Hello, I’m getting into self hosting and looking to setup a small home lab to play around with different technologies. I’m considering setting up a DMZ to keep my lab hardware separate from the rest of the network and other users. What is some of the minimal hardware required to do this on a small budget? Also what are some of the necessary security measures I should understand. One of my first projects would be to setup a small Linux box that I can ssh into remotely. Thanks.
EDIT After much reading today and great guidance from this community this is basically what i ended up doing… Got a dell optiplex on ebay for about 55 bucks and a dual intel network card on amazon with a managed switch. If i can bridge my current router as an access point, i should be on my way! This community rocks! Lemmy is awesome!
Get yourself a decent router capable of running OpenWRT, which will allow you to set up vlan’s for your lab, and (I would also recommend) another separate vlan for your IoT and other “smart” devices.
The TP-Link Archer C7 is old but reliable and has a lot of open source support.
If you’re feeling more adventurous You could also build your own router with any computer that’s got two or more Ethernet ports using PFSense, Firewall-NG, or IPFire
Instead of pfSense, I would really recommend OPNsense, originally a fork but now standing on its own. I like the fact that OPNsense tracks closer to the current FreeBSD release than pfSense.
I currently have a net gear R7000. Maybe I could flash that? If I got an old computer and put a duel Ethernet card like you suggested, what would the physical network diagram look like with that setup?
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.
Rules:
Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.
No spam posting.
Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
Get yourself a decent router capable of running OpenWRT, which will allow you to set up vlan’s for your lab, and (I would also recommend) another separate vlan for your IoT and other “smart” devices.
The TP-Link Archer C7 is old but reliable and has a lot of open source support.
If you’re feeling more adventurous You could also build your own router with any computer that’s got two or more Ethernet ports using PFSense, Firewall-NG, or IPFire
Instead of pfSense, I would really recommend OPNsense, originally a fork but now standing on its own. I like the fact that OPNsense tracks closer to the current FreeBSD release than pfSense.
Agreed!
I currently have a net gear R7000. Maybe I could flash that? If I got an old computer and put a duel Ethernet card like you suggested, what would the physical network diagram look like with that setup?