We switched from the shelf network to the cabinet network to enhance security by keeping our network contained within the cabinet, and to minimize the number of exposed power outlets.
After
Category: Network and IT System
-
I did install two stores to have firewall, and now we get more proper firewall for our server.
I installed a mini BOSGAME computer that was enough for speed internet and the performance was excellent with a multiserver firewall. Furthermore, I have also installed WireGuard VPN on the firewall to enable remote access to my server from a single IP address. I won’t get attacked or hacked from ssh.
Firewall to protect our server to avoid any hacking, malware, ransomware and more… Our firewall had Phishing Blocker and spam blocker for our Email server. Very benefits for our business.
I also like bandwidth control for our server to improve performance.
Testing Speed Test with WireGuard with mini PC.
With WireGuard VPN
without VPN
I am happy with the speed because I had Server at location was 600mbps download and 200 uploads from Comcast business. So My firewall can handle VPN and firewall and many features. Now our Server and Web hosting is safe again. My home is 300 and 35 from Xfinity, So My Upload is perfect.
Firewall Hardware Specific
This pretty good to handle our server. 🙂
Brand BOSGAME Series MINI PC Item model number E1 Operating System Windows 11 Pro Item Weight 1.83 pounds Product Dimensions 4.96 x 4.41 x 1.61 inches Item Dimensions LxWxH 4.96 x 4.41 x 1.61 inches Color Black Processor Brand Intel Number of Processors 4 Computer Memory Type DDR4 SDRAM Flash Memory Size 16 GB Hard Drive Interface PCIE x 2 https://www.amazon.com/BOSGAME-E1-Windows-Computer-Supports/dp/B0CSK4C2ZR Standing screen display size 75 Screen Resolution 3840 x 2160 Max Screen Resolution 3840 x 2160 pixels Processor 3.4 GHz Celeron RAM 16 DDR4 Hard Drive 512 GB SSD Graphics Coprocessor Intel UHD Graphics Chipset Brand Intel Card Description Integrated Graphics Card Ram Size 16 GB Number of USB 3.0 Ports 4 https://www.amazon.com/BOSGAME-E1-Windows-Computer-Supports/dp/B0CSK4C2ZR https://www.amazon.com/BOSGAME-E1-Windows-Computer-Supports/dp/B0CSK4C2ZR
I also Did PC to Smaller PC because it can fit in Cabinet network to secure.
-
TpLink Omada: Services→ DNS proxy with Cloudron AdGuard Home. We like using DoH on our router.
I finally got this to work with cloudron AdGuard Home because it won’t work just use DNS port or encryption until you add IP or Client ID in allowed Clients, so I am using Client ID. This will show you how to set up DOH AdGuard Home with TpLink Omada DNS Proxy.
This explains to us what Client IDs are, and I found DNS over HTTPS is useful for our networks, since I had a wildcard certification.
Open AdGuard home and log into your admin account. Navigate to the DNS settings and find allow clients. I put laketapp that I would use for our stores nickname. Then make sure you save it.
Then go to TpLink Omada Controller Webgui and Login your admin, then select the location you want to set DNS over HTTPS with cloudron AdGuard Home.
After you select Location, go to Services on the left side.
Then go to DNS Proxy then go enable DNS proxy then DoH then add your AdGuard Server, mine is https://laketapp.dns195.richardapplegate.io.
Now go check AdGuard Home, see if there are any queries,
yep, it’s working, Now My Router is communicating with my DNS Server secured.
