Securing Remote Proxmox for Off-Site Backup

posted 1 year ago

Hey r/homelab,

I’ve got a 3-node Proxmox cluster at home and am gearing up to set up a Proxmox box at a remote site. My main concern is the trustworthiness of the network there, and I want to ensure maximum isolation.

This box will primarily serve as an off-site backup solution and I’ll be utilizing Tailscale, since I have zero access to the firewall or router of the remote site network and I’m also behind CGNAT on both sites.

Specifically, I want to configure the Proxmox box (and the iLO4 on my HP ProLiant ML310e Gen8) so that nobody on the remote network can access them.

Any tips or best practices on securing both Proxmox and iLO4 in this context? I’m especially interested in insights on network isolation and additional security measures.

Thanks a bunch for your help!

Sort:

Hot Top Controversial New Old

You are viewing a single thread.

View all comments View context

[ - ]

sonnybwson@alien.topOPB

1 point

1 year ago

Thanks for the insights! I’ll consider your advice on a separate secure network and encryption for backups. Your points on limiting access and iLO4 usage make a lot of sense. Appreciate your expertise as I figure this out!

permalink

report

parent

Homelab

!homelab@selfhosted.forum

Create post

Rules

Be Civil.
Post about your homelab, discussion of your homelab, questions you may have, or general discussion about transition your skill from the homelab to the workplace.
No memes or potato images.
We love detailed homelab builds, especially network diagrams!
Report any posts that you feel should be brought to our attention.
Please no shitposting or blogspam.
No Referral Linking.
Keep piracy discussion off of this community

Community stats

9
Monthly active users
1.4K
Posts
6K
Comments

Rules

Community stats

Community moderators