shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.

Administered by:

Server stats:

267
active users

#pfsense

0 posts0 participants0 posts today
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://toot.kif.rocks/@merlin" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>merlin</span></a></span> consider <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a>, <a href="https://infosec.space/tags/OPNsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OPNsense</span></a>, <a href="https://infosec.space/tags/ipFire" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ipFire</span></a> or if you go &gt; 10GBit/s, <a href="https://infosec.space/tags/tnsr" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tnsr</span></a> instead.</p><ul><li><a href="https://infosec.space/tags/Cisco" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cisco</span></a> is the <a href="https://infosec.space/tags/Oracle" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Oracle</span></a> of <a href="https://infosec.space/tags/Networking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Networking</span></a> when it comes to paying <a href="https://infosec.space/tags/StupidTax" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>StupidTax</span></a> and being litigatious…</li></ul>
Fabián Rodríguez 🛡💾 🇨🇴 🌴<p><span class="h-card" translate="no"><a href="https://social.mkj.earth/@mkj" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mkj</span></a></span> reasonable commercial support, plenty of community support and great videos make it easy to learn, support and install for others. A few tools exist to assist in <a href="https://mastodon.social/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a> to <a href="https://mastodon.social/tags/OPNsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OPNsense</span></a> move.</p><p>I specially like the frequent, transparent updates and 100% open source development for maximum transparency.</p><p><a href="https://mastodon.social/tags/networking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>networking</span></a> <a href="https://mastodon.social/tags/freesoftware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>freesoftware</span></a> <a href="https://mastodon.social/tags/sysadmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sysadmin</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://linh.social/@qlp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>qlp</span></a></span> <span class="h-card" translate="no"><a href="https://chaos.social/@Natanox" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Natanox</span></a></span> <span class="h-card" translate="no"><a href="https://soc.megatokyo.moe/users/wyatt" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>wyatt</span></a></span> yeah, heard of those from folks who did very old <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a>-based <a href="https://infosec.space/tags/DIY" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DIY</span></a> Routers back when it still supported <a href="https://infosec.space/tags/ix86" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ix86</span></a> machines and old used thinkpads were still cheap af.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@tracketpacer" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>tracketpacer</span></a></span> deoends on the setup.</p><ul><li><a href="https://infosec.space/tags/Nagios" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Nagios</span></a> and/or <a href="https://infosec.space/tags/Grafana" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Grafana</span></a>, alongside included functionality of like <a href="https://infosec.space/tags/Ubiquiti" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ubiquiti</span></a>, <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a> / <a href="https://infosec.space/tags/OPNsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OPNsense</span></a> &amp; <a href="https://infosec.space/tags/ipFire" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ipFire</span></a> depending on the exact use-case.</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://chaos.social/@f4grx" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>f4grx</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@nixCraft" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>nixCraft</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>torproject</span></a></span> not really.</p><ol><li><a href="https://infosec.space/tags/aws" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>aws</span></a> has pretty chunky blocks like /14.</li><li>They don't use <a href="https://infosec.space/tags/IPv6" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IPv6</span></a>, only <a href="https://infosec.space/tags/IPv4" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IPv4</span></a>.</li><li>Blocking entrie <a href="https://infosec.space/tags/ASN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ASN</span></a>|s is easy.</li></ol><p>I do this with <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a> &amp; <a href="https://infosec.space/tags/pfBlockerNG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfBlockerNG</span></a> for quite a while…</p><p>And the same <a href="https://infosec.space/tags/blocklist" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>blocklist</span></a> also works for other applications like <a href="https://infosec.space/tags/nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>nginx</span></a>, <a href="https://infosec.space/tags/HAproxy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HAproxy</span></a>, <a href="https://infosec.space/tags/httpd" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>httpd</span></a>, etc.</p>
