Category: Administrator Linux
-
I upgraded to 7.1.1 Arista Edge Firewall from 7.0.0 with Realtek devices Ethernet. I have disabled EEE to allow the use of the Realtek Network.
When you use Energy-Efficient Ethernet, Linux Ethernet drivers cause kernel panics. Please download two files https://wiki.edge.arista.com/index.php?title=Patch_-_Disable_EEE_toggle So I used Rufus to make USB bootable after I burn ISO to USB. I went to the USB Folder simple-CDD and pasted here both the script eee-ignore-realtek-patch.sh and late_command.sh. Then paste the two files you just downloaded and…
-
Nextcloud: Google Drive Alternative, You May want to use Nextcloud.
All my Google Drive accounts are migrated to my Nextcloud. I had built my Nextcloud on my server and finished it. I love that Nextcloud allows me to put private data where I can store to my Server instead of Google, OneDrive, or Apple Cloud Server data. We had to pay them to hold our…
-
I did install two stores to have firewall, and now we get more proper firewall for our server.
I installed a mini BOSGAME computer that was enough for speed internet and the performance was excellent with a multiserver firewall. Furthermore, I have also installed WireGuard VPN on the firewall to enable remote access to my server from a single IP address. I won’t get attacked or hacked from ssh. Firewall to protect our…
-
TpLink Omada: Services→ DNS proxy with Cloudron AdGuard Home. We like using DoH on our router.
I finally got this to work with cloudron AdGuard Home because it won’t work just use DNS port or encryption until you add IP or Client ID in allowed Clients, so I am using Client ID. This will show you how to set up DOH AdGuard Home with TpLink Omada DNS Proxy. This explains to…
-
I did build an Arista Firewall for Sunrise Village to protect against DDoS.
I built another mini computer for Sunrise Village and added another network card to my mini computer for internal and external network. Not only that, but I also set Internal to “bridge” and set my Modem wire to firewall “external” and then firewall “internal” to a 1 gigabit switch. So I can put more Server…
-
Using Fail2Ban for SSH Brute-force Protection on your server.
Fail2Ban is a program in Python that helps protect Linux systems and servers from brute-force attacks. Fail2Ban can be set up to provide SSH protection for your server. This makes sure that your server is safe from attacks that use brute force. It also lets you see how strong the attacks are in terms of…
-
How to get to know your Linux operating system.
This command line can be used to look up the operating system. The command is here.
-
DNS over TLS with systemd-resolved on Ubuntu 22.04.4 LTS.
I would prefer if my server utilized DNS over TLS instead of Plain 53 port. I did it, and it works really well. Furthermore, I no longer have an attack from 53 ports now. Use DNS Over TLS (DOT) on generic Linux systems So for Specific Ubuntu 22.04.4 LTS Ubuntu 22.04.04 LTS specific resolved.conf remove hashtag…
-
Ntfy: Watchtower, How to set it up with portainer?
Well, it’s easy, let get this start, Example: Watchtower Docker-compose Then the second file is a stack.env, make sure it is a same path. WATCHTOWER_SCHDULE: cron job I choose at night, so I can work on the server without being outrage services. WATCHTOWER_NOTIFICATIONS: We use Shoutrrr WATCHTOWER_NOTIFICATION_SKIP_TITLE: True (I leave it as default) WATCHTOWER_NOTIFICATION_URL: ntfy://ntfy.sh/my_watchtower_topic?title=WatchtowerUpdates…
-
Ntfy: push notification for services.
I am using Ntfy for my SSH alert and watchtower update. It is pretty cool to have this feature, so I can know who is accessing my server without my authorization. And know my docker needs to be updated as well. SSH Alert Example Command this to open code, Please add this code to the…