5 GHz | Bridges / cameras |
==== 3. Proxmox Architecture (Updated 2026) ====
**This replaces the old PVE1/PVE2 cluster.\\ You now run a single powerful PVE-NAS node.**
=== PVE-NAS ===
* Hostname: **pve-nas**
* Mgmt: **192.168.1.153**
* IPMI: **192.168.1.145**
* CPU: **Ryzen 7 5700G (8c/16t)**
* RAM: **64 GiB ECC**
* Boot: **2 × NVMe SSD (ZFS mirror)**
* VM Storage: **2 × 1.9 TB Samsung PM863 (VMs/OS)**
* HBA: **1 × LSI (IT mode)**
* Passthrough Disks:
* **8 × 1.92 TB PM863 SSD** (see pic you uploaded)
* Network:
* 2 × 1 GbE
* 2 × 10 GbE (future storage uplink to Flex 10G or host-to-host)
=== TrueNAS VM ===
* Receives full HBA passthrough
* Controls all 8 × PM863 SSDs
* Pool growth planned to 11-drive configuration
* Hosts:
* Immich storage
* Jellyfin media
* Nextcloud files
* Backups (PBS target)
----
==== 4. Core Services (Current Deployment) ====
* **DNS / Filtering**
* Pi-hole pair
* VIP: **192.168.1.5**
* **Reverse Proxy**
* NGINX Proxy Manager
* External: ''torresvault.com''
* Internal: ''in.torresvault.com''
* **Storage**
* TrueNAS (VM on PVE-NAS)
* **Monitoring**
* Prometheus
* Grafana
* UniFi metrics
* Proxmox exporter + TrueNAS telemetry
* **Automation / Smart Home**
* Home Assistant (Pi)
* BLE tracking (Atom Lite / Echo / EP1)
* FPP integration (192.168.60.55)
* WLED (''wled_car_warning'')
* **Media**
* Jellyfin VM
* **Photos**
* Immich VM
* Data stored fully on TrueNAS
----
==== 5. Torres Family Lights ====
* VLAN 60 – 192.168.60.0/24
* FPP – 192.168.60.55
* Mega tree + matrix + roofline + props
* Kulp controllers
* WLED instances (car, garage, etc.)
* HA controls:
* Start/stop show
* Playlist control
* Monitoring + notifications
----
==== 6. Future Direction (TorresVault 2.0 Roadmap) ====
* Add backup NAS (mirrored SSD/SAS)
* Expand TrueNAS pool with remaining SSDs
* Add Flex 10G for full 10GbE storage
* Add 2 × UM890 Pro mini-PCs for AI / services cluster
* Add GPU node (3060-based Jarvis system)
* Migrate more services to containers
* Fully integrate Home Assistant Voice across home
* Unify monitoring and alerts across entire stack
* Improve full documentation in DokuWiki