As the title says, I want to know the most paranoid security measures you’ve implemented in your homelab. I can think of SDN solutions with firewalls covering every interface, ACLs, locked-down/hardened OSes etc but not much beyond that. I’m wondering how deep this paranoia can go (and maybe even go down my own route too!).

Thanks!

  • @Gooey0210English
    15 months ago

    I’m actually not from the “close everything, don’t open ports, always sit behind cloudflare” camp

    We selfhost so we can use and share our services

    There are other things we can practice instead of just isolationism and keeping everything as simple as possible