This Week Progress

This week, I have made little progress on the Homelab 2.0 journey as life kept me busy in other ways.

I mostly brainstormed and made a few decisions that will impact this journey.

1. I will be using a combination of OpenTofu and Ansible for configuring and maintaining the whole mess. I have not used Terraform tech in this context, and my Ansible playbooks have been simple so far.

2. My DNS is on a virtual machine on nuc01, my Proxmox server and since I will eventually decommission this server, I need to move DNS elsewhere, and I will be using an RPI4 basil. This is the first change I am tackling.

3. I have explored the creation of Incus images using Distrobuild or Packer, but I think I am going to stick with modifying existing public images using a combination of OpenTotu and Ansible.

4. I installed the Incus client on my laptop, and I am now able to control my servers directly from there.

5. I have learned about the “End-to-end principle” for networking and I will apply it to my IPv6 addressing plan. There shall not be any fd00::/8 on my network.

6. For private services SSL certificates creation, I am planning on abandonning Step-CA (which is working very well for me) in favor of implementing acme-dns. I want to avoid deploying my own CA while making sure Let’s Encrypt can issue certificates for servers behind my firewall.