As the title says, I want to know the most paranoid security measures you’ve implemented in your homelab. I can think of SDN solutions with firewalls covering every interface, ACLs, locked-down/hardened OSes etc but not much beyond that. I’m wondering how deep this paranoia can go (and maybe even go down my own route too!).

Thanks!

  • shadowintheday2@lemmy.world
    link
    fedilink
    English
    arrow-up
    41
    ·
    9 months ago

    My most paranoid config is disabling Ipv4

    That’s it. If someone wants to attack me, they will need to adopt IPv6!

    • dan@upvote.au
      link
      fedilink
      English
      arrow-up
      10
      ·
      9 months ago

      they will need to adopt IPv6!

      And find your IP in a /56 or /64 range (depending on what your ISP gives you). Good luck.