My Hame Lab Plan

Proxmox VE Installation / Help
1

Here’s a summary of my plan:

  1. Deployed Proxmox VE environment to manage services:
    • Web server
    • Cloud Storage server
    • VPN
    • DNS
    • Other services
  2. Placed all services behind an OPNsense firewall.
  3. Optimized network setup:
    • Efficient IP allocation
    • Precise firewall rule definition
    • Effective port forwarding strategies
  4. Used containers and LXC for hosting services (except the firewall) to enhance service management.
  5. Integrated the secured domain name “anything.xyz” from Cloudflare into the setup.
  6. Seek guidance on:
    • Best practices for setup
    • Visual diagrams for a robust and optimal network configuration
    • Step-by-step in-depth guidance on setting up the OPNsense firewall (VM) to manage the network
    • Effectively utilizing containers for various services
    • Integrating the domain name into the setup
    • Additional recommendations for service improvement

Layout :
[Internet]
|
[ISP Router]—WAN IP (Dynamic)
|
[Proxmox VE Host] — 192.168.1.10 | Ports: 8006
|
[VM: OPNsense] — 192.168.1.20 | Ports: 10443
|
|-------10.0.0.1/28 (LAN 0) → Managing Proxmox VE & OPNsense
| |—[CT: VPN server] 10.0.0.2 → Wireguard (Management) | Ports: 888
| |—[CT: Wazuh Server] 10.0.0.3 → Wazuh | Ports: 443, 1514, 1515, 1516, 9200
| |—[CT: Nginx Proxy Manager] 10.0.0.4 → Nginx Proxy Manager | Ports: 80, 81, 443
| '—[CT: Uptime Kuma] 10.0.0.5 → Uptime Kuma | Ports: 80, 443
|
|-------10.1.250.1/28 (LAN 1) → Users Access
| '—[CT: VPN server] 10.1.250.2 → Wireguard (for users access) | Ports: 889
|
|-------10.2.250.1/28 (LAN 2) → Local Services
| |—[CT: DNS0 server] 10.2.250.2 → AdguardHome | Ports: 53, 784, 853, 80
| |—[CT: DNS1 server] 10.2.250.3 → AdguardHome | Ports: 53, 784, 853, 80
| '—[CT: DNS Sync] 10.2.250.4 → AdguardHome Sync | Ports: 80
|
|-------10.3.250.1/28 (LAN 3) → Web Services
| |—[CT: FileCloud Server] 10.3.250.2 → SeaFile | Ports: 80, 443
| |—[CT: Web Server] 10.3.250.3 → LAMP Server | Ports: 80, 443, 3306
| '—[VM: FastPanel Server] 10.3.250.4 → FastPanel Server | Ports: 80, 443, 3306
|
'-------10.4.250.0/24 (LAN 4) → Developpment
| '—[CT: Automation Server] 10.4.250.2 → Kestra | Ports: 8080, 8081

1 Like