From 2a765a79fb7b4097c777cf5a038ad9af69c3a2f5 Mon Sep 17 00:00:00 2001 From: Gitea Actions Date: Sun, 18 May 2025 20:52:50 +0000 Subject: [PATCH] Auto-update blog content from Obsidian: 2025-05-18 20:52:50 --- content/page/homelab/index.md | 14 +++++++++++++- 1 file changed, 13 insertions(+), 1 deletion(-) diff --git a/content/page/homelab/index.md b/content/page/homelab/index.md index 9510f1a..e2f328a 100644 --- a/content/page/homelab/index.md +++ b/content/page/homelab/index.md @@ -130,8 +130,20 @@ For now, I’m primarily running just one VM and one LXC container. The VM is es My entire home network is handled by a couple of UniFi switches, managed by a self-hosted UniFi controller. This allows me to simply configure my L2 network on a sleek and simplified UI. -For the router and firewall, I wanted more control, I've chosen to go with OPNsense. Initially I wanted to implement VLANs, to learn more on how to work with them and toy with firewalling. +For the router and firewall, I wanted more control, I've chosen to go with OPNsense. Initially I wanted to implement VLANs, to learn more on how to work with them and toy with firewalling. +| Description | ID | Network | Mask | Gateway | Comments | +| ----------- | ---- | ------------ | ---- | ------------ | ---------------------------- | +| User | 13 | 192.168.13.0 | 24 | 192.168.13.1 | Home network | +| IoT | 37 | 192.168.37.0 | 24 | 192.168.37.1 | IoT and untrusted equipments | +| DMZ | 55 | 192.168.55.0 | 24 | 192.168.55.1 | Internet facing | +| Lab | 66 | 192.168.66.0 | 24 | 192.168.66.1 | Lab network, trusted | +| Heartbeat | 77 | 192.168.77.0 | 24 | | Proxmox cluster heartbeat | +| Mgmt | 88 | 192.168.88.0 | 24 | 192.168.88.1 | Management | +| Ceph | 99 | 192.168.99.0 | 24 | | Ceph | +| VPN | 1337 | 10.13.37.0 | 24 | 10.13.37.1 | Wireguard network | + +OPNsense is capable VLAN DNS DHCP