1. Upgrading Hardware

Added memory and hard drive to my home server. The current configuration is: Lenovo ThinkCentre M710q commercial mini PC I3-6100T 32G + 4G 240G SATA MLC SSD 512G NVMe PCIe 4.0 TLC SSD. ESXi base system installed ALMA 9 + 1 Panel running Docker containers Win10 LTSC 2021.

2. Port Mapping I used Sunflower dynamic domain and Synology’s built-in dynamic domain, configured via CNAME to my own 90apt.com domain. Also mapped the router’s external network to the public network.

Then mapped the working port of WG to the external network.

WG works in dynamic domain mode, so I configured it to restart the container daily to prevent WG from failing to recognize after IP changes.

[root@alma9 ~]# crontab -l
00 02 * * * docker restart wg-easy

Also mapped the self-built server of RUSTDESK.

3. Wake-on-LAN BIOS configuration for Wake-on-LAN allows the home server to be powered on through the router after shutdown.

4. Auto Startup Configure auto startup of virtual machines in ESXi

5. Bastion Host Deploy JumpServer bastion host, allowing computers in the local area network to access it, making it simpler

6. Personal Homepage Deploy web containers, create a navigation homepage for internal network navigation

7. Install more containers as needed

8. Leave a backup To prevent WG failures, I installed RustDesk on Win10 to avoid remote handling of faults.

9. Summary To ensure security, the home server operates mainly through WG connected to the internal network.