Journal

Build log and structured timeline of large projects versus side work.

// 01

BLOG

2025-12-01

2025 Cybersecurity principles, SIEM, and UniFi backbone

Formalized how I think about security at home: least privilege, segmentation, and visibility not just "more boxes," but defensible architecture.

Stood up a SIEM-style stack to surface anomalies across connected devices: centralized signals, correlation, and a mindset closer to what I'd expect in an enterprise SOC conversation.

Folded Ubiquiti into the design UCG, managed switch, and AP so Wi‑Fi, routing, and policy feel like one fabric instead of a pile of one-off consumer routers.

2024-12-01

2024 Pro printers, G-code R&D, and first Kubernetes / HA iteration

Spent serious time in the professional FDM world: Ultimaker and Bambu Lab ecosystems, additional vendor hardware where it mattered, and deep work on G-code generation, tuning, and research not only "does it print," but why failures happen.

That year also marked the first real push into Kubernetes at home: not a toy cluster, but patterns I could explain in an interview availability, workloads, and how I'd run services I actually care about.

2022-12-01

2022 Cloudflare integration: proxying, domain, and DNS

Moved public-facing concerns behind Cloudflare: reverse proxy, DNS, and domain management in one place.

That shift made TLS, caching, and routing easier to reason about and set the stage for later zero-trust and tunnel work without redoing the whole naming story.

2020-12-01

2020 HBA DAS, TrueNAS, RAID, and Tailscale for data paths

Outgrew "a disk in a box": added an HBA-backed DAS, stood up TrueNAS, and started treating storage like infrastructure pools, redundancy with RAID, and containers for services instead of snowflake installs.

Began thinking in terms of data sovereignty and aggregation: one place data lands, clear backups, and utilization across workloads instead of silos.

Used Tailscale early as a safe funnel for remote access encrypted overlays before I had the full Cloudflare Tunnel story nailed down.

2019-12-01

2019 First home lab: Linux CLI, Pi-hole, Jellyfin, and the *arr stack

Started on a laptop with the Linux CLI as the daily interface no GUI crutch, just learning how systems actually behave.

Stacked network and media services the classic homelab way: Pi-hole for DNS-level blocking, Jellyfin for streaming, and the *arr suite for library automation.

Looking back, it was the seed of everything later: curiosity about uptime, dependencies, and "what breaks when I change one thing."

// 02

TIMELINE

Large-scale projects

2026

AWS Serverless Platform

Serverless ingestion pipeline: API Gateway, Lambda, S3, CloudWatch — full Terraform IaC with OIDC CI/CD.

AWS repo →

2026

GxP BioInfra Platform (milestone)

GxP-aligned Kubernetes architecture and virtual lab for bioinformatics: GitOps, policy-as-code, observability, IQ/OQ/PQ-style documentation — PH-00–01 complete on Talos; PH-02 Authentik SSO and PH-03 MinIO in progress (status reconciled 2026-05-14).

Project page →

2025

Security telemetry & UniFi fabric

Cybersecurity practice, SIEM-oriented monitoring for anomalies across devices, Ubiquiti UCG + switch + AP for cohesive routing and Wi‑Fi.

2024 present

Home lab IaC & observability

Terraform, Ansible, Docker Compose, Prometheus/Grafana, Cloudflare Tunnel codified in Git.

Infra repo →

2024

Pro FDM & first Kubernetes / HA

Ultimaker, Bambu Lab, multi-vendor G-code development and research; first home Kubernetes iteration with availability in mind.

2022

Cloudflare at the edge

Proxying, domain ownership, and DNS management through Cloudflare foundation for later tunnel and zero-trust work.

2020

TrueNAS, DAS, and Tailscale

HBA DAS for capacity, TrueNAS with RAID for redundancy, containerized services, data sovereignty and aggregation, Tailscale for secure remote access.

2019

First home lab

Linux on a laptop (CLI-first), Pi-hole, Jellyfin, and the *arr suite the original "services I run myself" moment.

Side projects

ongoing

Heritage 3D scanning & model repair

3D scanning of historical artifacts, mesh cleanup and modeling for preservation workflows, and outputs aimed at cultural awareness not just geometry, but context.

ongoing

Fabricode

FDM/SLA fabrication business client delivery and production ops.

ongoing

Live CV (this site)

Cloudflare Worker, live Grafana panels, GitHub API enrichment.