Hey everyone! The time has come!!! It's time to help me brainstorm the ultimate home lab. Lets combine all our knowledge where we will brainstorm the most ultimate home lab that we will then build out in a lab series. What do you think????
I'm already thinking the following to give you food for though. Keep in mind I wanna keep costs as possible since the audience this is for is people that like to build a home lab:
Dual PF-Sense Firewalls (load balanced through a CARP Virtual IP) Traefik Load balancer that will load balance inbound web traffic in home to backend Docker Swarm cluster backend with Docker-Compose.yml files per app service. Single-Sign-On - Oauth Authentication with MFA Authentication - Using Azure AD or Google OAuth Pi-Hole to handle DNS queries (Load balanced through Traefik) and filter ad sites. Syslog Server (Load balanced through Traefik) feeding to Azure Sentinel DNS over HTTPS and DNS SEC Protection (Hide my DNS queries) Cloudflare D-DOS Protection with Proxy connection to my backend (Proxy to hide my real home IP when resolved). Jupyter Notebook environment (Load balanced through Traefik) Portainer - Web UI Front end to manage Docker Swarm Cluster. VPN gateway - Used to send outbound traffic from IOT device and guests through VPN to not expose my IP Homebridge - This is used to connect to Apple's native home Automation Wordpress container cluster - To host whatever apps we want to demo with. OpenDNS or some web content filtering. Using either GlusterFS or CephFS to replicate data across multiple servers. Guacamole - for a secured access workstation via browser protected with another factor like authenticator key on top of the global authentication methods. Red Team Tools - To test our environment and identify possible gaps in our home security. Some Indicator aggregator tool to correlate whitelist, blacklist, and any IOCs. (I heard Minemeld is good)
This is just to get started on what I was thinking. Guys I don't know how long this will take, but I will have a hell of a time building it with you guys. We will learn a lot of stuff too that can be applied in the real world while having an awesome secure home environment.
Join me on a Youtube Live Stream at Wednesday Feb 24th at 3PM CST
TeachJing
THE ULTIMATE HOME LAB - LETS BUILD IT!
Hey everyone! The time has come!!! It's time to help me brainstorm the ultimate home lab. Lets combine all our knowledge where we will brainstorm the most ultimate home lab that we will then build out in a lab series. What do you think????
I'm already thinking the following to give you food for though. Keep in mind I wanna keep costs as possible since the audience this is for is people that like to build a home lab:
Dual PF-Sense Firewalls (load balanced through a CARP Virtual IP)
Traefik Load balancer that will load balance inbound web traffic in home to backend
Docker Swarm cluster backend with Docker-Compose.yml files per app service.
Single-Sign-On - Oauth Authentication with MFA Authentication - Using Azure AD or Google OAuth
Pi-Hole to handle DNS queries (Load balanced through Traefik) and filter ad sites.
Syslog Server (Load balanced through Traefik) feeding to Azure Sentinel
DNS over HTTPS and DNS SEC Protection (Hide my DNS queries)
Cloudflare D-DOS Protection with Proxy connection to my backend (Proxy to hide my real home IP when resolved).
Jupyter Notebook environment (Load balanced through Traefik)
Portainer - Web UI Front end to manage Docker Swarm Cluster.
VPN gateway - Used to send outbound traffic from IOT device and guests through VPN to not expose my IP
Homebridge - This is used to connect to Apple's native home Automation
Wordpress container cluster - To host whatever apps we want to demo with.
OpenDNS or some web content filtering.
Using either GlusterFS or CephFS to replicate data across multiple servers.
Guacamole - for a secured access workstation via browser protected with another factor like authenticator key on top of the global authentication methods.
Red Team Tools - To test our environment and identify possible gaps in our home security.
Some Indicator aggregator tool to correlate whitelist, blacklist, and any IOCs. (I heard Minemeld is good)
This is just to get started on what I was thinking. Guys I don't know how long this will take, but I will have a hell of a time building it with you guys. We will learn a lot of stuff too that can be applied in the real world while having an awesome secure home environment.
Join me on a Youtube Live Stream at Wednesday Feb 24th at 3PM CST
4 years ago (edited) | [YT] | 5