Network Deployment Playbook & Script Library — OPNsense Proxmox TrueNAS UniFi — Fixed Fee Build

Posted 2 weeks ago

Worldwide

Needs to hire 3 Freelancers
Summary

About Wiicco Wiicco is a US-based professional network engineering and managed services company. We deploy secure enterprise-grade networks for small and medium businesses. We are building a fully automated repeatable deployment product — a script-driven playbook that takes a customer from intake to fully deployed secure network in under one week. This is a build contract. Not consulting. Not design advice. You build working tested scripts against our real hardware in our remote lab. What We Are Building A complete deployment playbook and script library covering 85% of standard small business network deployments on our stack. Customer fills out an intake form. Scripts run. Network deploys, validates, and documents itself in five days. No reinventing the wheel per customer. Our Hardware Stack — Available in Lab Day One - OPNsense — 5x 1U dedicated firewall appliances - Proxmox — cluster of servers for VM and LXC hosting - TrueNAS — 3x 45Drives Stornator 36-bay storage servers - Dell PowerSwitch — Layer 2/3 core switching - Mellanox/NVIDIA ConnectX — 100G storage networking - UniFi — APs and controller, corporate and guest WiFi - Wazuh or Graylog — SIEM and centralized logging - Nginx or Caddy — reverse proxy with ACME auto-cert Scripts Required - deploy-opn.sh — OPNsense full baseline, VLANs, NAT, VPN, zero-trust rules, logging, admin lockdown - pve-baseline.sh — Proxmox cluster baseline, VM and LXC templates, storage pool config - truenas-acl.sh — TrueNAS SCALE datasets, SMB/NFS/iSCSI, ACLs, snapshots, replication - switch-vlans.sh — Dell and Mellanox VLAN trunks, LACP, STP, 100G uplinks, routing - unifi-ssid.sh — UniFi corporate and guest SSIDs, WPA3, VLAN mapping, isolation, RF profiles - dns-deploy.sh — Internal DNS and DHCP, per-VLAN scopes, split DNS, VPN DNS - proxy-setup.sh — Nginx or Caddy, ACME certificate automation, routes, health checks, logging - ftp-deploy.sh — SFTP or HTTPS file transfer, DMZ isolated, users, quotas, brute-force controls - siem-deploy.sh — Wazuh or Graylog, pre-built dashboards, alert rules, weekly digest reporting - gen-docs.sh — Auto-generates as-built documentation, IP/VLAN matrix, firewall rule export, handoff package - Customer intake form — structured input file feeding all script variables - Validation checklist — proves VLAN isolation, guest isolation, VPN boundaries before handoff All scripts must be fully parameterized. No hardcoded values. One input file change equals one new customer deployment. Security Requirements Every deployment enforces zero-trust by default. Default-deny inter-VLAN policy. Guest cannot reach LAN. Management interfaces reachable only from admin VLAN. VPN users get least-privilege access by group. Storage accessible only from approved systems. All admin actions logged. Engagement Terms - Fixed fee — $3,000 USD total - Timeline — 14 days from start - Payments — $1,000 on start, $1,000 at midpoint demo (Day 7 live screen share required), $1,000 on final delivery - Full remote lab access provided from Day 1 - All scripts and documentation become Wiicco IP on final payment - Future work available for the right team — per-deployment assist fees, playbook improvements, managed services monitoring We Are Open to a Small Team If you are two or three engineers who together cover the full stack, apply together and tell us who owns which layer. We want specialists not generalists pretending to know everything. This is not a job for someone who will learn on our time. Show us you have done this before.

  • $3,000.00

    Fixed-price
  • Intermediate
    Experience Level
  • Remote Job
  • Ongoing project
    Project Type
Skills and Expertise
Mandatory skills
Network Security
VPN
Network Administration
Activity on this job
  • Proposals:Less than 5
  • Last viewed by client:2 weeks ago
  • Interviewing:
    3
  • Invites sent:
    4
  • Unanswered invites:
    1
About the client
Member since Dec 12, 2023
  • United States
    3:47 PM
  • Media & Entertainment
    Small company (2-9 people)

Explore similar jobs on Upwork

1099 Independent ContractorHourly‐ Posted 1 week ago
CompTIA
Network and Cloud EngineerHourly‐ Posted 6 days ago
Network Security
Virtual LAN
Firewall

How it works

  • Post a job icon
    Create your free profile
    Highlight your skills and experience, show your portfolio, and set your ideal pay rate.
  • Talent comes to you icon
    Work the way you want
    Apply for jobs, create easy-to-by projects, or access exclusive opportunities that come to you.
  • Payment simplified icon
    Get paid securely
    From contract to payment, we help you work safely and get paid securely.
Want to get started? Create a profile

About Upwork

  • Rating is 4.9 out of 5.
    4.9/5
    (Average rating of clients by professionals)
  • G2 2021
    #1 freelance platform
  • 49,000+
    Signed contract every week
  • $2.3B
    Freelancers earned on Upwork in 2020

Find the best freelance jobs

Growing your career is as easy as creating a free profile and finding work like this that fits your skills.

Trusted by

  • Microsoft Logo
  • Airbnb Logo
  • Bissell Logo
  • GoDaddy Logo