Skip to content

drzerk/Cybersecurity-map-

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Homelab Security Map v2

Diese Version ist deutlich umfangreicher und enthält mehr echte Homelab-Bausteine:

  • Router / Firewall / VPN
  • VLANs / Zonen
  • Reverse Proxy / SSO / DNS
  • Docker / Hypervisor / Storage
  • Monitoring / Logging / Backups
  • AI / Lab Node
  • IoT / Kamera / Gäste
  • Angriffsmodell / Defense Layers

Schnellstart

  1. Neues GitHub-Repository anlegen
  2. ZIP lokal entpacken
  3. Den entpackten Inhalt ins Repo hochladen
  4. README.md auf GitHub öffnen

GitHub rendert die Mermaid-Diagramme direkt.

Große Gesamtübersicht

flowchart TB
    Internet((Internet))
    Internet --> ISP[ISP / ONT / Modem]
    ISP --> Router[Router]
    Router --> Firewall[Firewall / Gateway]
    Firewall --> VPN[WireGuard / OpenVPN]
    Firewall --> VLAN10[Trusted VLAN]
    Firewall --> VLAN20[Server VLAN]
    Firewall --> VLAN30[IoT VLAN]
    Firewall --> VLAN40[Guest VLAN]
    Firewall --> VLAN50[Management VLAN]
    Firewall --> VLAN60[Camera VLAN]
    Firewall --> DMZ[DMZ]

    subgraph DMZ_ZONE["DMZ"]
        ReverseProxy[Traefik / NPM / Caddy]
        Auth[Authelia / Authentik]
        PublicDNS[Authoritative DNS]
        MailRelay[Mail Relay]
        RemotePortal[Remote Portal]
    end

    subgraph TRUSTED["Trusted VLAN"]
        AdminPC[Admin PC]
        Laptop[Laptop]
        Mobile[Mobile Devices]
    end

    subgraph SERVERS["Server VLAN"]
        Hypervisor[Proxmox / Hypervisor]
        DockerHost[Docker Host]
        NAS[NAS / Storage]
        GitService[Gitea]
        Nextcloud[Nextcloud]
        Paperless[Paperless]
        Jellyfin[Jellyfin]
        Homebox[Internal Tools]
    end

    subgraph IOT["IoT VLAN"]
        HA[Home Assistant]
        MQTT[MQTT Broker]
        Zigbee[Zigbee Coordinator]
        ESP[ESPHome Devices]
        Media[Smart TV / Media]
        Printer[Printer]
    end

    subgraph GUEST["Guest VLAN"]
        GuestClients[Guest Devices]
    end

    subgraph MGMT["Management VLAN"]
        Switches[Managed Switches]
        APs[Access Points]
        Controller[UniFi / Controller]
        IPMI[IPMI / iDRAC / iLO]
        UPS[UPS / PDU]
    end

    subgraph CAMERA["Camera VLAN"]
        NVR[NVR]
        Cameras[IP Cameras]
    end

    subgraph CORE["Core Services"]
        DNS1[Internal DNS]
        DHCP[DHCP]
        NTP[NTP]
        LDAP[LDAP / SSO]
        PKI[PKI / Certificates]
        Secrets[Vault / Secrets]
    end

    subgraph OBS["Monitoring / Logging"]
        Prom[Prometheus]
        Grafana[Grafana]
        Loki[Loki]
        Syslog[Syslog]
        SIEM[Wazuh / SIEM]
        Uptime[Uptime Kuma]
        Alerts[Alertmanager]
    end

    subgraph BACKUP["Backup / Restore"]
        BackupServer[Backup Server]
        Snapshots[Snapshots]
        Restic[Restic / Borg]
        Offsite[Offsite Copy]
    end

    subgraph AI["AI / Lab"]
        GPU[GPU Node]
        Ollama[Ollama]
        OpenWebUI[Open WebUI]
        VectorDB[Vector DB]
    end

    TRUSTED --> ReverseProxy
    TRUSTED --> DNS1
    TRUSTED --> Grafana

    ReverseProxy --> Auth
    ReverseProxy --> GitService
    ReverseProxy --> Nextcloud
    ReverseProxy --> Paperless
    ReverseProxy --> Jellyfin
    ReverseProxy --> OpenWebUI

    Hypervisor --> DockerHost
    DockerHost --> GitService
    DockerHost --> Nextcloud
    DockerHost --> Paperless
    DockerHost --> Jellyfin
    DockerHost --> Homebox
    DockerHost --> Prom
    DockerHost --> Grafana
    DockerHost --> Loki
    DockerHost --> Uptime

    SERVERS --> CORE
    SERVERS --> OBS
    SERVERS --> BACKUP
    SERVERS --> AI

    IoT --> HA
    HA --> MQTT
    MQTT --> Zigbee
    IOT --> DNS1

    MGMT --> OBS
    CAMERA --> NVR
    NVR --> NAS
    BackupServer --> NAS
    BackupServer --> Offsite
    AI --> OBS
Loading

About

No description, website, or topics provided.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

 
 
 

Contributors