====== Infrastructure sources of truth ======

This page explains where infrastructure information should live. The goal is to avoid copying the same facts into many places and then letting them drift.

===== NetBox / ip.hackeriet.no =====

Use NetBox for canonical inventory:

  * devices and virtual machines
  * IP addresses and DNS names
  * sites, racks, locations, roles, platforms, and device types
  * cabling and switch ports
  * primary IPs and VM placement

Wiki pages may mention a few NetBox facts for emergency orientation, but should link back conceptually to NetBox as the source of truth.

===== DokuWiki / wiki.hackeriet.no =====

Use the wiki for operational knowledge:

  * emergency access runbooks
  * first checks during incidents
  * service ownership and recovery notes
  * warnings that are not obvious from inventory
  * links between hosts, services, clusters, and procedures

Do not put secrets in the wiki.

===== Hackeriet password store =====

Use the password store for credentials and secret material. Wiki pages may name relevant entries when verified, but must not include decrypted contents, tokens, private keys, passwords, or recovery secrets.

===== Monitoring =====

Use LibreNMS and Grafana for monitoring state, graphs, and alert context. A wiki page can describe which monitor to check first, but should not duplicate live metrics.

===== GitHub =====

Use GitHub for code, issue tracking, and legacy/out-of-band documentation when useful. GitHub wiki content may be useful historical context, but current operational runbooks should live in this wiki unless there is a specific reason otherwise.