[ PATH · HOMELAB · FORTINET · SELF-HOSTING ]

THE HOMELAB PATH_

Build a real network at home — the kind that earns its rack space, teaches you something every week, and quietly handles your DNS, analytics, and Wireguard while you sleep. Five stages, real components, no theatre.

UPDATED 2026-05-22 BY DYLAN DOYLE BURLINGTON, ON

[ WHO THIS IS FOR ]

You want a homelab that does real work — not a YouTube-tour pile of gear that sits idle. You're cool with a single-rack-unit budget, used enterprise hardware, and a CLI. You'd rather learn one production-style stack deeply than rotate through fifteen toy setups. If that's you, this path is the build order I'd follow if I were starting over today.

★ THE FIVE STAGES

Don't try to do everything at once. Each stage builds on the last. A stage gets a green border once its referenced article is marked complete (set on the article page itself).

FOUNDATION — POWER, RACK, CABLES

[ before you spend on flashy gear, fix the boring stuff ]

A homelab without clean power dies on the first thunderstorm. Without labelled cables it dies on the first config change at 11 PM. Spend $150-200 here before you spend a dollar on a router. A UPS, a few quality patch cables, and a small wall-mount or stackable bracket is enough to start.

RESOURCES UPS · cables · rack gear (Amazon affiliate) SOON Article — "$200 homelab foundation"

NETWORK EDGE — A REAL FIREWALL

[ this is the cert-relevant, career-relevant tier ]

The piece that does the most for your skills is the firewall + switch combo at the edge. A used Fortinet 60F gets you NSE-style hands-on with a real enterprise stack. Cisco refurb (2960 + ISR) keeps you closer to the CCNA exam. MikroTik is the budget power-user pick. Pick the one closest to your day job or the next job you want.

ARTICLE Fortinet on a Budget GEAR FortiGate 60F · FortiSwitch · FortiAP

COMPUTE — A LINUX BOX THAT NEVER SLEEPS

[ this is what makes the lab actually useful ]

The lab gets interesting once there's an always-on Linux box running something real. A Raspberry Pi 5 is the easy entry point (Pi-hole, DNS, monitoring). A Beelink mini PC with a Ryzen 5 is the upgrade tier — runs Proxmox, hosts a handful of VMs, never blinks. Don't over-spec. You can always add more later.

GEAR Raspberry Pi 5 · Beelink Ryzen mini PC SOON Article — "Proxmox in 30 minutes"

SELF-HOSTING — RUN YOUR OWN STACK

[ this site is the worked example ]

Apache, Docker, Cloudflare Tunnel, Pi-hole — the four pieces that turn a Linux box into a real platform. The whole site you're reading right now runs on this exact stack. Once Stage 4 is solid you can host anything: a personal site, internal tools, a sandbox for the certs you're studying for, a Wireguard endpoint, a Vaultwarden, whatever.

ARTICLE Self-Hosting a Public Site (Apache + Cloudflare Tunnel)

OPERATE — MONITORING, ANALYTICS, ITERATION

[ the part most homelabs skip — and why most homelabs decay ]

The difference between a homelab that survives and one that gets unplugged in 6 months is whether you can see what it's doing. Privacy-respecting analytics. Service-status dashboards. Log aggregation. Backups you've actually restored from. Stage 5 is what makes the homelab feel like infrastructure rather than a toy.

ARTICLE Self-Hosted Umami Analytics SOON Article — "Homelab monitoring without overkill"

★ WHY EVEN BUILD ONE?

[ THE HONEST ANSWER ]

A homelab is the only way to learn enterprise network engineering without either (a) holding the job, or (b) burning Cisco Modeling Labs hours you don't have. Packet Tracer is great for the CCNA exam. It is not great for "what does an actual firewall do during an actual brownout."

The lab is also the cheapest possible interview prep. "Tell me about a network you've built" is the highest-leverage question in IT interviews, and you can't answer it from textbook knowledge. You answer it by walking the interviewer through your rack.

★ WHAT I'D SKIP

[ DON'T DO THESE, AT LEAST NOT FIRST ]

A second router "just to play with BGP." Pick one router, learn it well, then add complexity.
An expensive 19" rack. A wall-mount or stackable bracket works for the first year.
A NAS as your "first compute" — you'll outgrow it within 3 months when you want VMs.
Fancy network monitoring before you have anything worth monitoring. Stage 5 — not stage 1.
Spending more than $300 in month one. Build incrementally, learn each piece, then add the next.

★ WHAT'S NEXT IF YOU FINISH ALL FIVE

You'll have a real lab. Three places to point it:

Use it for the CCNA — the CCNA Study Hub walks all 53 official topics. Real gear plus Packet Tracer beats either one alone.
Self-host one new thing per month — Vaultwarden, Plex, Wireguard, a private Git server. The lab compounds in value the more you load onto it.
Document it publicly — write up what you built, what broke, what you'd change. It's the single highest-signal portfolio piece a network analyst can have.

[ ★ KEEP GOING ]

▶ START HERE Fortinet on a Budget 15 min · how to source enterprise gear without enterprise money ▶ THE GEAR LIST All recommended hardware UPS · Pi 5 · Beelink · FortiGate · console cables

[ ★ STAGE 1-3 HARDWARE — AMAZON.CA ]

CYBERPOWER UPS ↗ RASPBERRY PI 5 KIT ↗ BEELINK RYZEN MINI PC ↗

Amazon affiliate. UPS = clean power, Pi 5 = always-on Linux box, Beelink Ryzen = the upgrade tier when one Pi isn't enough.