politikal<p>Wie bringt man die Mitmenschen nur dazu, den Mailverkehr zu verschlüsseln? Stöhn... 😵‍💫</p><p><a href="https://mastodon.social/tags/unplugtrump" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>unplugtrump</span></a> <a href="https://mastodon.social/tags/pfsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfsense</span></a> <a href="https://mastodon.social/tags/opnsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opnsense</span></a> <a href="https://mastodon.social/tags/netcup" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>netcup</span></a> <a href="https://mastodon.social/tags/vps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vps</span></a> <a href="https://mastodon.social/tags/cloudserver" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cloudserver</span></a> <a href="https://mastodon.social/tags/netzwerk" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>netzwerk</span></a> <a href="https://mastodon.social/tags/cloudnetzwerk" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cloudnetzwerk</span></a> <a href="https://mastodon.social/tags/selfhosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>selfhosting</span></a> <a href="https://mastodon.social/tags/firewall" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>firewall</span></a> <a href="https://mastodon.social/tags/server" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>server</span></a> <a href="https://mastodon.social/tags/lineageOS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>lineageOS</span></a> <a href="https://mastodon.social/tags/DigitaleSouver%C3%A4nit%C3%A4t" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DigitaleSouveränität</span></a> <a href="https://mastodon.social/tags/SupportYourLocalDealer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SupportYourLocalDealer</span></a> <a href="https://mastodon.social/tags/foss" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>foss</span></a> <a href="https://mastodon.social/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>linux</span></a> <a href="https://mastodon.social/tags/linuxmint" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>linuxmint</span></a> <a href="https://mastodon.social/tags/digitaleSouver%C3%A4nit%C3%A4t" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>digitaleSouveränität</span></a> <a href="https://mastodon.social/tags/digitaleSicherheit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>digitaleSicherheit</span></a> <a href="https://mastodon.social/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecurity</span></a> <a href="https://mastodon.social/tags/itsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>itsecurity</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://awawa.meo.ws/@fusl" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>fusl</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.online/@mnalis" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>mnalis</span></a></span> <span class="h-card" translate="no"><a href="https://infosec.exchange/@0xF21D" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>0xF21D</span></a></span> </p><p>I do that with <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a> &amp; <a href="https://infosec.space/tags/OPNsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OPNsense</span></a> (depending on the exact network in question) and have it merge <a href="https://github.com/greyhat-academy/lists.d/blob/main/dns.servers.list.tsv" rel="nofollow noopener" target="_blank">multiple sources</a> that get cached.</p><p>In total, I do may out the 30 DNS servers and whilst I have <a href="https://infosec.space/tags/IPv4only" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IPv4only</span></a>, I have everything ready for <a href="https://infosec.space/tags/DualStack" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DualStack</span></a> (<a href="https://infosec.space/tags/IPv4" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IPv4</span></a> + <a href="https://infosec.space/tags/IPv6" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IPv6</span></a>) once my ISP stops keeing it's thumbs um their ass...</p><p><a href="https://infosec.space/tags/sarcasm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sarcasm</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://nrw.social/@olifantenbaer" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>olifantenbaer</span></a></span> <span class="h-card" translate="no"><a href="https://nrw.social/@roman78" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>roman78</span></a></span> <span class="h-card" translate="no"><a href="https://astronomy.social/@admin" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>admin</span></a></span> wer so Blackbox-Zeugs nutzt hat die Kontrolle über sein Leben verloren.</p><p><a href="https://infosec.space/tags/OPNsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OPNsense</span></a> &amp; <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a> würd' ich deployen...</p>
90s Script Kiddie<p>Hi I'm 90s Script Kiddie, I grew up online. I do <a href="https://kolektiva.social/tags/devops" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>devops</span></a> and <a href="https://kolektiva.social/tags/automation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>automation</span></a> code stuff for my job. My hobbies are <a href="https://kolektiva.social/tags/gamedev" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>gamedev</span></a>, <a href="https://kolektiva.social/tags/vintageelectronics" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vintageelectronics</span></a>, <a href="https://kolektiva.social/tags/gaming" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>gaming</span></a>, <a href="https://kolektiva.social/tags/repair" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>repair</span></a> ing stuff to keep it out of the landfill, old <a href="https://kolektiva.social/tags/apple" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>apple</span></a> hardware, <a href="https://kolektiva.social/tags/linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>linux</span></a> admin (I run my own mail, web, media etc servers) <a