Christian Hofstede-Kuhn

Building infrastructure that doesn't break at 3 AM.

Red Hat Cloud Consultant & FreeBSD expert. Enterprise automation, identity management, and infrastructure done right.

About Me Get in Touch
Christian Hofstede-Kuhn - Professional IT Consultant

About Me

Certifications & Credentials

RHCSA Red Hat Certified System Administrator
LPIC-1 Linux Professional Institute Certification
IPv6 Certified Network Specialist

Technical Expertise

Red Hat Technologies

Core Professional Focus

  • RHEL: Enterprise Linux administration & optimization
  • Ansible: Automation platform expert, AAP/AWX
  • FreeIPA/IdM: Identity management & SSO solutions
  • Satellite: Lifecycle management at scale
  • Keycloak: IAM, OAuth2, SAML integration
RHCSA RHEL 7-9 AAP

FreeBSD Ecosystem

Advanced Systems Specialist

  • Jails: Container isolation, VNET networking
  • Firewalls: pf, ipfw, enterprise packet filtering
  • FRR: Dynamic routing (BGP, OSPF)
  • ZFS: Storage pools, snapshots, replication
  • bhyve: Native hypervisor virtualization
FreeBSD 13+ VNET ZFS

DevOps & Containers

  • OpenShift: Enterprise Kubernetes platform
  • Podman: Rootless containers, Quadlets
  • CI/CD: GitLab CI, Jenkins, Tekton
  • IaC: Ansible roles/collections
Kubernetes Docker

Networking

  • IPv4/IPv6: Dual-stack, certified specialist
  • Routing: BGP, OSPF with FRRouting
  • VPN: WireGuard, IPsec, OpenVPN
  • Datacenter: Large-scale network architecture
IPv6 Certified

Security & Identity

  • PKI: OpenXPKI, StepCA, certificate automation
  • Secrets: HashiCorp Vault, SOPS
  • Hardening: CIS benchmarks, SELinux, compliance
  • SSO/IAM: LDAP, Kerberos, SAML, OIDC
SELinux LPIC-1

Infrastructure

  • Web Servers: Apache, Nginx, Traefik
  • Databases: PostgreSQL, MySQL, MariaDB
  • DNS: ISC Bind, PowerDNS, Unbound
  • Monitoring: Prometheus, Grafana, Zabbix
20+ Years

Professional Journey

Jan 2023 - Present

Cloud Consultant, Red Hat GmbH

Leading enterprise clients through digital transformation with the full Red Hat stack. Delivering Ansible Automation Platform implementations, RHEL optimization, and FreeIPA/IdM solutions. Deploying Red Hat Satellite for lifecycle management and Keycloak for identity federation. Enabling customers to achieve automation efficiency and infrastructure modernization at scale.

RHEL Ansible FreeIPA Satellite Keycloak
Aug 2019 - Dec 2022

IT Engineer, Noventi Health SE

Managed and scaled mission-critical healthcare infrastructure across 200+ RHEL servers. Designed Ansible automation frameworks reducing deployment time by 80%. Operated Kubernetes clusters for containerized healthcare applications. Ensured high availability and GDPR compliance for sensitive patient data processing.

RHEL Ansible Kubernetes
Jan 2012 - Aug 2019

Systems Administrator, awitna GmbH

Managed and optimized large-scale Linux environments for enterprise clients. Focused on high-availability server infrastructure and early adoption of Ansible for automation. Streamlined internal processes and ensured robust system operations across diverse customer environments.

Linux Ansible Infrastructure
Apr 2010 - Jan 2012

Java Developer, Medpex GmbH

Developed scalable eCommerce features supporting 10,000+ concurrent users. Focused on high-performance backend systems, database optimization, and API integration for large-scale online pharmacy operations.

Jul 2007 - Apr 2010

Team Lead, Pro-Medisoft AG

Led development teams in building enterprise Java eCommerce solutions. Mentored junior developers, established best practices, and delivered robust software platforms for healthcare sector clients.

Sep 2004 - Jul 2007

Apprenticeship, Pro-Medisoft AG

Foundation years in application development, learning Java programming, database design, and software engineering principles. This is where my deep interest in complex IT systems began and shaped the direction of my career.

Featured Projects

jailexec.py - FreeBSD Jail Management

Personal Python project (2025) for streamlined FreeBSD jail administration, enabling efficient container orchestration and process execution within isolated jail environments for enhanced security.

View on GitHub

Forgejo with Quadlets

Complete deployment guide for Forgejo Git repository platform using Podman Quadlets and Traefik reverse proxy, showcasing modern container orchestration without Docker dependencies.

View Guide

Burningboard.net - Mastodon Instance

Administrator of a German-speaking Mastodon instance serving a vibrant tech community. Focused on decentralized social networking, community management, and building a welcoming community for technology enthusiasts to connect and share knowledge.

Visit Instance

From the Blog

2026

Running Your Own AS: BGP on FreeBSD with FRR

How to get your own AS number and announce your prefixes using FRRouting on FreeBSD.

Read Article →
2026

PF Firewall on FreeBSD: A Practical Guide

A hands-on guide to configuring pf on FreeBSD for real-world network security.

Read Article →
2026

Integrating FreeBSD 15 with FreeIPA

Connecting FreeBSD to a FreeIPA domain for centralized identity management.

Read Article →
2026

Self-Hosting Email on FreeBSD: A Jailed Setup

Running a full mail stack inside FreeBSD jails with Postfix, Dovecot, and rspamd.

Read Article →
Visit the Blog →

Get in Touch

Connect with me

Legal Notice

Information according to § 5 TMG

Name: Christian Hofstede-Kuhn

Address: MĂĽhlweg 56
67117 Limburgerhof
Deutschland

Contact: info@hofstede.it

This website is a personal portfolio and professional presentation. The content represents my own professional work and expertise in IT consulting.

Back to Home