Home Lab Infrastructure Project

Overview

In order to put into practice what I am learning in class and to develop my IT skills, I decided to build my own personal homelab infrastructure, which I gradually improve over time. I am currently particularly interested in hardware, and this project allows me to work directly with real machines.

Current Architecture

I recently purchased a mini PC that currently acts as my web server, with services exposed through a reverse proxy. The entire infrastructure is built using only open-source solutions.

Security & Observability Roadmap

To improve security and observability, I plan to deploy the following solutions:

• ELK Stack: Deployment of Elastic agents for centralized log collection and analysis.
• Fail2Ban: Implementation of intrusion prevention to protect exposed services.

Future Developments

My long-term strategy involves strengthening the infrastructure with professional-grade security layers:

1. Self-hosting & Remote Access

• Deployment of a self-hosted password manager.
• Configuration of a VPN (Virtual Private Network) to secure all remote administrative access.

2. Network Segmentation

I will implement VLAN-based network segmentation to separate assets following enterprise security best practices:

• Tier 0: Identity and core infrastructure management.
• Tier 1: Enterprise applications and servers.
• Tier 2: User devices and standard workstations.