HomeLab Project Overview
For as long as I can remember, my passion for technology has driven me to explore the vast digital landscape. Whether it’s scouring the internet for cutting-edge ideas, discovering innovative products, or diving into emerging technologies, I thrive on the thrill of discovery.
Several years ago, I embarked on a HomeLab project—a journey that began with a single server running VMware ESXi. Initially, it served as a testing ground for various VMware products, allowing me to experiment and learn. Over time, this modest setup evolved into something more significant—an intriguing infrastructure that begged to be shared.
As the years passed, I realized that my HomeLab held immense potential. It wasn’t just a personal playground; it was a space where ideas converged, where I could collaborate with like-minded enthusiasts, and where future projects could take shape. Inspired by this realization, I decided to document my experiences and insights, giving birth to the HomeLab series.
In this ongoing series, I’ll delve into the intricacies of my setup, share valuable lessons learned, and explore the intersection of technology and creativity. Whether you’re a seasoned IT professional, an aspiring enthusiast, or simply curious about the possibilities, I invite you to join me on this journey.
HomeLab Infrastructure Overview
On-premises
- Lab Environment: Where Geek Magic Happens
- In my Lab environment, I tinker with all things geeky. It’s the playground where I test new technologies, products, and configurations before rolling them out to my customers’ infrastructure.
- Two Virtualization Technologies:
- VMware ESXi with vCenter Server: This powerful combination allows me to create and manage virtual machines (VMs) efficiently. I can simulate various scenarios, evaluate software, and fine-tune configurations.
- Proxmox Virtual Environment: With all my containers that support and improve my HomeLab experience.
- Network Segmentation:
- My Lab environment relies on network segmentation to keep things organized. I use VMware NSX to create distinct network segments for VMs within the VMware cluster. This isolation ensures better security and performance.
- The Cisco C1111 router plays a crucial role. It’s connected via BGP (Border Gateway Protocol) to VMware NSX, allowing seamless communication between VMs across different segments.
- Additionally, the Cisco router connects to pfSense, which acts as the gateway to the internet. pfSense provides firewall capabilities, NAT (Network Address Translation), and other essential services.
- Home Network: Where Real Life Meets Tech
- My home network serves both practical and leisurely purposes. Here’s the breakdown:
- Guest and IoT Subnets: I’ve set up two isolated Wi-Fi subnets—one for guests and another for IoT devices. This separation keeps my smart home gadgets away from prying eyes and potential threats.
- Work Subnet: For productivity, there’s a dedicated subnet for work-related devices. Whether it’s my laptop or a printer, they all have their designated space.
And yes, all roads lead to the internet via pfSense. It’s the gatekeeper that allows my devices to access the online world while keeping them safe from cyber nasties.
Azure Cloud
Azure Cloud subscription connects to an on-premises lab via an IPSec Site-to-Site VPN and to CloudFlare through a Zero Trust Tunnel. With this configuration, a secure VPN can be established from public networks to the on-premises lab using the CloudFlare WARP Client. Additionally, certain on-premises services are publicly available, protected by Zero Trust Policies.
Next Steps
- Network components
- Hypervisors
- Storage
- pfSense
- Cisco
- VMware NSX
- Azure Virtual Network Gateway
- CloudFlare Tunnel and Zero Trust Integration
- ProxMox Virtual Environment
- VMware vSphere & vCenter
- Backups with Proxmox Backup Server
- Lab Automation with Apache Airflow
- Docker containers hosting valuable services to simplify management of the HomeLab project.
