Homelab

371 readers

9 users here now

Rules

Be Civil.
Post about your homelab, discussion of your homelab, questions you may have, or general discussion about transition your skill from the homelab to the workplace.
No memes or potato images.
We love detailed homelab builds, especially network diagrams!
Report any posts that you feel should be brought to our attention.
Please no shitposting or blogspam.
No Referral Linking.
Keep piracy discussion off of this community

founded 11 months ago

MODERATORS

[email protected]

Securing Remote Proxmox for Off-Site Backup (alien.top)

submitted 10 months ago by [email protected] to c/[email protected]

5 comments fedilink hide all child comments

Hey r/homelab,

I've got a 3-node Proxmox cluster at home and am gearing up to set up a Proxmox box at a remote site. My main concern is the trustworthiness of the network there, and I want to ensure maximum isolation.

This box will primarily serve as an off-site backup solution and I'll be utilizing Tailscale, since I have zero access to the firewall or router of the remote site network and I'm also behind CGNAT on both sites.

Specifically, I want to configure the Proxmox box (and the iLO4 on my HP ProLiant ML310e Gen8) so that nobody on the remote network can access them.

Any tips or best practices on securing both Proxmox and iLO4 in this context? I'm especially interested in insights on network isolation and additional security measures.

Thanks a bunch for your help!

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 1 points 10 months ago

Does it need to be a fully featured node? If not, then a remote PBS server or borg host could allow for encrypted backups without any access to services or unencrypted data.