Windows Server 2019 | Hands-On Virtual Lab
I needed better understanding.
While working on this project, I set up a complete virtualized Active Directory (AD) environment using VirtualBox and Windows Server 2019. This project took just over 2 months to “complete”. I leveraged linked clones and enabled remote desktop protocol (RDP) for efficient remote management. I added Windows 10 client machines to the domain in separate VLANS and used PowerShell to script the creation of 1000 user-accounts. This aided me in gaining hands-on experience with adjusting user properties and creating purposeful organizational units.
Through domain configuration, I was successfully able to apply my knowledge of TCP/IP settings, and enabled remote desktop management. To further my understanding of AD, I played around with Group Policy Objects (GPOs) and linked them in my Active Directory environment, which gave me valuable experience in centralizing management and enforcing security settings across the domain.
To go one step further, and to build off of my understanding of Azure, I decided to use this opportunity to learn how to set up Azure AD Connect, achieving a hybrid AD setup across my VMs. This allowed me to connect the systems together through SSO, or Single Sign on, with password hash synchronization.
This project contained a LOT of firsts for me, some frustration and trial and error, however, this provided me with skills that I would not have otherwise had. This includes skills in domain management, group policy, and hybrid cloud integration, preparing me for future roles in system administration and beyond.
Pi-Hole (DNS Black Hole) | Built and Hosted Ad-Blocker
I got tired of those pesky YouTube ads.
The purpose of this project was to put an end to those ads without paying :). I did this by referring to some public documentation and setting up and configuring a DNS Black Hole hosted on a small computer called a Raspberry Pi.
Over the course of a month, I gained valuable hands-on experience with DNS management.
The Pi-Hole acts as the primary DNS server for my home network. Connecting to the web interface of the Pi via static IP, I can monitor network traffic in real time and manage blocklists, all while allowing the content I DO want to come through my network.
To automate maintenance, I set up regular blocklist updates, ensuring ongoing protection from new threats without manual intervention. I also enhanced the security of my Pi-Hole setup by implementing DNS-over-HTTPS (DoH), which encrypts DNS queries and helps prevent hijacking of my network traffic or other prying eyes.
This project provided me with in-depth knowledge of DNS protocols, network filtering, and security practices. It improved the performance of my home network by reducing unwanted traffic and deepened my expertise in maintaining secure, efficient, and privacy-conscious network environments. These skills are directly applicable to future roles in systems and network administration.
PLEX Server | Hosted Media Server
I wanted to interact with my media anywhere.
Getting into computers, you begin to amass a collection of media. Movies, shows, music, photos — the list goes on. I found myself continually going through hard drives storing all of this junk. This limited how I could interact with the media as, most of the time, I wouldn’t have access to my personal computer.
Enter: PLEX media server.
I built the server using a dedicated machine running Plex Media Server software, installed on a network-attached storage (NAS) device to provide ample storage for my movie library. I organized and tagged the movie files with metadata for easy browsing and configured the server for secure remote access, allowing streaming outside my home network.
Additionally, I implemented user access controls, optimized the server settings for efficient streaming and transcoding, and gained hands-on experience with video encoding formats, learning how different file types and compression methods affect streaming performance.
This project enhanced my skills in server setup, network configuration, and media management and gave me a pretty cool method to stream all of my acquired content.
