Author: Richard Applegate
-
As instructed, I have swapped the network from the shelf to the cabinet in the Garyland cottage house.
We switched from the shelf network to the cabinet network to enhance security by keeping our network contained within the cabinet, and to minimize the number of exposed power outlets. After
-
I did install two stores to have firewall, and now we get more proper firewall for our server.
I installed a mini BOSGAME computer that was enough for speed internet and the performance was excellent with a multiserver firewall. Furthermore, I have also installed WireGuard VPN on the firewall to enable remote access to my server from a single IP address. I won’t get attacked or hacked from ssh. Firewall to protect our…
-
TpLink Omada: Services→ DNS proxy with Cloudron AdGuard Home. We like using DoH on our router.
I finally got this to work with cloudron AdGuard Home because it won’t work just use DNS port or encryption until you add IP or Client ID in allowed Clients, so I am using Client ID. This will show you how to set up DOH AdGuard Home with TpLink Omada DNS Proxy. This explains to…
-
I did build an Arista Firewall for Sunrise Village to protect against DDoS.
I built another mini computer for Sunrise Village and added another network card to my mini computer for internal and external network. Not only that, but I also set Internal to “bridge” and set my Modem wire to firewall “external” and then firewall “internal” to a 1 gigabit switch. So I can put more Server…
-
Using Fail2Ban for SSH Brute-force Protection on your server.
Fail2Ban is a Python program that helps safeguard Linux systems and servers from brute-force attacks. This program can be configured to provide SSH protection for your server. With it, you can be sure that your server is secure from attacks that employ brute force. It also enables you to see how strong the attacks are…
-
Installing Network Cabinets for Improved Cable Management and System Cooling
Upgrading to network cabinets improves cable management, reduces dust, prevents overheating, and ensures a secure and efficient setup for long-term use.
-
How to get to know your Linux operating system.
This command line can be used to look up the operating system. The command is here.
-
DNS over TLS with systemd-resolved on Ubuntu 22.04.4 LTS.
I would prefer if my server utilized DNS over TLS instead of Plain 53 port. I did it, and it works really well. Furthermore, I no longer have an attack from 53 ports now. Use DNS Over TLS (DOT) on generic Linux systems So for Specific Ubuntu 22.04.4 LTS Ubuntu 22.04.04 LTS specific resolved.conf remove hashtag…
-
Ntfy: Watchtower, How to set it up with portainer?
Well, it’s easy, let get this start, Example: Watchtower Docker-compose Then the second file is a stack.env, make sure it is a same path. WATCHTOWER_SCHDULE: cron job I choose at night, so I can work on the server without being outrage services. WATCHTOWER_NOTIFICATIONS: We use Shoutrrr WATCHTOWER_NOTIFICATION_SKIP_TITLE: True (I leave it as default) WATCHTOWER_NOTIFICATION_URL: ntfy://ntfy.sh/my_watchtower_topic?title=WatchtowerUpdates…
-
Ntfy: push notification for services.
I am using Ntfy for my SSH alert and watchtower update. It is pretty cool to have this feature, so I can know who is accessing my server without my authorization. And know my docker needs to be updated as well. SSH Alert Example Command this to open code, Please add this code to the…