07/01/2023 – present.
Key Technologies:
- Level 1 Hypervisor: Proxmox 7.4-18
- Virtual Machines: PFSense 2.7.2-RELEASE (amd64)
- WAN IP Pass-through: ATT BG-320 Fiber Router/Modem
- Stateful Firewall: PFSense 2.7.2-RELEASE (amd64)
- Intrusion Prevention System: SNORT 4.1.6_17
- PKI Certificate Management
Accomplishments:
- Implemented Dynamic MAC based IP address pass-through to ensure that WAN address is consistently assigned to the PFsense firewall.
- Installed and Configured PFSense Firewall inside of a virtual machine using Proxmox.
- Assigned primary NIC to PFSense firewall ensuring that all WAN traffic enters and exits the firewall.
- Configured firewall LAN interface rules to ensure traffic security and to prevent unnecessary IP address ranges from creating inbound connections to the network.
- Created Management VLAN to allow traffic to Proxmox from specific devices to ensure connectivity should the firewall ever fail or become misconfigured.
- Installed and configured SNORT IPS package to assist with automated traffic analysis and to prevent network intrusions from bad actors attempting to access my network over WAN address.
- Installed and configured ACME certificate management environment to create and manage certificates, enabling HTTPS encryption for sites and services on my network.