Infrastructure & Security Enthusiast | Building enterprise-grade homelab environments for hands-on learning and skill development
Transforming theoretical IT knowledge into practical, production-ready infrastructure
I'm a systems administrator and security researcher based in Oslo/Lillestrøm, Norway, with a passion for building robust, secure infrastructure. My homelab serves as both a learning platform and a showcase of enterprise-level competencies in networking, virtualization, and security.
Current Focus:
- BMC Helix
- Enterprise homelab infrastructure design
- Defense-in-depth security implementations
- Security research and malware analysis
- Continuous learning and skill development
Proxmox VE ████████████████████ Expert
LXC Containers ████████████████░░░░ Advanced
Docker ███████████████░░░░░ Intermediate
KVM/QEMU ████████████████░░░░ Advanced
OPNsense ████████████████████ Expert
VLANs ████████████████████ Expert
WireGuard VPN ███████████████████░ Advanced
Firewall Rules ████████████████████ Expert
ClamAV ███████████████░░░░░ Intermediate
Bash ████████████████░░░░ Advanced
Python ██████████░░░░░░░░░░ Intermediate
Git ████████████████░░░░ Advanced
Cron/Systemd ███████████████░░░░░ Intermediate
Nginx ███████████████░░░░░ Intermediate
Samba ████████████████░░░░ Advanced
Unbound DNS ███████████████░░░░░ Intermediate
Plex ████████████████░░░░ Advanced
Production-ready automation scripts for homelab infrastructure management.
Highlights:
- ✅ Multi-layered malware detection (ClamAV + file type validation + manual approval)
- ✅ macOS GUI integration for remote server management
- ✅ Real-time monitoring via SwiftBar menu bar plugins
- ✅ Automated backup strategies with rotation
Tech: Bash, zsh, ClamAV, SSH automation, macOS scripting
Academic cybersecurity research on USB-based attack vectors and Discord C2 infrastructure.
Highlights:
- ✅ 60+ page research paper on modern USB threats
- ✅ Comprehensive detection and prevention strategies
- ✅ YARA rules, Sysmon configs, and SIEM queries
- ✅ Ethical framework for security research
Tech: Python, PowerShell, Windows Security, Network Analysis
Note: Educational purposes only - demonstrates both offensive and defensive security skills.
┌─────────────────────────────────────────────┐
│ 7-VLAN Segmented Network │
├─────────────────────────────────────────────┤
│ VLAN 10 │ WAN │ Internet Gateway │
│ VLAN 20 │ LAN │ Trusted Devices │
│ VLAN 30 │ MGMT │ Infrastructure │
│ VLAN 40 │ SERVERS │ Proxmox & Services │
│ VLAN 50 │ IOT │ Smart Devices │
│ VLAN 60 │ VPN │ Media Streaming │
│ VLAN 70 │ GUESTS │ Isolated Network │
└─────────────────────────────────────────────┘
- Firewall: OPNsense with policy-based routing
- Hypervisor: Proxmox VE 9.x
- Network: Zyxel GS1915 managed switches with PoE
- Wireless: LAPAC1750 access points
- Storage: Multi-tier with automated spindown
- Backup: 3-2-1 strategy
- OPNsense - Firewall, VPN gateway, DNS (VM 100)
- Nginx Proxy Manager - Reverse proxy (LXC 101)
- Webserver - Hosting my homepage (LXC 102)
- qBittorrent - Policy-routed through VPN (LXC 103)
- Plex - Media server (LXC 104)
- Netbox - Infrastructure documentation (LXC 105)
- Malware Scanner - ClamAV with quarantine pipeline
** Malware-Safe Download Workflow**
- Three-layer security: ClamAV → File validation → Manual approval
- macOS GUI for remote approval
- Real-time status in menu bar
- Zero trust approach to downloads
** VPN Policy Routing**
- NordVPN WireGuard integration with OPNsense
- Selective routing based on application
- Kill switch for critical services
- Automated failover handling
** Automated Backup System**
- Proxmox host configuration backups
- LXC container snapshots
- Cross-platform automation (Linux + macOS)
- Rotation and cleanup strategies
** Technical Documentation**
- Comprehensive setup guides
- Network diagrams and topology
- Troubleshooting playbooks
- Knowledge base with Markdown
- ITIL
- BMC Helix
- Advanced firewall configurations and threat prevention
- Python for network automation
- Infrastructure as Code (Terraform, Ansible)
- ✅ Linux server management (Debian/Ubuntu)
- ✅ Virtualization platforms (Proxmox)
- ✅ Container orchestration (LXC, Docker)
- ✅ User and permission management
- ✅ System monitoring and logging
- ✅ VLAN design and implementation
- ✅ Firewall configuration (OPNsense, pfSense)
- ✅ VPN technologies (WireGuard, OpenVPN)
- ✅ DNS management (Unbound, Pi-hole)
- ✅ Network troubleshooting and packet analysis
- ✅ Defense-in-depth architecture
- ✅ Malware detection and analysis
- ✅ Network segmentation strategies
- ✅ Access control and authentication
- ✅ Security hardening and best practices
- ✅ Bash scripting for task automation
- ✅ Cron job scheduling
- ✅ Cross-platform scripting (Linux + macOS)
- ✅ Git version control
- ✅ CI/CD concepts
LinkedIn: [www.linkedin.com/in/henning-bakke-437bb8141]
Location: Oslo/Lillestrøm, Norway
"The best way to learn is by doing. Theory teaches concepts, but practice builds competence."
My homelab isn't just a hobby —it's a learning laboratory where I can safely experiment, break things, implement solutions for my home, and build enterprise-level skills that translate directly to professional environments.
Every script I write, every service I deploy, and every problem I solve contributes to a portfolio of real-world experience that goes beyond certifications and coursework.
Development:
- VS Code with Remote-SSH
- Git & GitHub
- Terminal (iTerm2 + zsh)
- SwiftBar for automation
Infrastructure:
- Proxmox Web UI
- OPNsense Dashboard
- SSH for remote management
- Tailscale for secure access
Documentation:
- Markdown for all docs
- Netbox for configurations, relationships, and IP
- BockStack for knowledge base (planned)
- Git for version control
Monitoring:
- Custom SwiftBar plugins
- Netdata (planned)
- Syslog aggregation
- Custom alerting scripts
Passionate about infrastructure. Committed to security. Always learning.
Last updated: February 2026