From 8e0499ed3c6eaf9de408c92c562a9a7cac4fa056 Mon Sep 17 00:00:00 2001
From: jessikitty <jess.rogerson.29@outlook.com>
Date: Wed, 27 May 2026 11:53:37 +1000
Subject: [PATCH] fix: update IPs to .225, NPM ref to .226, DNS to .224

---
 setup-guacamole-lxc.sh | 33 ++++++++++++++++-----------------
 1 file changed, 16 insertions(+), 17 deletions(-)

diff --git a/setup-guacamole-lxc.sh b/setup-guacamole-lxc.sh
index 6a873eb..3f812ea 100644
--- a/setup-guacamole-lxc.sh
+++ b/setup-guacamole-lxc.sh
@@ -6,30 +6,28 @@
 # LXC container on Proxmox. Guacamole was using 25% CPU and 9% RAM
 # inside the HAOS VM — this frees those resources.
 #
-# Uses Docker Compose for clean deployment of:
-#   - guacamole (web frontend)
-#   - guacd (connection daemon)
-#   - postgres (user/connection database)
+# Run this script on the Proxmox host (HAL-HOST / 10.0.0.240) as root.
 #
-# Run this script on the Proxmox host (HAL-HOST) as root.
-#
-# Network assumptions:
-#   - Guacamole LXC:    10.0.0.225 (new - adjust if taken)
-#   - Gateway:           10.0.0.254
-#   - NPM:              10.0.0.226 (for reverse proxy)
+# Network:
+#   - Proxmox host:     10.0.0.240
+#   - HAOS VM:          10.0.0.55
+#   - OPNsense:         10.0.0.254
+#   - AdGuard LXC:      10.0.0.224 (CT 120)
+#   - Guacamole LXC:    10.0.0.225 (CT 121)
+#   - NPM LXC:          10.0.0.226 (CT 122)
 # =====================================================================
 
 set -euo pipefail
 
 # --- Configuration ---
-CT_ID="${1:-121}"
+CT_ID="121"
 CT_NAME="guacamole"
 CT_IP="10.0.0.225/24"
 CT_GW="10.0.0.254"
 CT_STORAGE="local-lvm"
 CT_TEMPLATE="local:vztmpl/debian-12-standard_12.7-1_amd64.tar.zst"
-CT_MEMORY=2048
-CT_SWAP=512
+CT_MEMORY=1024
+CT_SWAP=256
 CT_CORES=2
 CT_DISK="8"
 BRIDGE="vmbr0"
@@ -59,12 +57,12 @@ pct create "${CT_ID}" "${CT_TEMPLATE}" \
     --cores "${CT_CORES}" \
     --rootfs "${CT_STORAGE}:${CT_DISK}" \
     --net0 "name=eth0,bridge=${BRIDGE},ip=${CT_IP},gw=${CT_GW},firewall=0" \
-    --nameserver "1.1.1.1" \
+    --nameserver "10.0.0.224" \
     --onboot 1 \
     --start 1 \
     --unprivileged 1 \
     --features "nesting=1,keyctl=1" \
-    --startup "order=2,up=15"
+    --startup "order=3,up=15"
 
 echo "[3/8] Waiting for container to start..."
 sleep 5
@@ -197,8 +195,9 @@ echo " MIGRATION STEPS:"
 echo " 1. Login at http://${CT_IP_CLEAN}:8080/guacamole/"
 echo " 2. Change admin password immediately"
 echo " 3. Re-create RDP connections (Settings > Connections)"
-echo " 4. Set up NPM proxy: guac.hideawaygaming.com.au"
-echo "    Forward: http://${CT_IP_CLEAN}:8080 (enable WebSocket!)"
+echo " 4. Set up NPM proxy (10.0.0.226):"
+echo "    guac.hideawaygaming.com.au -> http://${CT_IP_CLEAN}:8080"
+echo "    Enable WebSocket support (critical for RDP)"
 echo " 5. Test all RDP connections"
 echo " 6. Stop HA Guacamole add-on"
 echo ""