Thank you for not only showing us in great detail what you are using and hosting in your lab, but also the reason behind it. 👌

I would like to see an entire network walk-through. Great stuff though Brett!

You, TechnoTim, STH guy and hardware haven should have a bbq vlog. Keep up the awesome content and making me feel inept!

This is incredible, I love your videos. I'm redoing my home lab and smart home setup, I've definitely picked up a few nuggets on how I may end up segmenting my network. Thanks for the awesome content

Call me crazy but I think one of the best things on his setup is that he has two (2) ISP's I would LOVE that!

I had a good time watching the hardware overview video. This one went over my head a little bit. But it kind of kicked my butt into gear to finally make my first VM in the NAS that I've been running so that I can run Docker and then run Pi-hole. I'm hoping that will be a gateway to more advanced things, but I figure that's a good place to start given how practical it is. I've been intimidated by all that you can do in a NAS and have stayed with only a very basic backup storage setup. And yeah a network walkthrough would be pretty cool too.

We need to see that network walkthrough bro! Amazing content btw.

Another breakfast video! Thank you!

I have a baby home lab and now know what I am missing in my life. lol Thanks for sharing. It has gotten the juices flowing on what project to work on after I build a server for proxmox and truenas.

Awesome homelab!
This gave me a couple new ideas to try out.
Besides: One can never have enough gear/services/hardware!

Yeah please do the full network walkthrough. I am doing many of the same things, and have a relatively similar setup to you (UDM Pro, Proxmox, TrueNAS, etc...) but I feel like I might be missing some key points that you would probably cover. Especially with firewall rules, inter v-lan routing, how to allow internal & external connections to only specific devices appropriately, how to properly match IPSec, VPN setups, etc.... and if you are able to do this, maybe cover Proxmox VLAN/Firewall rules for stuff? I am 99% sure I have things configured correctly but I often second guess myself. Right now I have nothing exposed externally but I am almost at a point where I will start exposing 1-2 service's externally, so if you're able to cover this topic it would probably really help give me a confidence boost and better understanding. I am really big on security (e.g. isolating networks, devices, only using secure protocols [even on an internal vlan/network], geo-blocking, etc....) so any deep dive into this or networking tips in general for Unifi would be much appreciated!

Would definitely be interested in both a CEPH and/or networking deep-dive :)

Really comprehensive round up and useful to have the diagrammatic representation too, thanks! Would definitely be interested in an entire network walk through. Out of interest what are you using image-wise to run your MacOS Proxmox VM?

yes full network walk through; I'm just learning about vlans

Awesome videos, with good ideas. I would love to see a network deep-dive cause I’m running a similar setup and would want to know, how you manage the network in detail

Got to get that Cloudflare thing setup

One day, I will understand all of the stuff you got going on in your Home Lab, lol. Subbed.

Really amazing setup. I want to know more about your node js. I am playing around with react as well. Thank you for the indepth rundown.

Great video
Love your content

Would love to see a networking deep-dive for sure!

For home security I'm using blue iris on a used Dell R720. The only camera I have right now is a HIkvision PTZ. For only one camera its complete over kill. The goal over time is to add a lot more cameras as I can afford them. a Dell R720 is overkill for only running one service. The catch is it was cheaper than just getting a complete hikvision nvr. The rest of my homelab only consists of an Emby server and a rack mounted desktop computer so far. In the near future I will be adding a dedicated "sailing ship" (if you get my drift) that will be crewed by radarr, sonarr, and prowlarr. NordVpn will be the ships captain. It will dump the contents of each "port of call" onto m emby server on the fly.

Man, I used to rock that exact same dark wood wallpaper for yeaaars. Way back when 4:3 was still the norm

"...to store your anime...." I smile every damn time I hear it! :)

Thanks R.O.

Would love to see a full network setup/walkthrough about to take the plunge into a full Ubiquiti setup.

cool setup gave me a ton of ideas to try out thanks for the video

Nice setup. I might have to see what I can do with localai here, gotta finish rebuilding my proxmox server first but definitely one I'll add to the list.

I don't know about making dreams come true, but I would like to see a network walkthrough.

@15:18 wink wink yaaarr, totally understand the time constraints.

thanks for the vid bro

I’d love to see a video about traffic rules versus firewall rules in Unifi network.

Great set of software! Might be another video, but what led you to using TrueNAS instead of Proxmox's built-in ZFS and doing SMB passthrough through something like a Cockpit LXC? (Been debating this in my own homelab.)

I use Wireguard via my Firewalla to connect back to my network securely. Firewalla makes managing my simple network easy. 😋
My next project will be running CasaOS on a Raspberry Pi 5 when I receive it. I do have more powerful mini-PCs to do this but I want to run everything as low power as possible. 😊

Nice setup

Awesome video. Something I am interested to know is the energy usage of that setup because when people are thinking about home setup, the electricity bill is a serious consideration.

