HomeLab Network Layout 2023

192 Subnet

As shown in the diagram of the Home network the 192 subnet includes the router, unmanaged switch, access point and the Dell R510 which is running proxmox, within the proxmox service there is a Pfsense Virtual Machine running as my firewall.

172 subnet

The 172 subnet comes from the Dell R510 machine and is the majority of my internal services such as the HP DL380 Gen 8 which is also running Proxmox and host all my internal Virtual machines such as Docker. The client PCs and my standard gaming PCs used for gaming and every day tasks. The Two laptops are for work purposes. I use a managed switch to connect all my internal devices to my Dell R510 firewall.

HomeLab Server Rack

Dell R510

The First machine in my server rack is the DELL R510, this is currently running Proxmox. The VMs that are running inside of the DELL R510 Proxmox machine are as follows:

  • Pfsense
  • Kali Linux
  • Pihole
  • TrueNas
  • (Temp) Windows VM

Pfsense: Used as my networks firewall

Kali Linux: Has OpenVas Installed and is used to pen test my environment

Pihole: My home networks DNS

TrueNas: Used as my network attached storage

(Temp) Windows VM: this is currently being used to monitor the HP DL380 Gen 8 Stats until I get Nagios installed again

Hp dl380 Gen8

The Second machine in my server rack is the HP DL380 Gen 8, this is currently used as my testing suite and VM hosting environment

The VMS currently running on this machine are:

  • Ubuntu server (Docker)

This is currently the only service i am running but have many containers running within the docker instance

  • Portainer
  • Next Cloud
  • Game Servers
    • Valheim
    • Minecraft
  • Heimdall
  • Nginx
Project Frank

This machine is the first gaming pc in this line up and is used mainly for games, its connected to my home network so i can remote into it from other machines on the network

Hp Switch & Patch panel

The HP switch is currently being used to manage all of my connections, this goes through a patch panel to make it easy to connect new devices

DELL R510

Project Proxmox

This Machine is used from hosting my virtual machines and my firewall its a repurposed Dell r510, within the Proxmox environment it has 4 main virtual machines, the first being Pfsense which is my defence from the outside world , the next being my Truenas server which hosts all my network shares, the next being Pihole which is used as my dns for the environment, the last being kali linux which runs open vas to ensure there is no major flaws within my homelab.

Specification
  • CPU : X5660 X2
  • RAM: 64Gb DDR3 1600mhz
  • Storage:
    • 2 X 480GB SSD
    • 2 X 120GB SSD
    • 1 X 1TB HDD

HP DL380 GEN 8

Project Proxmox

This Machine is used from hosting my more demanding virtual machines. There is currently only one virtual machine running on this server which is my docker service running on ubuntu server 22.04 lts. Docker is currently running 3 main containers, the first being portainer which is used to manage all of the containers, the next being heimdall which is used to give me a dashboard to access all my application, the last is nextcloud which is used to host my own one drive equivalent

Specification
  • CPU : E5 2660 V2 X2
  • RAM: 192Gb DDR3 1600mhz
  • Storage:
    • 2 X 480GB SSD
    • 2 X 120GB SSD
    • 1 X 1TB HDD
Virtual Machine List
Proxmox(Dell R510/Hp DL380 Gen8)

I decided on using Proxmox to host my environment due to it being a type 1 hypervisor, I did want to use VMware ESXI but the Dell R510 does not support the latest version of VMware.

Note: I did test using Vmware ESXI 7.0 and found it would install but would not recognize the raid controller, I could install the module for the Raid controller but ultimately decided to revert back to Proxmox.

PFsense(Dell R510)

The first virtual machine I set up was Pfsense and it is currently being used for my firewall, all my devices within my home network run through this firewall including my Virtual machines as I can assign them to the LAN port I have configured. This allows me to get exposure to the rules and monitoring I can setup to block certain content

TrueNAS(Dell R510)

I have set up a TrueNAS Virtual Machine within Proxmox to host my windows shared drives, i could have used Proxmox’s built in feature set for this but I felt the easiest way to get this setup up is to use TrueNas as its designed to be used for NAS (Network Attach Storage) solutions.

Windows Server 2022

I have setup a Virtual Machine with windows server 2022 (CLI) this is used in conjunction with the dummy machine listed below to simulate an active directory environment in which I will be testing multiple exploits to try to gain unauthorised access.

Kali Linux (Dell R510)

I have setup a Virtual machine which is running Kali Linux, this will be used in conjunction with the windows machine and metasploitable to enhance my knowledge and understanding of how the exploits work and the best defence against them.

PiHole (HP DL380 Gen8)

I have setup a Virtual machine which is running Kali Linux, this will be used in conjunction with the windows machine and metasploitable to enhance my knowledge and understanding of how the exploits work and the best defense against them.

Docker(HP DL380 Gen8)

I have setup a Virtual machine which is running Ubuntu server 22.04 LTS, this server has docker installed within it. The docker container is currently only running 3 services portainer, heimdall, and nextcloud but I intend on running many more.

Portainer

Pihole is used to block unwanted adverts on my network all my machines use Pihole as the dns

Heimdall

I was using Yacht to manage all of my docker containers but found that portainer was more effective at deploying/managing my docker containers

NextCloud

Currently I am using traefik to allow me to have multiple docker containers running which use the same ports

Nagios

I have setup a Virtual machine which is running Ubuntu server 22.04 LTS, this install has nagios running on it and is used to easily monitor all of my other virtual machines and physical systems throughout my home lab

Metasploitable 2.0

I have setup a Virtual machine which is running Ubuntu server 22.04 LTS, this install has nagios running on it and is used to easily monitor all of my other virtual machines and physical systems throughout my home lab

Project Rambox

Specification:
  • CPU: Ryzen 9 3900X
  • RAM:16Gb DDR4 4000mhz
  • GPU: RTX 4090
  • Storage: 1TB NVME
  • OS: Windows 10
Summary:

This machine is used as a high end testing machine and is mostly used for intensive scanning and hacking tasks such as password cracking

Project Frank

Summary:

This machine is mainly used as a purpose built vulnerable machine for exploitation purposes.

Specification:
  • CPU: Ryzen 5 3600
  • RAM: 32GB DDR4
  • GPU: RX 6600
  • Storage:
    • 120GB NVME
    • 240GB SSD
    • OS: Windows 10