System Engineer for Hybrid Cloud and Homelab enthusiast.https://woitzik.dev/https://woitzik.dev/blog/nis2-article-21-azure-terraform/https://woitzik.dev/blog/nis2-article-21-azure-terraform/A technical deep-dive into the network security requirements of NIS2 Article 21 and how to implement them in Azure using Terraform — with concrete code, not legal theory.Sun, 17 May 2026 00:00:00 GMThttps://woitzik.dev/blog/azure-rag-shared-private-link-automation/https://woitzik.dev/blog/azure-rag-shared-private-link-automation/How to programmatically approve Azure AI Search Shared Private Links using AzAPI, and why your AI architecture will fail an audit without proper Identity Chaining.Sat, 16 May 2026 00:00:00 GMThttps://woitzik.dev/blog/k3s-authelia-proxmox-homelab/https://woitzik.dev/blog/k3s-authelia-proxmox-homelab/How to build a production-grade Kubernetes homelab with K3s, Authelia SSO, Longhorn storage, and ArgoCD — and the five painful mistakes that will cost you hours if you don't know about them.Sat, 16 May 2026 00:00:00 GMThttps://woitzik.dev/blog/azure-firewall-cycle-error/https://woitzik.dev/blog/azure-firewall-cycle-error/How to implement Azure Firewall Forced Tunneling in Terraform without triggering cycle errors, and why a simple 0.0.0.0/0 route will instantly break your Windows VMs.Thu, 07 May 2026 00:00:00 GMThttps://woitzik.dev/blog/enterprise-homelab-architecture-ansible/https://woitzik.dev/blog/enterprise-homelab-architecture-ansible/Take a tour of a fully automated, segmented, and highly available homelab architecture orchestrated entirely via Ansible and GitOps.Wed, 06 May 2026 00:00:00 GMThttps://woitzik.dev/blog/mikrotik-wireguard-vpn-terraform/https://woitzik.dev/blog/mikrotik-wireguard-vpn-terraform/Deploy a WireGuard VPN on MikroTik using Terraform. Learn how to implement role-based network access, isolating mobile devices from full admin laptops.Tue, 05 May 2026 00:00:00 GMThttps://woitzik.dev/blog/mikrotik-vlan-filtering-terraform-proxmox/https://woitzik.dev/blog/mikrotik-vlan-filtering-terraform-proxmox/Master MikroTik's notoriously complex Bridge VLAN Filtering. Learn how to automate dynamic VLAN matrices, Proxmox trunk ports, and edge devices using Terraform.Mon, 04 May 2026 00:00:00 GMThttps://woitzik.dev/blog/mikrotik-zero-trust-firewall-terraform/https://woitzik.dev/blog/mikrotik-zero-trust-firewall-terraform/Learn how to enforce strict VLAN isolation, fast-track traffic, and build a default-deny firewall for MikroTik RouterOS using Infrastructure as Code.Sun, 03 May 2026 00:00:00 GMThttps://woitzik.dev/blog/azure-terraform-hub-spoke-zero-trust/https://woitzik.dev/blog/azure-terraform-hub-spoke-zero-trust/How to build an enterprise-grade Azure network architecture that blocks internet traffic by default and survives aggressive DeployIfNotExists (DINE) policies — without breaking your CI/CD pipeline.Sun, 03 May 2026 00:00:00 GMThttps://woitzik.dev/blog/deploying-gemma-proxmox-iac/https://woitzik.dev/blog/deploying-gemma-proxmox-iac/A complete guide to automating a local AI stack on Proxmox LXC using Terraform and Ansible, including Open-WebUI and AMD Radeon Vega iGPU workarounds.Sat, 02 May 2026 00:00:00 GMThttps://woitzik.dev/blog/hardening-azure-acmebot-iso27001/https://woitzik.dev/blog/hardening-azure-acmebot-iso27001/A deep dive into architecting a Zero-Trust Let's Encrypt automation using Terraform, Azure Private Link, and VNet Integration.Fri, 01 May 2026 00:00:00 GMThttps://woitzik.dev/projects/homelab/https://woitzik.dev/projects/homelab/Hybrid Cloud environment with Proxmox, Azure Arc and MikroTik.Tue, 24 Mar 2026 00:00:00 GMT