I also went to homarr from heimdall like me
It's solid and it can show some detailed stuff that I didn't have with heimdall

You should look at bypassing the AT&T gateway and replacing it with an sfp in your udm pro

I'd be interested in your r-stack - sonarr, shlink, and "Linux ISO and news articles" downloader

I would like to see an entire network walk-through!

Pterodactyl is great. I run it on one pc dedicated to just that. I hate how when I set it up they didn't have good documentation on how to host both wings and panel (front end and backend) on one pc. I figured it out but it took a bit. Might be better now though.

Great video! Interested in seeing how you setup cloudflare for the web traffic into the lab. I have been thinking to self host couple of websites and synology drive stuff for public sharing with friends but always been held up due to security concerns.

Love your setup and your videos.
Just curious what's your day to day job? Or is it being a UA-camr?

I have a dream to have a setup like this one day

what program did you use to map out your infrastructure? I need to get around doing that for mine. My homelab is getting a tad bit chaotic lol

Can you talk more about openVPN and synology remote backup? I've 2 synology NAS and I'd trouble with quickconnect for ddns, hyperback and tailscale. I want to see if your setup is straightforward

Finally! Awesome video. And yes, make my dreams come true and show us a network walk through

I really liked the graphics that you used to show your VLAN and Software layouts. Can you tell me what graphic software you used?

Please do one of the them there network dives mate

Minor question - Is there a reason you didn't just select multiple networks under "Local Network" such as iOT / Other and block access to all devices instead of creating the same rule for different networks?

You can move traffic rules?

Another inspirational video. Can you describe more about how you’re using local AI?

Solid setup. Although personally I'd go with AdGuard over Pi-Hole and while i haven't used OwnCast, i loathe RTMP from my experience with Frigate early on - there is nothing smoother than WebRTC, so best if it's based off that imo

I'm impressed by those functional/colored block diagrams! Excellent! (How did you make those?)

Curious why you don’t run your ISPs in active / active mode if you’re already load balancing through CF?

Hey, excellent video, but I'd recommend reviewing these VLANs.
Putting cameras and other IoT devices into one VLAN isn't a great idea. Your personal footage is private information. Ideally it should be a dedicated VLAN without Internet access that can write footage to the NVR only (I'd recommend self-hosted BlueIris). Get rid of Reolink external access ASAP.
External VLAN sounds interesting, but it has access to Main VLAN server, so it doesn't make a lot of sense in this VLAN. External VLAN may add security if it contains the web-server and proxy server, so these two are independent and have a very limited access to other VLANs by ports and IPs.

What LAN did you put your local Synology in?

Great video ❤
I’m exploring proxmox for the first time and was wondering how to share the storage pool/dataset from Truenas VM to other VMs and LXCs. Any suggestion please? 🙏🏻

Looks like you're missing ssl certificates for your a lot of internal systems, getting DNS-01 challenge ssl certificates is super easy without needing to open up your server to the Internet, definitely worth looking into.

I think one thing that has always confused me a bit is how you integrate Ceph, alongwith Kubernetes in a hybrid Proxmox/K3S setup. Kubernetes storage is weird and finicky, and I am curious how you use Ceph at the Proxmox level to make it a bit easier. I know you covered a bit of it, but a more in-depth look at this and perhaps HA storage as a whole would be great.

I m curious to know how you route your nextcloud to out of your Lan ?

forgive me but why would you ask if we want a network walk through? duh. I have always wondered what the ui of ubiquity looked like and it looks really good. I really want to know what software you use to show us the infographic of everything in your presentation. I looked through the great list you have and it's probably there? I couldn't figure it out. I have never seen such a clear infographic flow chart and I am constantly trying to learn about networking.

Did I miss a clip of what you’re doing for network and system monitoring?

I'm a fan of running services on separate VMs as well, but I run plex in an lxc container simply because i need transcoding and passing through a gpu to a VM will not allow migration to work since you can't migrate a VM that has hardware pass-through. Lxc containers can be migrated provided the hardware is the same in the proxmox cluster. One downside to this is you can't do live lxc migrations, the container needs to essentially stop, migrate, then start. Better than having extended downtime when doing maintenance or a host fails or something.

wow what a complex network setup, IDK but i personally dont host anything at home that would directly connect to public internet. also i dont do guest wifi cause i dont give guests a wifi access

What exactly is your cloudflare doing besides just load balancing for the dual WAN?

Yeah, I'm thinking I would like to transition my homelab to something very very similar to yours, and some TechnoTim inspiration.

15:18 man I wish you could do a video about what's in my timestamp but it's understandable. A unifi network video would be cool though!

Would like to see a network walk-thru. What are you using for your diagrams?

When you said "Ubuntu desktop running plex", I asked "Why?" at the same time as you XD
I am using an older laptop as a server, using Ubuntu server that runs a file sync with my laptop in case I have to leave home and still have access to files. When setting up, I just used the webUI to set up Plex. Also, I set up my file shares by editing the smb.conf file, but now have switched to using Cockpit. Runs great. Again, why ubuntu desktop ? XD

What bugs are you seeing? I've been using WG on mac from a UDM PRO SE for a year now with no issue. Let me know if I can help. I also have a tailscale backup (and a LT2P backup of the backup just in case).
I have the same vpn client set up (just using expressVPN) and routing the guest network there, smart choice buddy, you never know what they do on your guest network. The only small difference is that I have my guest network completely open, because I'm good at heart :)
I also watch Pirates of the Caribbean on loop...

