The original post: /r/homelab by /u/SignificanceDue733 on 2024-12-22 16:56:49.
Hey, I’m putting together a procedure for securing home labs to share with others. I’m wondering what tips you all have for securing your home labs?
Here is what I’ve got so far:
-
ClamAV on Linux servers with additional detection rules
-
New Relic as a SIEM alerting on various security events such as AV detections
-
Veeam backup server on separate VLAN doing “pull” backups only from the VM hosts
-
All services run over Tailscale only with rules to prevent servers talking that don’t need to
-
All admin access is on a separate VLAN and only accessible locally on that network
What other ideas can I integrate to better secure my systems? For context I’m hosting a security testing lab, Kiwix, Jellyfin, Semaphore for automation, Veeam, PiHole, all on Proxmox hosts.