https://heezy.blog/tags/fortigate/Recent content in Fortigate on heezy.blogHugoen-usThu, 12 Mar 2026 00:00:00 +0000https://heezy.blog/posts/networking-vlans-and-firewall/Thu, 12 Mar 2026 00:00:00 +0000https://heezy.blog/posts/networking-vlans-and-firewall/<p>The network is the foundation of everything in the lab. Four VLANs, a FortiGate doing all the routing, a Cisco 3560 doing the switching, and a set of rules about what can talk to what. This post covers how it&rsquo;s all wired together, how DNS works across zones, and how remote access gets in without exposing anything to the internet.</p>https://heezy.blog/posts/tailscale-remote-access/Tue, 10 Feb 2026 00:00:00 +0000https://heezy.blog/posts/tailscale-remote-access/<blockquote> <p><strong>🚧 UNDER CONSTRUCTION 🚧</strong> This post is a work in progress.</p> </blockquote> <h2 id="the-problem">The Problem</h2> <p>I need to reach into my home network from anywhere. SSH into nodes, check Grafana dashboards, access services that aren&rsquo;t exposed through Cloudflare. The traditional answer is a VPN, and I have a FortiGate sitting right there with IPSec and SSL VPN capabilities built in.</p>https://heezy.blog/posts/terraform-ansible-automation/Sat, 20 Dec 2025 00:00:00 +0000https://heezy.blog/posts/terraform-ansible-automation/<p>This is the story of taking a homelab that was 100% manually configured and turning it into something where every change is a git commit, every deployment is a GitHub Actions run, and I never SSH into a box to make a &ldquo;quick fix&rdquo; again. It took a lot of hours, a lot of broken credential chains, and one memorable incident where I leaked secrets because of echo output. But it works now, and it works well.</p>