href="https://kolektiva.social/tags/network" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>network</span></a> admin especially <a href="https://kolektiva.social/tags/pfsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfsense</span></a>, I love <a href="https://kolektiva.social/tags/books" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>books</span></a>, <a href="https://kolektiva.social/tags/anime" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>anime</span></a>, <a href="https://kolektiva.social/tags/manga" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>manga</span></a> - reading in general really. <a href="https://kolektiva.social/tags/music" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>music</span></a> too! Jazz, alt-rock, pop, folk, chiptunes... I also enjoy <a href="https://kolektiva.social/tags/cooking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cooking</span></a> and am trying to get better at it. Beliefs-wise I'm something of an anarchist, yearning for a <a href="https://kolektiva.social/tags/solarpunk" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>solarpunk</span></a> future I'll probably never live in, but I do what I can to do <a href="https://kolektiva.social/tags/mutualaid" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>mutualaid</span></a> for the people in my circle. If you're my friend, I will set up all your electronics for you, replace the battery in your phone, give you some free mail or web hosting... whatever! I try to limit my consumption of news media for my own sanity, but I love reading about what people are doing in their own words. That's why I love the Fediverse, and it's why I'm lurking around on <a href="https://kolektiva.social/tags/gopher" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>gopher</span></a> </p><p>I don't have a lot of friends. I've always been kind of a loner, and a little awkward. Luckily, I love my own company and have no problem spending time alone. Those few in my circle are people who I think make the world better by being in it. </p><p>I'm a <a href="https://kolektiva.social/tags/queer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>queer</span></a> <a href="https://kolektiva.social/tags/bi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>bi</span></a> <a href="https://kolektiva.social/tags/enby" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>enby</span></a> and I don't really give a hoot about what pronouns you use for me. Actually, I sort of feel like however you labeled me I'd want to break out of that box somehow. I guess I'm pretty contrary. </p><p>New <a href="https://kolektiva.social/tags/introduction" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>introduction</span></a> who dis.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://mastodon.social/@abulling" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>abulling</span></a></span> personally, I use <a href="https://infosec.space/tags/pfBlockerNG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfBlockerNG</span></a> but then again I have a <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a> up and running already so it's more convenient.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://floofyand.gay/@snow" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>snow</span></a></span> Maybe consider a provider that allows you to do <a href="https://infosec.space/tags/Blackholing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Blackholing</span></a>?</p><ul><li>In fact that is something <a href="https://infosec.space/tags/DECIX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DECIX</span></a> advocates for: Stopping <a href="https://infosec.space/tags/DDoS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DDoS</span></a> at the <a href="https://infosec.space/tags/IX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IX</span></a> level!</li></ul><p><a href="https://infosec.space/tags/Contabo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Contabo</span></a> for example allows to book a dedicaded, managed <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a> <a href="https://infosec.space/tags/Firewall" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Firewall</span></a> woth their <a href="https://infosec.space/tags/dedicaded" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>dedicaded</span></a> <a href="https://infosec.space/tags/Servers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Servers</span></a> so you can just block entire ASNs aggressively.</p><ul><li>In my experience, blocking entire ASNs like <a href="https://infosec.space/tags/pfCloud" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfCloud</span></a>, <a href="https://infosec.space/tags/CloudFlare" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudFlare</span></a>, <a href="https://infosec.space/tags/DDoSguard" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DDoSguard</span></a>, <a href="https://infosec.space/tags/aws" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>aws</span></a> and entire countries like Russia has been effective.</li></ul>
Samson<p>Прокинув в мережу свій <a href="https://social.kyiv.dcomm.net.ua/tags/pihole" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pihole</span></a> , який використовує на базу з 8млн записів 105 мб ОЗУ, і працює порівняно з unbound просто моментально.</p><p>Також згадав про ipset в linux який дозволяє оперувати дійсно великими базами, при чому це сильно не уповільнює роботу роутера.</p><p>Може хто знає для linux веб управлялку, щоб рулила:<br>- мережеві інтерфейси<br>- роутінг<br>- фаєрвол, проброс портів<br>- ВПН<br>- snort - suricata<br>- dhcp<br>- dns</p><p>то може той <a href="https://social.kyiv.dcomm.net.ua/tags/pfsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfsense</span></a> і не потрібен буде...</p>
