Featured Work

Projects

Self-hosted infrastructure projects demonstrating cloud computing, containerization, network security, and service orchestration skills applicable to enterprise environments.

Production 2022

Pi-Hole: Network-Wide DNS Security & Ad Blocking

Deployed Pi-Hole on Raspberry Pi 4 as a DNS-based ad blocker and network security layer. This project deepened my understanding of DNS architecture, caching strategies, network traffic filtering, fundamental concepts in cloud networking and security.

Technical Implementation & Skills

  • DNS Architecture: Configured custom DNS resolver with upstream servers and conditional forwarding (directly applicable to Route53/Azure DNS)
  • Network Security: Implemented DNS-level filtering and blocklists for threat protection (similar to AWS Network Firewall/Azure Firewall DNS proxy)
  • Performance Optimization: Tuned DNS caching and query handling to reduce latency across network
  • Monitoring & Analytics: Built dashboards to track DNS queries, blocked domains, and network patterns
  • High Availability: Configured redundant DNS servers for failover and reliability
Pi-Hole DNS Raspberry Pi Linux Network Security Monitoring
Production 2024

Jellyfin: Self-Hosted Media Streaming Platform

Built and maintain a Jellyfin media server for personal media streaming. This project provided hands-on experience with video encoding, transcoding pipelines, storage optimization, and content delivery core concepts used in cloud-based media services and CDNs.

Technical Implementation & Skills

  • Video Encoding & Transcoding: Implemented H.264 and H.265 encoding pipelines with hardware acceleration for efficient media processing
  • Storage Architecture: Designed scalable storage solution with proper backup and retention policies
  • Web Application: Gained experience with web frameworks (React/Angular-based interface) and RESTful APIs
  • Client-Server Architecture: Managed multi-device streaming with adaptive bitrate delivery
  • Performance Tuning: Optimized server resources for concurrent streaming sessions
Jellyfin H.264/H.265 FFmpeg React Storage Media Streaming
Production 2024

Nextcloud: Private Cloud Storage & Collaboration Platform

Built a Nextcloud instance on Ubuntu Server VM as a comprehensive cloud storage and collaboration solution. This project provided extensive experience with cloud computing concepts, data synchronization, and web service deployment—directly applicable to enterprise cloud solutions.

Technical Implementation & Skills

  • Virtual Machine Management: Provisioned and configured Ubuntu Server VM with proper resource allocation and optimization
  • Web Service Deployment: Deployed full LAMP/LEMP stack with Nginx/Apache, PHP, and MariaDB/PostgreSQL
  • Storage & Synchronization: Implemented WebDAV and CalDAV protocols for cross-device data sync
  • Database Management: Configured and optimized database performance for file metadata and user management
  • Security Hardening: Applied server hardening, firewall rules, and two-factor authentication
  • Performance Optimization: Configured caching (Redis/Memcached) and CDN-like delivery for improved performance
Nextcloud Ubuntu Server VM Management WebDAV/CalDAV MySQL/PostgreSQL Nginx
Production 2025

Vaultwarden: Containerized Password Management

Deployed Vaultwarden (Bitwarden-compatible server) in a Docker container as a self-hosted password manager. This project enhanced my understanding of containerization, secrets management, and encryption critical skills for securing applications in cloud environments.

Technical Implementation & Skills

  • Container Security: Hardened Docker container with proper isolation, minimal base images, and security scanning
  • Encryption & Cryptography: Implemented end-to-end encryption with AES-256 and RSA key management
  • Secrets Management: Applied best practices for storing and rotating sensitive credentials
  • Backup & Recovery: Established automated encrypted backup strategy with off-site replication
  • SSL/TLS Configuration: Configured secure HTTPS access with certificate management
  • Docker Management: Managed container lifecycle with Docker Compose for reproducible deployments
Vaultwarden Docker AES/RSA Encryption Security Secrets Management SSL/TLS
Production 2024

Homelab Infrastructure & Networking

Designed and maintain the underlying infrastructure supporting all self-hosted services, including network architecture, storage, and monitoring. This foundational project demonstrates comprehensive systems administration and infrastructure management skills.

Technical Implementation & Skills

  • Network Design: Configured home network with proper segmentation, DHCP, and routing
  • Service Discovery: Implemented local DNS resolution for internal services
  • Reverse Proxy: Set up Nginx/Traefik for unified access to multiple services with SSL termination
  • Monitoring & Logging: Deployed monitoring stack to track system health and performance metrics
  • Backup Strategy: Automated backup solutions with versioning and off-site storage
  • Power & Uptime Management: Configured UPS and automated shutdown/startup procedures
Networking Nginx/Traefik Monitoring Linux Automation Infrastructure