Infrastructure

l# Infrastructure Nodes

Tailscale Network: All nodes connected via Tailscale mesh VPN
Network Range: 100.64.0.0/10 (CGNAT)

---

Node Registry

Node	Type	Tailscale IP	Purpose	Status
MacBook Air	Laptop	(this machine)	Primary dev	✅ Active
Lenovo Legion	Laptop/Fedora	100.81.208.117	Jump host, sync	✅ Active
VPS1	VPS	TBD	OpenClaw gateway	✅ Monitored
[VPS2]	VPS	TBD	TBD	⏳ Not set up
[VPS3]	VPS	TBD	TBD	⏳ Not set up

---

MacBook Air (This Machine)

Type: Primary development workstation
OS: macOS
User: nosos
Location: Local

Paths

Purpose	Path
OpenClaw workspace	~/.openclaw/workspace/
Public web	~/Public/
Obsidian vault	~/Documents/Obsidian Vault/
Logs	~/.openclaw/logs/

Services

Service	Status	Notes
OpenClaw gateway	Local only	Port 18789
Auto-sync (Core)	✅ Running	Daily 2 AM
Auto-sync (Memory)	✅ Running	Every 15 min
VPS monitor	✅ Running	Hourly checks

---

Legion (Fedora)

Type: Desktop / Jump host
OS: Fedora Linux
Tailscale IP: 100.81.208.117
User: nosos
Purpose: SSH jump host, settings sync target

Access

# Direct via Tailscale
ssh [email protected]
 
# From Mac (if SSH config set up)
ssh legion

Paths

Purpose	Path
OpenClaw config	~/.openclaw/
Sync script	~/.openclaw/workspace/sync_openclaw_settings.sh

Services

Service	Status	Notes
OpenClaw	⏳ TBD	Can run gateway or agent
SSH	✅	Jump host for VPS

Notes

• Used as jump host to reach VPS1
• Has SSH keys for VPS access
• Can receive settings sync from Mac

---

VPS1

Type: Virtual Private Server
Provider: TBD
Tailscale IP: TBD
Public IP: TBD
Purpose: OpenClaw gateway (public access)

Access

# Via Legion jump host
ssh -J fedora vps1
 
# Direct (if keys set up)
ssh user@vps1

Endpoints

Type	Address	Notes
Gateway (local)	http://127.0.0.1:18789	Internal only
Gateway (Tailscale)	http://[tailscale-ip]:18789	Mesh network
Public	TBD	If exposed

Services

Service	Status	Port	Notes
OpenClaw gateway	✅ Monitored	18789	Auto-restart enabled
Tailscale	TBD	-	Mesh VPN

Monitoring

• Check script: ~/.openclaw/workspace/vps-gateway-check.sh
• Frequency: Hourly
• Log: /tmp/vps-gateway-monitor.log
• Auto-restart: Yes (via Legion)

---

[VPS2 - Template]

Type: Virtual Private Server
Provider: TBD
Tailscale IP: TBD
Public IP: TBD
Purpose: TBD

Access

ssh user@vps2

Endpoints

Type	Address	Notes

Services

Service	Status	Port	Notes

---

[Lenovo - Template]

Type: Laptop/Server
OS: TBD
Tailscale IP: TBD
Purpose: TBD

Access

ssh user@lenovo

Paths

Purpose	Path

Services

Service	Status	Notes

---

Tailscale Network

Network: 100.64.0.0/10
MagicDNS: Enabled (optional)
ACLs: Default (all nodes can reach each other)

Known IPs

Node	Tailscale IP	Last Seen
Legion	100.81.208.117	2026-02-22
MacBook Air	(dynamic)	Current
VPS1	TBD	TBD

Commands

# Check Tailscale status
tailscale status
 
# List all nodes
tailscale status --json | jq '.Peer[] | .HostName, .TailscaleIPs'
 
# SSH via Tailscale
tailscale ssh user@hostname

---

SSH Config

Location: ~/.ssh/config

# Legion (Fedora jump host)
Host legion
    HostName 100.81.208.117
    User nosos
    IdentityFile ~/.ssh/id_ed25519

# VPS1 via Legion
Host vps1
    HostName [vps1-tailscale-ip or public-ip]
    User [username]
    ProxyJump legion
    IdentityFile ~/.ssh/id_ed25519

# VPS2
Host vps2
    HostName [vps2-ip]
    User [username]
    ProxyJump legion

# Lenovo
Host lenovo
    HostName [lenovo-tailscale-ip]
    User [username]

---

Quick Commands

Check All Nodes

# Ping all Tailscale nodes
tailscale ping legion
tailscale ping vps1

Check VPS Gateway

# From Mac (via Legion)
ssh legion "ssh vps1 'curl -s http://127.0.0.1:18789/status'"
 
# Direct (if on Tailscale)
curl http://[vps1-tailscale-ip]:18789/status

Sync Settings to Legion

~/.openclaw/workspace/sync_openclaw_settings.sh legion

View VPS Monitor Log

ssh legion "cat /tmp/vps-gateway-monitor.log"

---

Tasks

• ask-agent Fill in VPS1 details (provider, IP, Tailscale IP)
• ask-agent Add VPS2 if needed
• ask-agent Add Lenovo details
• ask-agent Document all Tailscale IPs
• ask-agent Set up SSH config for all nodes
• ask-agent Test all connections

---

Emergency Contacts

If everything breaks:

1. Tailscale admin: https://login.tailscale.com/admin
2. VPS provider: TBD
3. Domain/DNS: TBD

---

Last updated: 2026-02-22