Samson<p>Шукав золоту кулю для розв'язання задач роутера. Багато закордонних оглядачів звертали увагу на <a href="https://social.kyiv.dcomm.net.ua/tags/pfsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfsense</span></a> <br>І дійсно, при огляді можливостей проєкт виглядав як дуже цікавий.</p><p>Запускав його як віртуалку для тестів.</p><p>Після 2 місяців експериментів для стабілізації роботи відключив dnsbl, а потім замінив Unbound на dnsmasq...<br>Дивно було споглядати, коли раз в годину при оновленні бази доменів роутер фрізиться... Причому це впливало на весь мережевий стек.<br>Система потребувала багато ресурсів.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://oxytodon.com/@fuchsiii" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>fuchsiii</span></a></span> <span class="h-card" translate="no"><a href="https://tech.lgbt/@wakame" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>wakame</span></a></span> <span class="h-card" translate="no"><a href="https://notacult.social/@carbontwelve" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>carbontwelve</span></a></span> <span class="h-card" translate="no"><a href="https://tech.lgbt/@nina_kali_nina" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>nina_kali_nina</span></a></span> <span class="h-card" translate="no"><a href="https://mastodon.de/@empathicqubit" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>empathicqubit</span></a></span> yeah, <a href="https://infosec.space/tags/Siematic" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Siematic</span></a> &amp; <a href="https://infosec.space/tags/S7" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>S7</span></a> are really <a href="https://infosec.space/tags/cringe" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cringe</span></a>.</p><ul><li>I once setup a <a href="https://infosec.space/tags/ComputingLab" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComputingLab</span></a>'s Network wit a custom <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a> specifically to handle these suckers in a dedicaded LAN so they can interface with a shitty <a href="https://infosec.space/tags/Windows7" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows7</span></a> Professional machine that acted as <a href="https://infosec.space/tags/ActiveDirectory" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ActiveDirectory</span></a> Domain Controller whilst keeping that stuff offline.</li></ul><p>This was a <em>very cursed</em> setup...</p>
Kevin Karhan :verified:<p><a href="https://infosec.space/tags/FriendlyReminder" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FriendlyReminder</span></a> for people using <a href="https://infosec.space/tags/pfBlockerNG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfBlockerNG</span></a> on <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a> / <a href="https://infosec.space/tags/OPNsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OPNsense</span></a> or any other <a href="https://infosec.space/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FreeBSD</span></a>-based <a href="https://infosec.space/tags/Firewall" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Firewall</span></a>|ing-<a href="https://infosec.space/tags/distro" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>distro</span></a>: </p><p>Clean up ´´´/var/log/pfblockerng´´´ regularly, or else it'll fill up with disrespectful quickness depending on your setup.</p><ul><li><em>Ask me how I know!</em></li></ul><p><a href="https://infosec.space/tags/Sysadmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Sysadmin</span></a> <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a> <a href="https://infosec.space/tags/Maintenance" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Maintenance</span></a> <a href="https://infosec.space/tags/DigitalJanitor" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DigitalJanitor</span></a> <a href="https://infosec.space/tags/BSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BSD</span></a> <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.space/tags/Networking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Networking</span></a> <a href="https://infosec.space/tags/Netgate" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Netgate</span></a> <a href="https://infosec.space/tags/Decisio" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Decisio</span></a> <a href="https://infosec.space/tags/Router" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Router</span></a> <a href="https://infosec.space/tags/Filtering" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Filtering</span></a> <a href="https://infosec.space/tags/pf" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pf</span></a> <a href="https://infosec.space/tags/logging" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>logging</span></a> <a href="https://infosec.space/tags/logs" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>logs</span></a> <a href="https://infosec.space/tags/log" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>log</span></a> <a href="https://infosec.space/tags/syslog" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>syslog</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://furry.engineer/@niko" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>niko</span></a></span> okay...</p><p>Mayve I've to write something that does that filtering transparently wth like <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a> / <a href="https://infosec.space/tags/OPNsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OPNsense</span></a> and replaces the contents of every file crawled with it.</p>
Xavier Knol :verified_paw: :donor:<p>I purchased a Barracuda F380 Rev B to use as a dedicated host for opnsense for quite a good price, however the rails for It went missing in transport and one of the M5 cage nut bolts which are the only ones that fit these rack ears recently snapped.<br>
Does anyone here perhaps know of a supplier for these I suspect they used an off the shelf enclosure for it however I can't find any markings which would point me to a particular manufacturer.
