Projects

Featured Projects 🏠✨

Where “production-ready” means “it stayed up while I made tea.”

Proxmox HA Cluster 🖥️🔗

Multi-node Proxmox VE cluster with high availability for core workloads: automatic restart/migration semantics when a node misbehaves, shared operational patterns for VMs and LXCs, and a sane split between “lab chaos” and “please don’t die during dinner.” (HA: because rebooting the wrong host is a personality trait I’m trying to retire.)

Key ideas:

  • Quorum & HA groups: Services that matter stay scheduled where the cluster can recover them
  • VMs / CTs: Homelab services run as first-class guests with snapshots and backups in mind
  • Networking: Linux bridges and VLAN-aware design so storage and client traffic stay orderly
Stack
Proxmox VEHA clusterQEMU/KVMLXCLinux bridgesVLANs

Home DNS & Ad-Blocking – Pi-hole (HA) & Unbound 🕳️🛡️

Self-hosted DNS with high-availability Pi-hole: redundant instances, synchronized filtering policy, and resilient resolution so ad-blocking and DNS filtering survive a single host or container hiccup. Unbound stays upstream as the recursive resolver for privacy and performance. The wider setup still covers DHCP and NTP locally—complete control over naming, time, and “why did that device phone home twelve times?” (Pi-hole HA: one node naps; the other judges your IoT.)

Key Features:

  • Pi-hole (HA): Redundant DNS filtering, shared/consistent blocklists, and uninterrupted query handling across nodes
  • Unbound: Recursive resolver upstream of Pi-hole, minimizing reliance on third-party DNS
  • Local DHCP: Centralized IP assignment and sane device naming
  • NTP: Local time sync so logs and certificates don’t argue with reality
Stack
Pi-holeHA / redundancyUnboundDHCPNTPUnraidDocker

Media Library Automation & Metadata Management 🎬📚

Built a self-hosted media management stack for legally owned and open-content media. Automated metadata organization, request handling, alerts, and service monitoring using Docker, Jellyfin, custom scripts, and Telegram API integrations. (The stack is boring on purpose so recruiters don’t side-eye the hobbies section.)

Stack
DockerJellyfinCustom scriptsTelegram API

Jellyfin Dashboard

Subtitles, Hebrew (עברית) & Local AI – Bazarr + Whisper 🎧🤖

Bazarr orchestrates subtitle workflows for the same legally owned / open-content libraries—picking up missing captions, normalizing releases, and keeping RTL / Hebrew (Ivrit) text usable end-to-end. On top of that, a local Whisper pipeline handles speech-to-text and translation-style passes on-prem: no cloud STT roulette, predictable latency, and full control over models and retention. AI-assisted rules (providers, scoring, retries) reduce manual babysitting; the boring stuff stays automated, the interesting accents stay local.

Stack
BazarrOpenAI Whisper (local)Hebrew / RTL subtitlesAI-assisted matchingDocker

Nextcloud – Files, Sync & Collaboration ☁️📁

Self-hosted Nextcloud for file sync, sharing, and day-to-day collaboration—photos, documents, and device backups living on infrastructure I operate, not a random free tier with surprise ToS updates. Tied into the same reverse-proxy and TLS story as the rest of the lab, with sensible quotas, app ecosystem, and mobile/desktop clients so “I’ll grab it from the server” actually works.

Stack
NextcloudMariaDBRedisSSL/TLSDockerNginx Proxy Manager

Secure Reverse Proxy & Web Hosting 🔒🌐

Configured Nginx Proxy Manager with SSL/TLS for authenticated access to self-hosted services. Hosted Hugo and WordPress sites with Dockerized services, database backend, HTTPS, and security-focused access controls. (Little padlock icons: not just for browsers, also for peace of mind.)

Stack
Nginx Proxy ManagerSSL/TLSDockerWordPressMariaDBHugo

Monitoring & Alert System – Bezel, Dozzle, Monitee, Unraid Email Alerts 👀📧

Comprehensive monitoring and alerting setup for homelab and self-hosted services. Because nothing says “I’m fine” like three dashboards and an email at 3 a.m.

  • Bezel: Real-time status dashboard for all services and containers.
  • Dozzle: Live Docker container log viewer for troubleshooting and quick diagnostics.
  • Monitee: Lightweight monitoring for service uptime and health checks.
  • Unraid Email Alerts: Automated notifications for system events, disk health, and failures.
Stack
BezelDozzleMoniteeUnraid Email AlertsDocker

Bezel Dashboard

Centralized Monitoring & Visualization 📊🔥

Deployed Grafana, Prometheus, cAdvisor, Node Exporter, and custom exporters to monitor container health, system performance, service uptime, bandwidth, and transfer metrics. Built dashboards for operational visibility, troubleshooting, and alerting. (If a metric exists and nobody Grafana’d it, did it even spike?)

Stack
GrafanaPrometheuscAdvisorNode ExporterCustom exportersDocker

Real-Time Web Analytics – GoAccess for Hugo Website 📈📝

Integrated GoAccess for real-time web analytics on the Hugo static site. Parses web server logs to provide insights into traffic, visitor behavior, and performance. The setup leverages NPM scripts for automation and report generation, enabling easy updates and integration with the static site workflow. (Finally: proof that someone besides me loaded the page. Hi, bot. Hi, me.)

Stack
GoAccessHugoNPM

GoAccess Analytics

Other Homelab Projects 🧪

  • Authenticated remote access to self-hosted services (VPN’s responsible cousin)
  • Network segmentation and firewall testing (“default deny” is a lifestyle)
  • Self-hosted automation tools (click less, nap more)
  • HA-aware service layout (Pi-hole + Proxmox: fewer single points of “why is DNS sad?”)

Commented Sections