this post was submitted on 23 Nov 2023
1 points (100.0% liked)

Homelab

371 readers
9 users here now

Rules

founded 1 year ago
MODERATORS
 

Hey r/homelab,

I've got a 3-node Proxmox cluster at home and am gearing up to set up a Proxmox box at a remote site. My main concern is the trustworthiness of the network there, and I want to ensure maximum isolation.

This box will primarily serve as an off-site backup solution and I'll be utilizing Tailscale, since I have zero access to the firewall or router of the remote site network and I'm also behind CGNAT on both sites.

Specifically, I want to configure the Proxmox box (and the iLO4 on my HP ProLiant ML310e Gen8) so that nobody on the remote network can access them.

Any tips or best practices on securing both Proxmox and iLO4 in this context? I'm especially interested in insights on network isolation and additional security measures.

Thanks a bunch for your help!

you are viewing a single comment's thread
view the rest of the comments
[–] phidauex@alien.top 1 points 1 year ago

Does it need to be a fully featured node? If not, then a remote PBS server or borg host could allow for encrypted backups without any access to services or unencrypted data.