<br>I suspect universal rails won't work too well with the external studs on the case.
<a href="https://infosec.exchange/tags/homelab" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>homelab</span></a> <a href="https://infosec.exchange/tags/opnsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>opnsense</span></a> <a href="https://infosec.exchange/tags/pfsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfsense</span></a> <a href="https://infosec.exchange/tags/hardware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hardware</span></a> <a href="https://infosec.exchange/tags/firewall" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>firewall</span></a></p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://social.linux.pizza/@lanefu" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>lanefu</span></a></span> <span class="h-card" translate="no"><a href="https://fedi.rrr.sh/@pearl" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>pearl</span></a></span> I mean, I'd rather try to use <a href="https://infosec.space/tags/ipFire" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ipFire</span></a> but sadly I've yet to see some <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a>-based <a href="https://infosec.space/tags/Networking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Networking</span></a> distro / setup that comes close to <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a> / <a href="https://infosec.space/tags/OPNsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OPNsense</span></a>...</p><ul><li>It's just that once you used <a href="https://infosec.space/tags/pfSync" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSync</span></a> / <a href="https://infosec.space/tags/CARP" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CARP</span></a> &amp; had cheap hot-standby hardware redundancy you don't want to go back!</li></ul><p>But that's me being <em>"too lazy" to do <a href="https://infosec.space/tags/iptables" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>iptables</span></a></em>... </p><p><a href="https://infosec.space/@kkarhan/113713495495303983" translate="no" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="ellipsis">infosec.space/@kkarhan/1137134</span><span class="invisible">95495303983</span></a></p>
Kevin Karhan :verified:<p>To answer <span class="h-card" translate="no"><a href="https://fedi.rrr.sh/@pearl" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>pearl</span></a></span>'s original <a href="https://fedi.rrr.sh/@pearl/113709160592615810" rel="nofollow noopener" target="_blank">question</a>:</p><ul><li><a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a> &amp; <a href="https://infosec.space/tags/OPNsense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OPNsense</span></a> allow importing and exporting the entire systems configuration as a single <a href="https://infosec.space/tags/XML" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>XML</span></a> file and <a href="https://infosec.space/tags/tnsr" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>tnsr</span></a> should have support for <a href="https://infosec.space/tags/Ansible" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ansible</span></a>... </li></ul><p>Maybe <span class="h-card" translate="no"><a href="https://mastodon.social/@geerlingguy" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>geerlingguy</span></a></span> is having a closer look at <a href="https://infosec.space/tags/CI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CI</span></a> / <a href="https://infosec.space/tags/CD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CD</span></a>-ing <a href="https://infosec.space/tags/SDN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SDN</span></a> distros.</p><ul><li>Personally, I'd stick to non-automated but well documented networking <a href="https://www.youtube.com/@LAWRENCESYSTEMS" rel="nofollow noopener" target="_blank">like</a> <a href="https://infosec.space/tags/LawrenceSystems" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LawrenceSystems</span></a>.</li></ul>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://pleroma.marchera-pas.fr/users/gantua" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>gantua</span></a></span> <span class="h-card" translate="no"><a href="https://hachyderm.io/@dalias" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>dalias</span></a></span> <span class="h-card" translate="no"><a href="https://peoplemaking.games/@eniko" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>eniko</span></a></span> ideally you put <code>/home</code> elsewhere too as there's most likely more traffic going on.</p><ul><li>I think more <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> distros should.do it like <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>pfSense</span></a> and support a <em>"<a href="https://infosec.space/tags/Ramdisk" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ramdisk</span></a>-first" mode</em>:</li></ul><p>Basically only permanent configuration changes will be written on disk!</p>