Oleh Holdun

oleh@holdun:~$ 

Oleh Holdun

Linux nerd. Infrastructure tinkerer. Open-source advocate. I automate the complex and optimize the hardware, living by the creed of learning through doing.

Kubernetes · Ansible · Terraform · DevOps
(+39) 393 9303980 [email protected] Rome, Italy

// about me

I built my technical skills autonomously and hands-on, starting from an IT and telecommunications diploma and continuing to experiment in my own time. My approach is to understand how things work under the hood, which lets me have a deeper insight of the technologies I use. I run a virtualised ecosystem on Proxmox as a continuous lab: every service I add is a chance to learn something new about networking, security, or automation. I speak native Italian and fluent English (C2). I picked up English early on, partly because of the vastly larger pool of technical resources it unlocks. I am looking for a company where I can grow into a reliable technical reference.

// skills

Linux Debian Ubuntu Arch Linux Proxmox VE Docker LXC
Nginx Cloudflare DNS DHCP SSH TCP/IP Firewall Subnetting
Prometheus Grafana
Bash Python Git Vim systemd Java
Kubernetes Ansible Terraform

// self-hosted infrastructure

HP ELITEDESK 800 G5 i5-9600T · 16 GB DDR4 · 512 GB SSD RASPBERRY PI 3 Pi-hole, local DNS resolver PROXMOX VE — HYPERVISOR Manages VMs and LXC containers UBUNTU SERVER VM Nginx · Prometheus · Grafana cAdvisor · node_exporter Cloudflare tunnel LXC CONTAINER Uptime Kuma Isolated from the VM, monitors if VM goes down CLOUDFLARE TUNNEL + ZERO TRUST TLS terminated by Cloudflare · OTP on protected services holdun.me Landing page · /cv monitor.holdun.me Grafana, Zero Trust OTP status.holdun.me Uptime Kuma, public

Virtualised infrastructure with self-hosted services

Ecosystem on Proxmox VE with deliberate VM/LXC separation: if the VM goes down, the monitoring container stays up and pinpoints the issue. Nginx reverse proxy with Cloudflare Zero Trust tunnel for secure public exposure. Full observability stack with Prometheus, Grafana, node_exporter, and cAdvisor. Ongoing project. Next steps: Ansible for configuration-as-code and a test Kubernetes cluster.

↗ status.holdun.me, public status page

// hardware & personal

Server running the infrastructure
HP EliteDesk 800 G5 Intel i5-9600T 16 GB DDR4 512 GB SSD

A second-hand enterprise workstation, reconditioned and reconfigured from scratch. Understanding layer 0, the physical machine, before installing software on top is part of how I approach technology.

Personal PC self-built
AMD Ryzen 7 5700X3D ASUS GeForce RTX 4060 32 GB DDR4 Antec P380 DeepCool Phantom Spirit 120 2 TB HDD 1.5 TB SSD

Built from scratch: component selection, cable management, BIOS tuning, OS install. Assembling your own machine gives you a level of understanding of hardware behaviour that pre-builts never do.

Interests

Hardware fanatic: mechanical keyboards, following GPU and CPU release cycles, keeping up with silicon news. Calisthenics and snowboarding: activities that require discipline, gradual progression, and tolerance for failure. The same qualities that come in handy when something still doesn’t work on the third configuration attempt.