🏡

Home Lab Tour: Services and Configurations

Apr 22, 2025

Jim's Garage Home Lab Tour - Services Overview

Introduction

  • Continuing the home lab tour focusing on services.
  • Previous video covered hardware, recommended to view for context.
  • Key topics: network configuration, applications in Docker and Kubernetes.

Network Configuration

Firewall

  • Currently using OpenSense in a virtual machine.
  • Previously used Sophos XG and UniFi Dream Machines.
  • OpenSense setup allows for high availability (HA) across three machines.
  • Networking includes VLAN segmentation for security and management.
    • VLAN 200 for management tools like Proxmox, Docker host, and Kubernetes.
    • NAS is highly secured, with restricted access.

Proxmox Setup

  • Two network setups:
    • Traditional network using Ethernet, SFP+ and 2.5 gig ports.
    • Separate Thunderbolt ring for Ceph storage network.
  • High availability for Kubernetes cluster using Ceph.
  • Migration example demonstrated with OpenSense HA.

Virtual Machines and Docker

  • All running as virtual machines, prefer VMs over LXC for flexibility.
  • Docker VM for testing and video content creation.
  • Various test environments for Kubernetes and other setups.
  • Cloud Images for quick VM cloning and setup.

Network Devices

  • Using UniFi setup for physical device management.
  • Aggregation and PoE switches, multiple access points.

Kubernetes Cluster

Management

  • Managed with Rancher.
  • Using K3s for ease of use, with consideration of RKE2 for security.

Proxy and Security

  • Traefik as reverse proxy, integrated with CrowdSec for security.
  • CrowdSec inspects traffic via Traefik for enhanced security.

Services Running in Kubernetes

CCTV and Security

  • Frigate for CCTV, previously used Coral TPUs, now using integrated GPUs.
  • Home Assistant for home automation, integrated with CCTV.

Applications

  • Gotify for notifications, integrated with mobile and email alerts.
  • Jellyfin and Plex for media, Plex preferred for reliability.
  • Memos and Trilium for note-taking.
  • Mosquitto MQTT for IoT devices, transitioning to Zigbee with new setup.

Kubernetes Services

  • Node Feature Discovery for GPU sharing across containers.
  • Pi-hole for network-wide ad blocking.
  • Rclone for cloud backups, encrypted data storage.
  • Longhorn for data replication across cluster nodes.

Docker Setup

  • Portainer for Docker management.
  • Testing ground for new applications before moving to Kubernetes.

Closing Remarks

  • Overview of home lab services and configuration.
  • Encouragement to view channel for detailed videos on specific topics.
  • Call to action for likes, subscriptions, and engagement.

Full transcript