architecture:overview
Table of Contents
TorresVault Architecture Overview
This page documents the updated, high-level architecture of the TorresVault home lab as of 2026, following consolidation into the new PVE-NAS system.
Core components included:
- Proxmox (single-node) + TrueNAS VM
- All storage (HBA β TrueNAS)
- Network (UniFi, VLANs, WiFi, APs, switches)
- Core services (DNS, reverse proxy, Pi-hole, monitoring, media)
- Home Automation (HA, BLE, FPP)
- Future expansion: backup NAS + AI cluster
1. High-Level Diagram
βββββββββββββββββ Internet βββββββββββββββββ β Ting Fiber (WAN1) β ββββββββββββββββββββββ¬ββββββββββββββββββββββ β [ WAN1 @ Port 5 ] β ββββββββββββββββββββββββββββββββββ β UCG Max (192.168.1.1) β β - Router / Firewall β β - DHCP for all VLANs β βββββββ¬ββββββββββββ¬βββββββββββββββ β β VLAN 1 (192.168.1.0/24) β β VLAN 10 (192.168.10.0/24) β β βββββββ΄ββββββββ β β USW-Lite-8 β β β 8-PoE β β β 192.168.1.194 β βββββββ¬ββββββββ β β β βββββββββββββββββββββΌββββββββββββΌβββββββββββββββββββββ β β β β [Hallway AP] [Front-end [Other wired [Downstream 192.168.1.236 devices] devices] uplinks] (WiFi for multiple VLANs via SSIDs) Hallway AP (mesh) βββΊ UDB Switch (192.168.1.98)
βββββββββββ Compute + Storage Layer ββββββββββββ βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ β **PVE-NAS (Primary)** β β Hostname: pve-nas β β Mgmt IP: 192.168.1.153 β β IPMI: 192.168.1.145 β β β β **Hardware** β β - ASRock Rack X570D4U-2L2T β β - AMD Ryzen 7 5700G (8c/16t) β β - 64 GiB DDR4 ECC β β - Boot: 2 Γ NVMe SSD (mirror, Proxmox OS) β β - VM Disks: 2 Γ 1.9 TB Samsung PM863 SSD β β - HBA: 1 Γ LSI (IT Mode) β β β β **Disks Passed Through to TrueNAS VM:** β β - 8 Γ Samsung PM863 1.92 TB SSD (enterprise SATA) β β β β **Networking** β β - Dual 1 GbE β β - Dual 10 GbE (Intel X550) β future storage uplink β βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ β **TrueNAS VM (on PVE-NAS)** β β - Receives all 8 Γ PM863 via HBA passthrough β β - Will expand with future SSDs (goal: 11 drives) β β - Main storage pools for: β β - Immich β β - Jellyfin β β - Nextcloud β β - NPM / Web / internal services β βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
βββββββββββββ Automation & Lighting Layer ββββββββββββββ
VLAN 60 (Torres Family Lights) β 192.168.60.0/24
- FPP Controller: 192.168.60.55
- Kulp controllers / smart receivers
- WLED instances (including wled_car_warning)
==== 2. Network & VLAN Layout ====
The UCG Max serves as the router, firewall, and DHCP server for all networks.
Core UniFi Devices
Gateway
- UCG Max β 192.168.1.1
- WAN β Ting Fiber
- DHCP β all VLANs
- Firewall + inter-VLAN rules
Switches
- USW Flex β 192.168.10.7
- USW Flex 2.5G 5 β 192.168.10.104
- USW-Lite-8-PoE β 192.168.1.194
- UDB Mesh Switch β 192.168.1.98
APs
- Master Bedroom AP β 192.168.10.201
- Hallway AP β 192.168.1.236
VLANs
| Name | VLAN ID | Subnet | DHCP | Notes |
|---|---|---|---|---|
| Default | 1 | 192.168.1.0/24 | Yes | Infra / servers / storage |
| stark_user | 10 | 192.168.10.0/24 | Yes | Laptops / phones |
| stark_IOT | 20 | 192.168.20.0/24 | Yes | Low-trust IoT |
| guest | 30 | 192.168.30.0/24 | Yes | Guest WiFi |
| IOT+ | 50 | 192.168.50.0/24 | Yes | Trusted IoT / bridges |
| Torres Family lights | 60 | 192.168.60.0/24 | Yes | FPP / WLED |
WiFi SSIDs
| SSID | VLAN | Bands | Purpose |
|---|---|---|---|
| stark_IOT | 20 | 2.4 / 5 GHz | IoT |
| stark_user | 10 | 2.4 / 5 GHz | Users |
| stark_IOT+ | 50 | 2.4 / 5 GHz | Bridges / cameras |
3. Proxmox Architecture (Updated 2026)
This replaces the old PVE1/PVE2 cluster.
You now run a single powerful PVE-NAS node.
PVE-NAS
- Hostname: pve-nas
- Mgmt: 192.168.1.153
- IPMI: 192.168.1.145
- CPU: Ryzen 7 5700G (8c/16t)
- RAM: 64 GiB ECC
- Boot: 2 Γ NVMe SSD (ZFS mirror)
- VM Storage: 2 Γ 1.9 TB Samsung PM863 (VMs/OS)
- HBA: 1 Γ LSI (IT mode)
- Passthrough Disks:
- 8 Γ 1.92 TB PM863 SSD (see pic you uploaded)
- Network:
- 2 Γ 1 GbE
- 2 Γ 10 GbE (future storage uplink to Flex 10G or host-to-host)
TrueNAS VM
- Receives full HBA passthrough
- Controls all 8 Γ PM863 SSDs
- Pool growth planned to 11-drive configuration
- Hosts:
- Immich storage
- Jellyfin media
- Nextcloud files
- Backups (PBS target)
4. Core Services (Current Deployment)
- DNS / Filtering
- Pi-hole pair
- VIP: 192.168.1.5
- Reverse Proxy
- NGINX Proxy Manager
- External:
torresvault.com - Internal:
in.torresvault.com
- Storage
- TrueNAS (VM on PVE-NAS)
- Monitoring
- Prometheus
- Grafana
- UniFi metrics
- Proxmox exporter + TrueNAS telemetry
- Automation / Smart Home
- Home Assistant (Pi)
- BLE tracking (Atom Lite / Echo / EP1)
- FPP integration (192.168.60.55)
- WLED (
wled_car_warning)
- Media
- Jellyfin VM
- Photos
- Immich VM
- Data stored fully on TrueNAS
5. Torres Family Lights
- VLAN 60 β 192.168.60.0/24
- FPP β 192.168.60.55
- Mega tree + matrix + roofline + props
- Kulp controllers
- WLED instances (car, garage, etc.)
- HA controls:
- Start/stop show
- Playlist control
- Monitoring + notifications
6. Future Direction (TorresVault 2.0 Roadmap)
- Add backup NAS (mirrored SSD/SAS)
- Expand TrueNAS pool with remaining SSDs
- Add Flex 10G for full 10GbE storage
- Add 2 Γ UM890 Pro mini-PCs for AI / services cluster
- Add GPU node (3060-based Jarvis system)
- Migrate more services to containers
- Fully integrate Home Assistant Voice across home
- Unify monitoring and alerts across entire stack
- Improve full documentation in DokuWiki
architecture/overview.txt Β· Last modified: by 192.168.1.189