The original post: /r/homelab by /u/SignificanceDue733 on 2024-12-22 16:56:49.

Hey, I’m putting together a procedure for securing home labs to share with others. I’m wondering what tips you all have for securing your home labs?

Here is what I’ve got so far:

  • ClamAV on Linux servers with additional detection rules

  • New Relic as a SIEM alerting on various security events such as AV detections

  • Veeam backup server on separate VLAN doing “pull” backups only from the VM hosts

  • All services run over Tailscale only with rules to prevent servers talking that don’t need to

  • All admin access is on a separate VLAN and only accessible locally on that network

What other ideas can I integrate to better secure my systems? For context I’m hosting a security testing lab, Kiwix, Jellyfin, Semaphore for automation, Veeam, PiHole, all on Proxmox hosts.