Firman.
Back to Projects

Self-Hosted Multi-VLAN Infrastructure

Role: IT Infrastructure Engineer

Duration: Jan 2026 - Present

Overview

Built and maintain a self-hosted multi-VLAN environment running 6-10 services on repurposed hardware.

Technical Details

  • Migrating 6-10 services to self-hosted infrastructure on repurposed hardware, reducing operational costs by 90% with no loss of availability.
  • Designed Virtualized Router on a stick (ROAS), 5-VLAN segmented network (admin, services, DMZ, IoT, monitoring) with MikroTik inter-VLAN routing and trunking, enforced by OPNsense firewall rules and least-privilege access control.
  • Achieved zero unplanned outages over 3 months of continuous operation across all services, supported by real-time observability through a Prometheus + Grafana monitoring stack.
  • Configured NAT, DNS, port forwarding, and Nginx reverse proxy to expose internal services securely without direct infrastructure exposure.

Image Gallery

Gallery image 1
Gallery image 2
Gallery image 3

Core Technologies

Proxmox
Proxmox
MikroTik
MikroTik
OPNsense
OPNsense
Prometheus
Prometheus
Grafana
Grafana
Nginx
Nginx
Docker
Docker

Key Results

  • 90% Cost Reduction
  • 5-VLAN Segmentation
  • 0Unplanned Outages