Technical Inventory
Technical Inventory
This document details my technical expertise, structured logically from the physical layer up to the application layer.
Navigator
- > 1. Physical Hardware & Environment
- > 2. Infrastructure & Virtualization
- > 3. Platform & Operating Systems
- > 4. Applications & Services
- > 5. Security, Observability & Operations
The focus is on what I have actually worked with, not aspirational or marketing-driven claims.
Experience levels
- π’ comfortable β confident hands-on experience and operational understanding
- π‘ working knowledge β practical usage with ongoing learning
- βͺ basic β limited experience through specific tasks, incidents or migrations
Personal preference
- β€οΈ preferred technologies β tools and platforms I like
1. Physical Hardware & Environment
Compute & Platforms
- π’ x86 server platforms (HP ProLiant, Dell PowerEdge, Lenovo ThinkSystem)
- π’ ARM-based systems (Raspberry Pi, Odroid, etc.)
- π‘ DIY server builds using consumer-grade components
- π’ Component-level troubleshooting (RAM, CPU, PSU)
Physical Networking & Storage
- π’ Rack installation, rail kits, cage nuts, basic datacenter hygiene
- π’ Structured cabling, patch panels, cable management β€οΈ
- π’ Hardware RAID controllers (legacy environments)
- π’ Disk diagnostics (SMART, burn-in testing)
Power & Environment
- π’ UPS systems (sizing, battery maintenance, NUT integration)
- π‘ Basic airflow and thermal management in racks and chassis
Out-of-Band Management
- iDRAC π’ (Dell), iLO π’ (HP), XClarity π‘ (Lenovo)
- π’ Remote console, BIOS/firmware updates, power cycling
- π’ IP-KVM
2. Infrastructure & Virtualization
Networking & Edge
- π’ TCP/IP fundamentals, subnetting, gateways
- π’ VLAN-based segmentation (servers, users, IoT, guest)
- π’ LACP / link bonding
- π’ NAT, port forwarding, basic IPAM
- π‘ Network troubleshooting (
tcpdump,ip,ss,traceroute,dig)
Network Platforms
- π’ MikroTik (RouterOS / SwitchOS)
- π‘ Ubiquiti (UniFi)
- π‘ pfSense (stateful firewalling, rules, aliases)
- βͺ Fortinet, Barracuda, Palo Alto
VPN & Secure Connectivity
- π’ WireGuard β€οΈ (site-to-site, remote access)
- π‘ IPsec / IKEv2
- π‘ OpenVPN
Storage Logic
- βͺ CephFS (conceptual / limited hands-on)
- π’ Btrfs, ext4
- π’ Storage protocols: NFS, SMB, iSCSI, π‘ S3-compatible APIs
- π’ TrueNAS β€οΈ (ZFS-based: mirrors, RAID-Z, datasets, compression, snapshots, replication)
Backup Infrastructure
- π‘ 3-2-1 backup strategy β€οΈ
- π‘ Proxmox Backup Server (datastores, pruning, deduplication)
- π’ File-level backups
- π’ Restore testing and verification
Virtualization & Orchestration
- π’ Proxmox VE β€οΈ (clusters, HA, LXC)
- π‘ KVM / QEMU
- π‘ Hardware passthrough (GPU, NIC, HBA via IOMMU)
- βͺ Kubernetes (homelab / learning)
- βͺ Talos Linux (evaluation)
- π‘ VMware ESXi, Hyper-V (legacy)
3. Platform & Operating Systems
Operating Systems
- π‘ Linux (FOSS-first)
- π‘ Debian / Ubuntu Server β€οΈ
- π’ Manjaro / openSUSE β€οΈ (desktop, rolling-release)
- Windows
- π‘ Server (AD DS, DNS, DHCP basics)
- π’ Desktop (Windows 98 β present)
- Mobile & Other
- π’ Android (rooted environments, custom ROMs)
- π‘ macOS / iOS (user-level support)
Containers
- π‘ Docker & Docker Compose β€οΈ
- π‘ LXC (system containers)
- βͺ Kubernetes fundamentals (pods, services, ingress)
Cloud Compute
- VPS-based infrastructure
- βͺ Public cloud
- AWS
- Azure
- Google Cloud
- π‘ Oracle Cloud
Core Platform Services
- π‘ Web servers: Nginx, Apache
- Reverse proxies: π‘ HAProxy β€οΈ, βͺ Traefik
- π‘ TLS & certificates: Letβs Encrypt, ACME, wildcard lifecycle
- π‘ DNS infrastructure: BIND9, PowerDNS, Cloudflare DNS
- π‘ Datastores: PostgreSQL, MariaDB, Redis, InfluxDB
4. Applications & Services
Corporate & Enterprise Stack
- π’ Microsoft 365 ecosystem
- π‘ PowerShell / Microsoft Graph
- π’ Exchange Online (mail flow, users, groups)
- π’ Entra ID / Azure AD (identity, conditional access basics)
- π’ SharePoint / OneDrive (administration)
- Endpoint & device management
- π’ Intune (compliance, configuration profiles)
- π’ General MDM concepts
- Collaboration & productivity
- π’ Microsoft Teams (administration)
- Security tooling
- π‘ Windows Defender
- π‘ SentinelOne
- Identity & access patterns
- π’ MFA / OTP / 2FA enforcement
- Project & service management
- π‘ Jira (workflows, issue tracking)
FOSS & Self-Hosted Services
- π’ Actively running and maintaining FOSS and self-hosted services to replace proprietary SaaS solutions
- Focus on data ownership, transparency, and long-term maintainability
- IoT integrations
- Local AI experimentation (LLaMA-based models)
5. Security, Observability & Operations
Monitoring & Observability
- π‘ Metrics & visualization: Prometheus, Grafana
- π‘ Infrastructure monitoring: Zabbix
- π’ Uptime checks & status pages: Uptime Kuma / Checkmk
- π‘ Centralized logging (syslog pipelines) / Graylog
- Alerting concepts: π‘ E-mail and π‘ ChatOps notifications β€οΈ (Webhook, Matrix, Telegram, Discord)
Security & Identity
- π’ SSH hardening (Ed25519 keys, no root login)
- π‘ Firewalling strategies
- π’ Fail2Ban, CrowdSec
- π’ Bitwarden β€οΈ / 1Password / KeePass
- π‘ Wazuh
- βͺ HashiCorp Vault
Operational Practices
- π‘ Backup verification and recovery testing
- π‘ Documentation (wikis, runbooks, changelogs)
- π‘ Migration planning and risk awareness
- π‘ Vendor lock-in awareness in tooling and architecture β€οΈ