Here lies my documentation, will to live and belief in people.

What I wanted to accomplish:

• A video conferencing platform that is locally hosted and managed (meet);
• An authentication service that can accept social platforms (auth);
• A monitoring solution that looks cool (status);

Storytime.

So I had to choose what software I wanted to use, how I could manage certificates, outside access, networking, and automation to a degree. Firstly, my main product of choice was Pexip, more precisely their Infinity. I have worked with that platform in the past, and therefore it was quite easy to plan the infrastructure. My plan was to publish two Dell Precision workstations as ESXi nodes, and run Infinity Management Node as well as Conferencing Node on one of them. The other would be left for other services. For authentication I juggled between Keycloak and Authentik. Finally settled on the first since again, I was more familiar with it 😀 Status page only had one correct choice and that was Uptime Kuma.

In terms of networking, I borrowed a FortiGate 80E to behave as my router/firewall/switch/VPN. That sits behind a Huawei 4G router, that has a static IP. Huawei then does some NAT magic to relay all routing and traffic to FortiGate. Latter picks it up and by the hand of god (firewall policies), routes all the traffic.