●
compute
hypervisor
VMware vSphere — two-node cluster, mini-PCs
node_01
Intel NUC 12 — i7, 64GB ECC DDR4, 1TB NVMe
node_02
Intel NUC 12 — i7, 64GB ECC DDR4, 1TB NVMe
total_ram
128GB ECC
vms_running
15 — mix of NixOS, Ubuntu, Windows
orchestration
k3s — single-node Kubernetes, because why not
guest_os
NixOS — declarative, reproducible, occasionally infuriating
●
storage
primary_nas
Synology DS923+ — 4-bay, raidz2 equivalent
capacity
12TB usable after parity
protocol
NFS + iSCSI — 1.0TB iSCSI for VMs, NFS for the rest
secondary
TrueNAS Scale — older machine, backup target + ZFS snapshots
backups
Restic — local → NAS → cold storage. 3-2-1. Tested occasionally.
●
network
firewall
Fortigate 60F — gateway, IPS, SD-WAN
switching
Ubiquiti USW-Pro-24-PoE — 24-port managed
wifi
Ubiquiti U6-Pro x2 — whole-house coverage, unifi controller
vlans
4 production, 4 experimental — IoT, lab, DMZ, mgmt, more
uplink
1Gbps fiber — symmetric, into the meterkast
dns
Pi-hole + Unbound — recursive, local overrides, no cloud
●
services
proxy
nginx — DMZ reverse proxy, TLS termination
git
GitLab CE — private repos, CI/CD, container registry
home_automation
Home Assistant — 138 devices, zigbee, z-wave, mqtt, wifi
ipam
Netbox — IP management, rack diagrams, cable tracking
documents
Paperless-ngx — scanned, OCR'd, searchable
observability
Prometheus + Grafana + PRTG — metrics, dashboards, alerts
misc
Vaultwarden, Jellyfin, Nextcloud — the classics
●
workstation
machine
MacBook Pro M3 — main driver, 18GB
os
macOS + WSL2 on a Windows box — depending on the task
editor
VS Code — with too many extensions, as god intended
terminal
WezTerm — JetBrains Mono, dark, no nonsense
shell
zsh + starship — minimal prompt, lots of aliases
monitor
LG 27" 4K — nothing exotic