# work-in-progress. (technical details & plans are likely to change soon as I continue working on this)

Note: Currently working on a post that details the history of this homelab project and a lot of my thinking/decision making during it

Current Network Topology

Future plans

Currently configuring a “secure hypervisor” host that I plan to introduce a new “trusted infra” zone for, which I’m planning to host more SIEM services on. My thinking is that a vuln scanner with its necessary fw rules shouldn’t be on the same VLAN or even host as a media services VM with sketchy supply chains and 24/7 internet access.

I’m also planning to move the OPNsense install from its current Dell Optiplex 9020 SFF host to a Dell Optiplex 9010 SFF which is more suitable for a project where I’m currently exploring options for configuring boot verification/auditing and hardware attestation for it.

After that I also want to have a go at redoing my current OPNsense configuration on OpenBSD with a goal to reduce overall attack surface by removing the components I don’t need.

I’d also like to move to an ELK stack or similar as I start to need more aggregated information.