Hey r/homelab,
I've got a 3-node Proxmox cluster at home and am gearing up to set up a Proxmox box at a remote site. My main concern is the trustworthiness of the network there, and I want to ensure maximum isolation.
This box will primarily serve as an off-site backup solution and I'll be utilizing Tailscale, since I have zero access to the firewall or router of the remote site network and I'm also behind CGNAT on both sites.
Specifically, I want to configure the Proxmox box (and the iLO4 on my HP ProLiant ML310e Gen8) so that nobody on the remote network can access them.
Any tips or best practices on securing both Proxmox and iLO4 in this context? I'm especially interested in insights on network isolation and additional security measures.
Thanks a bunch for your help!
Does it need to be a fully featured node? If not, then a remote PBS server or borg host could allow for encrypted backups without any access to services or unencrypted data.