As the title says, I want to know the most paranoid security measures you’ve implemented in your homelab. I can think of SDN solutions with firewalls covering every interface, ACLs, locked-down/hardened OSes etc but not much beyond that. I’m wondering how deep this paranoia can go (and maybe even go down my own route too!).
Thanks!
Ah, yeah, I’m running Proxmox. And I’m definitely seeing I have a lot of research to do before I open up to the internet!
I’m actually not from the “close everything, don’t open ports, always sit behind cloudflare” camp
We selfhost so we can use and share our services
There are other things we can practice instead of just isolationism and keeping everything as simple as possible