Infrastructure & DevOps

Infrastructure & DevOps Projects

Building scalable, reliable homelab infrastructure using enterprise technologies. These projects demonstrate virtualization, containerization, network security, and monitoring practices applied in production environments.

Focus Areas

  • Virtualization - Proxmox VE hypervisor with LXC containers and VMs
  • Containerization - Docker orchestration with multi-service deployments
  • Network Security - WireGuard VPN, Pi-hole DNS filtering, SSL termination
  • Storage Management - TrueNAS with mirrored drives and automated backups
  • Monitoring & Observability - Prometheus, Grafana monitoring stack
┌────────────────────────────────────────────────────────────────────┐ │ INFRASTRUCTURE & DEVOPS │ ├────────────────────────────────────────────────────────────────────┤ │ > find /infrastructure & devops/ -name "*.md" | wc -l │ │ > 1 items found │ └────────────────────────────────────────────────────────────────────┘
💻

Production Homelab Infrastructure

2023-07-19 Infrastructure & DevOps 24 months (ongoing)
Production Homelab Infrastructure

Project Overview

Built a production-grade homelab infrastructure using Proxmox VE hypervisor with consolidated Docker services, TrueNAS cloud storage, and comprehensive monitoring. The system provides a robust foundation for personal and family use while serving as a learning platform for enterprise technologies.

Homelab Infrastructure Specifications

This project runs on my dedicated homelab setup:

  • CPU: Intel i9-9900K (8 cores, 16 threads) with Intel QuickSync
  • RAM: 32GB DDR4 (non-ECC requiring enhanced monitoring practices)
  • Storage: 2x Seagate IronWolf 12TB drives in mirror configuration
  • OS: Proxmox VE with Debian LXC containers and TrueNAS VM

Architecture Design

Infrastructure Components

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30

# Core Services Docker Compose Stack
version: '3.8'
services:
  nginx-proxy-manager:
    image: jc21/nginx-proxy-manager:latest
    container_name: npm
    restart: always
    ports:
      - '80:80'
      - '81:81'
      - '443:443'
    volumes:
      - /root/nginx/data:/data
      - /root/nginx/letsencrypt:/etc/letsencrypt

  pihole:
    image: pihole/pihole:latest
    container_name: pihole
    restart: unless-stopped
    networks:
      wireguard-pihole:
        ipv4_address: 172.20.0.3
    ports:
      - 53:53/udp
      - 53:53/tcp
      - 4443:443/tcp
      - 8080:80/tcp
    environment:
      - TZ=Canada/Vancouver
      - FTLCONF_RATE_LIMIT=20000/60

The infrastructure includes:

problem: Need for scalable, secure, and automated personal infrastructure supporting multiple services with proper backup and monitoring
Proxmox VE Docker TrueNAS WireGuard NGINX Proxy Manager Pi-hole Grafana Prometheus
Key Challenges:
  • ECC RAM limitations requiring enhanced data hygiene practices
  • GPU passthrough and SMB permissions across virtualized environments
  • Network security and DNS management with VPN integration
  • Storage redundancy with mirror configuration and backup automation
Results:
  • Deployed 8+ containerized services with 99%+ uptime
  • Achieved automated backup system with 12TB mirrored storage
  • Implemented secure remote access with WireGuard VPN
  • Established comprehensive monitoring with Grafana/Prometheus stack
Details