What about separating smart home (IOT) devices between those that don't need internet access and those who does? Some (me included) name the non-internet Vlan: "NOT" and the internet-enabled Vlan "IOT"

I need some inspiration. I feel like I've done everything I can do with q homelab. Setting up a hack the box kali vm RN. Hopefully that'll spark my interest.

What tool did you use to map your network like that?

The amount of times I paused this video, my finger hurts. Great presentation.

Can you explain in simple terms how do you connect a new device to a particular subnetwork *in advance* before it can make the first "call home" or poll your other devices on the network? How does your answer change if I have a single simple router running OpenWRT?

Into for the fun - meanwhile people with power pricing like in Germany be like 😢
Ah well, people like Wolfgang understand this 😬
Also have to say: it’s kinda wild what some homeland folks are willing to spend time and money on. I’d think 90% is overload, as you said yourself. Anyhow, cool video, thanks for sharing.

Can we get a copy of your network diagram?? I am trying to learn and wrap my head around how it all works and what runs what... Lame but its how I learn sometimes... Also what did you use to create that diagram???

I have a small home server I built but I don't run many cool services since I haven't quite figured out how to port forward from my router. Otherwise I'd probably be running...
Ok tbh I'd be an idiot and try to run to many off my small outdated hardware server lol

i want a fully network setup work through so make it😅

sugguestion. Change your 12 drive pool from 3 x Raidz to 2 x Raidz2. 12TB rebuild could take 5 days and the chance of 2nd drive fail during that time is much higher.

One question that always come to my mind with homelabs is why not use services like AWS or Azure. The companies are going that way would it be cheaper in equipment and electricity. Ok probably less fun because we dont have full control…

Does CEPH need "identical" hardware and does it handle like supercomputer and small NUC? Yeah, yeah wildly over exaggerated, but you get the gist.

What diagram software is that?

As much as this makes my head hurts cause I don’t understand most of it and my current server is just media but definitely cool to learn more about servers and hope to get to tahr point where all this sounds like English to me

Ubuntu 20.04 LTS - Season 1, the best TV Show!

i don't know why my comments are not showing. I was saying instead of NPM, why not trying cosmos cloud ? (and do a review about it ?) it is a new project, but seems good. As NPM seems not to be well maintained (still no news of version 3....)

You should disable GNOME in your Plex VM so it doesn’t use GPU power.
Do systemctl disable gdm
And then reboot or run
systemctl stop gdm
I recommend a reboot but you do you

instead of opening ports why not just get a vps and run your own vpn and then use reverse proxy to expose services and tunnels to browse web - you can close all ports and get a more protected lan with less arduous fw rules - additionally you should probably get dual nas and use 40g point to point - no switch needed plus you have upgrade path to 100g - hopefully you will be able to move to multi gpu ai box at some point and be able to run bigger models - I suspect most of the mkt will wait for prosumer mi300 in 3-4 years with cxl expander - that combo whould really open things up substantially and provide greater economies of scale - you will be able to run models that require 200gb vram with no issues or in other words 3x bigger than where we are today with 70b models

This is where the server gets HUGE…

Can we see your networking process?

Surprised your not using traefik for your prxoy routing considering you have so much services pointing externally

UniFi Camera Proxy

I think this probably cost a lot of money. That’s why I am running EVERYTHING on my optiplex 3010

A better setup would be BOTH WANs active and being used.
Unnecessary to pay for a load balancer if you knew how to do it locally.

ah yes very regular basis!

Omada gang represent

Nice setup. But on Windows server part, you shouldn't have all those roles running together, especially with AD DS, but I bet that's just for a learning 😉

kubernetes isnt complex its flexible

Ha! Using proprietary hardware and software for your trusted backups eh.
A real pro would have at least 2 of them, for when one fails.
Gotta love the overdone systems with 32 CPUs, less than 20% utilization and lots of wasted energy.
I have settled 100% on Truenas Scale, even for storage only (same OS and interface). A tiny bare still, but will get all the features and niceties within the next 2 releases.
Yes, got rid of ESXi and Proxmox, as I want a ONE configuration file, ONE click, FIVE minute, FULL config restore SOLUTION.
Plus I can manipulate the software and database and do everything I want/need.
How long would it take to get a failed Proxmox server working exactly as it was?
Have notes, scripts and time for 100% of the settings?
With TS Scale, started to shutdown the secondary backup machines (where backups only happen in the afternoon) , and all the redundant/backup and backup of the backup machines daily and using the RTC timers to turn them on next afternoon to get the backups and replicate.
Surprised how well it is working and the energy saved.

"glaze over"