Seth Stemen

Homelab

Project Summary

I created a simulated network environment in VirtualBox that mimics a small office environment. This lab involves an Active Directory Domain Controller, DNS server, and DHCP server as part of a base layer. After creating this initial setup, I implemented Wazuh as a Security Information and Event Monitoring (SIEM) solution to log anomalous network behavior. This setup was further extended by segmenting the network into three distinct zones: internal, untrusted, and DMZ (Demilitarized Zone). Lastly, I installed pfSense to act as a firewall and router in the center of my network. The pfSense VM has access to each network zone, and uses a set of firewall rules to dictate the flow of traffic on the network. My pfSense installation has also been configured to send log data to my Wazuh SIEM, so all firewall security events are displayed on the Wazuh dashboard according to Wazuh’s predefined alert rules.

Project Reports

This project is currently still being developed, with progress being shared in multiple progress reports on my blog.

  • Building and Securing a Homelab – Segmentation and Implementing a Firewall

    Building and Securing a Homelab – Segmentation and Implementing a Firewall

    Introduction In the first installment of this series, I detailed how I went about creating my virtual network and implementing Wazuh as a SIEM to help me monitor security events on my network. Additionally, I performed a penetration test on the network and looked for indicators of compromise to see what I should be looking…

  • Building and Securing a Homelab – Initial Creation and Adding a SIEM

    Building and Securing a Homelab – Initial Creation and Adding a SIEM

    Introduction Around a year ago I started on a small project that would allow for me to play around with networking in a way that was very beneficial to me: remote file and terminal access while I was outside of my home network. The way that I implemented this was quite simple, using a Raspberry…

Tech Stack

  • VirtualBox
  • Windows Server 2016
    • Active Directory Domain Services (AD DS)
    • DHCP
  • Wazuh
    • Security Information and Event Monitoring (SIEM)
    • Extended Detection and Response (XDR)
  • pfSense Firewall
    • Firewall management
    • Wazuh Integration
      • Syslog collection and forwarding