IP, Port & VLAN Master Matrix

This data dictionary centralizes all networking variables utilized across the decoupled ecosystem. Use this matrix when configuring firewall ACLs, NGINX reverse proxy blocks, or API handshakes between applications.

Network Subnet Boundaries

Zone Name	VLAN Tag	Subnet Base	Gateway IP	State/Routing
Management / Trusted	10	192.168.10.0/24	192.168.10.1	Routable, Outbound
Hardened DMZ	20	10.0.20.0/24	10.0.20.1	Routable, In/Out
IoT / Media Clients	30	10.0.30.0/24	10.0.30.1	Routable, Outbound
Guest / Untrusted	40	10.0.40.0/24	10.0.40.1	Routable, Outbound
Storage Fabric	50	10.0.50.0/24	None	Non-Routable

Core Infrastructure IP Assignments

Component Name	Physical Location	Core IP Address	Storage IP (VLAN 50)
Hypervisor Host	Physical Host 1	192.168.10.10	10.0.50.10
Synology NAS Array	Physical Host 3	192.168.10.200	10.0.50.200
Plex Media Engine	Physical Host 2	10.0.20.50	10.0.50.50
NGINX Edge Proxy	Physical Host 4	10.0.20.5	N/A
Acquisition VM (VM-A)	Hypervisor Guest	192.168.10.15	10.0.50.15
Requests VM (VM-B)	Hypervisor Guest	10.0.20.15	N/A
Veeam DR Server (VM-C)	Hypervisor Guest	192.168.10.20	N/A

Application Listening Ports

All ports are TCP unless otherwise specified.

Application Name	Host VM/IP	Internal Port	Protocol	External Exposure
Plex Media Server	10.0.20.50	32400	TCP	Port Forwarded (32400)
NGINX Reverse Proxy	10.0.20.5	80, 443	TCP	Port Forwarded (80, 443)
Overseerr (Requests)	10.0.20.15	5055	TCP	Reverse Proxied (443)
Unmanic Engine	10.0.20.50	8888	TCP	Internal Only
Prowlarr (Indexer)	192.168.10.15	9696	TCP	Internal Only
Sonarr (TV)	192.168.10.15	8989	TCP	Internal Only
Radarr (Movies)	192.168.10.15	7878	TCP	Internal Only
Lidarr (Audio)	192.168.10.15	8686	TCP	Internal Only
qBittorrent WebUI	192.168.10.15	8023	TCP	Internal Only
Synology LogCenter	192.168.10.200	514	UDP	Internal Only

Trash Panda Guides

Table of Contents

IP, Port & VLAN Master Matrix

Network Subnet Boundaries

Core Infrastructure IP Assignments

Application Listening Ports