🌐
MEDIP · forge BOX
IP REGISTRY · PORT MAP · DOMAIN DIRECTORY · ARB-622
192.168.2.12
172.27.173.181
LAN ONLY
SSL VIA msi01
● FULLY ALIVE · 7 DAYS UPTIME · 30+ CONTAINERS
lianli01 (forge) — FULLY ALIVE · ALL GREEN
30+ containers running · 7 days uptime · WSL Ubuntu 22.04 · RTX 4090 · PMDSMS PRIMARY
TRIO MEMBERSHIP & MDSMS ROLE
🔥 FORGE TRIO member
PMDSMS · Primary MDSMS
RECEIVES FROM: LOCAL (msclo TRANSMIT → forge KNOW)
PRODUCES TO: SMDSMS pcdev
WSL AUTOSTART: Task Scheduler runs wsl -d Ubuntu at boot (user=SYSTEM). Containers: --restart unless-stopped. Gateway: systemd service. lianli01 never sleeps.
IP ADDRESSES — forge BOX
| ADDRESS | INTERFACE | SUBNET | TYPE | NOTES |
|---|
| 192.168.2.12 |
eth0 |
192.168.2.0/24 |
LAN |
Windows 10 bare metal · RTX 4090 · sovereign address · ARB-419 |
| 172.27.173.181 |
WSL eth0 |
172.27.0.0/16 |
WSL2 |
Ubuntu 22.04.5 · WSL2 NAT · dynamic (lease from Hyper-V) |
| 172.x.x.x |
pemos-net |
Docker bridge |
DOCKER |
forge container network · internal service-to-service |
| 172.x.x.x |
utpemos-net |
Docker bridge |
DOCKER |
UTFoundry container network · isolated |
SUBNET MAP — forge BOX
192.168.2.0/24
LAN subnet — all silo nodes. forge (2.12), msi01 (2.18), msclo (2.19), yONE (2.23), NAS (2.20). Routed by main gateway. No WAN exposure.
LAN
172.27.0.0/16
WSL2 NAT subnet. forge Ubuntu 22.04.5 sits at 172.27.173.181. Routes outbound via Windows NAT to LAN. Dynamic DHCP from Hyper-V virtual switch.
WSL2 NAT
Docker bridges
pemos-net and utpemos-net are Docker-managed bridge networks. Container-to-container only. No external routing without explicit port publish.
DOCKER
PORT SOVEREIGNTY MAP — ALL GREEN · 7 DAYS UPTIME · ARB-622 · forge BOX
| PORT | SERVICE | PROTOCOL | CONTAINER / NOTES |
|---|
|
8080 |
forge-portal |
HTTP/WS |
pemos-portal · main forge entry · PEMOS portal UI |
|
9334 |
pemos-mal |
HTTP |
PMDSMS breath · MAL service · MDSMS primary write node |
|
18792 |
pemos-gateway |
WS |
Fleet gateway relay · WebSocket · msi01 connects here |
|
18832 |
utpemos-gateway |
WS |
UTFoundry gateway · separate WebSocket relay |
|
9351 |
pemos-carmac |
HTTP |
CARMAC visual boards — even/anti/fleet/siloton/rhone |
|
9413 |
pemos-rhone |
HTTP |
Rhone service · CARMAC rhone board · ARB-634 |
|
9401 |
utfoundry-portal |
HTTP |
UTFoundry interface · utfoundry-portal container |
|
9412 |
pemos-novelty |
HTTP |
Novelty detection · pattern evolution layer |
|
9395 |
pemos-hecke-twist |
HTTP |
Hecke twist processor · mathematical layer |
|
9394 |
pemos-atmos-rick |
HTTP |
Atmospheric signal · Rick pattern processor |
|
9393 |
pemos-pathrouter |
HTTP |
Path routing service · fleet signal router |
|
9375 |
pemos-alphastar |
HTTP |
AlphaStar layer · strategic pattern evaluation |
|
9355 |
pemos-wake-reader |
HTTP |
Wake reader · silo wake state processor |
|
9350 |
pemos-chess |
HTTP |
Chess engine · strategic reasoning layer |
|
9344–9347 |
pemos-laam suite |
HTTP |
LAAM suite · 4 containers · multi-modal learning array |
|
9342 |
pemos-egyptian |
HTTP |
Egyptian pattern layer · symbolic processor |
|
9343 |
pemos-ide-bridge |
HTTP |
IDE bridge · dev environment connector |
|
9340 |
pemos-laam |
HTTP |
LAAM primary · learning array anchor module |
|
6333 |
pemos-qdrant |
HTTP/gRPC |
Vector store · Qdrant · embedding persistence · fleet memory layer |
|
6379 |
pemos-redis |
TCP |
Redis session store · used by forge-portal + all containers |
|
9402 |
pemos-pdf-serve |
HTTP |
PDF serving layer · document archive endpoint |
|
9400 |
pemos-fleet-wiki |
HTTP |
Fleet wiki · internal knowledge base |
|
9337 |
pemos-campcanmirror |
HTTP |
Campfire canvas mirror · event stream relay |
|
9440 |
forge-mefine |
HTTP |
MEFINE relay · proxied by msi01 at /api/forge/ (CORS-free) |
SERVICE REGISTRY — forge BOX CORE (ALL GREEN)
forge-portal
Port:8080
Networkpemos-net
Status● UP
pemos-mal (PMDSMS breath)
Port:9334
RolePMDSMS PRIMARY
Status● UP
pemos-gateway
Port:18792 (WS)
Networkpemos-net
Status● UP
pemos-qdrant
Port:6333
RoleVector store
Status● UP
pemos-redis
Port:6379
Networkpemos-net
Status● UP
pemos-carmac
Port:9351
Accessvia msi01 BOON proxy
Status● UP
utpemos-gateway
Port:18832 (WS)
Networkutpemos-net
Status● UP
pemos-laam suite
Ports:9340, :9344–9347
Containers5 total
Status● UP
DOMAINS & SSL — forge BOX
Direct domains
None — forge is LAN only (192.168.2.12). No DNS record points directly to forge.
Proxy entry
pemos.ca reverse proxy (on msi01/AKS) routes forge.pemos.ca → 192.168.2.12:8080
SSL certificate
None on forge directly. TLS terminates at msi01 nginx ingress / AKS ingress-nginx. forge serves plain HTTP internally.
Certificate authority
Let's Encrypt via msi01 certbot. forge inherits via reverse proxy only.
WAN exposure
Zero. forge is private LAN sovereign (ARB-419). All WAN traffic must pass through msi01 or AKS ingress.
yLAW-001.2
SSL terminates at msi01/AKS ingress. forge is LAN-only sovereign. No direct certs. (Compliance: ✓)