Author: Richard Applegate
-
I did drive to Grayland again, swap shelf to cabinet network in the cottage house.
I did come and swap shelf to cabinet network because we want to make sure our network secured in cabinet network and reduced power plug visible. After
-
I did install two stores to have firewall, and now we get more proper firewall for our server.
I installed a mini BOSGAME computer that was enough for speed internet and the performance was excellent with a multiserver firewall. Furthermore, I have also installed WireGuard VPN on the firewall to enable remote access to my server from a single IP address. I won’t get attacked or hacked from ssh. Firewall to protect our…
-
TpLink Omada: Services→ DNS proxy with Cloudron AdGuard Home. We like using DoH on our router.
I finally got this to work with cloudron AdGuard Home because it won’t work just use DNS port or encryption until you add IP or Client ID in allowed Clients, so I am using Client ID. This will show you how to set up DOH AdGuard Home with TpLink Omada DNS Proxy. This explains to…
-
I did build an Arista Firewall for Sunrise Village to protect against DDoS.
I built another mini computer for Sunrise Village and added another network card to my mini computer for internal and external network. Not only that, but I also set Internal to “bridge” and set my Modem wire to firewall “external” and then firewall “internal” to a 1 gigabit switch. So I can put more Server…
-
Using Fail2Ban for SSH Brute-force Protection on your server.
Fail2Ban is a program in Python that helps protect Linux systems and servers from brute-force attacks. Fail2Ban can be set up to provide SSH protection for your server. This makes sure that your server is safe from attacks that use brute force. It also lets you see how strong the attacks are in terms of…
-
I did upgrade Network Cabinet at Sunrise Village.
The amount of wiring and stacking up each other wasn’t a good idea for the long term. So I asked my boss to upgrade and make it secure and long-term because the cabinet network will help reduce dust and overheat. A cabinet network exhaust fan pulls all the hot air out of the cabinet network.…
-
How to get to know your Linux operating system.
This command line can be used to look up the operating system. The command is here.
-
DNS over TLS with systemd-resolved on Ubuntu 22.04.4 LTS.
I would prefer if my server utilized DNS over TLS instead of Plain 53 port. I did it, and it works really well. Furthermore, I no longer have an attack from 53 ports now. Use DNS Over TLS (DOT) on generic Linux systems So for Specific Ubuntu 22.04.4 LTS Ubuntu 22.04.04 LTS specific resolved.conf remove hashtag…
-
Ntfy: Watchtower, How to set it up with portainer?
Well, it’s easy, let get this start, Example: Watchtower Docker-compose Then the second file is a stack.env, make sure it is a same path. WATCHTOWER_SCHDULE: cron job I choose at night, so I can work on the server without being outrage services. WATCHTOWER_NOTIFICATIONS: We use Shoutrrr WATCHTOWER_NOTIFICATION_SKIP_TITLE: True (I leave it as default) WATCHTOWER_NOTIFICATION_URL: ntfy://ntfy.sh/my_watchtower_topic?title=WatchtowerUpdates…
-
Ntfy: push notification for services.
I am using Ntfy for my SSH alert and watchtower update. It is pretty cool to have this feature, so I can know who is accessing my server without my authorization. And know my docker needs to be updated as well. SSH Alert Example Command this to open code, Please add this code to the…