Security
Hardening Servers 3
The only secure server is: the one that has never started and never had a network cable attached to it! A list of 16 things to start with. #security #server #ssh #2fa #keys #tokens #email
Nalle
Since 1975, a HomeLab enthusiast. In IT 1970 →, 25y for Fortune 500 companies, rest as independent entrepreneur and senior consultant, IT and Management. Happily retired from IT 2011 and totally 2020.
Security
Hardening your Servers
A install gets 60-65 points not 100. The obvious is to update and upgrade software and install security hardening apps like firewalls, fail2ban, #ClamAV, #LMD. The first task is to make a plan that we call a IT Security Strategy. After a SSA you start fixing your #security #hardening.
Security
Security Audit and Lynis
Prepare for a Security Audit or check your Server for Security Hardening. All Companies need to take a SA from tile to time by an outside Agency. Many corporations with ISO 9001/27001 certs has written protocols to follow visa-vi testing and setting up services. #security #hardening #audit # lynis
Networking
VPN WireGuard on pfSense
There is times we need to access our cluster but we are not at the site. The only safe way is to use a VPN of some sort, I use WireGuard and #Cloudflare #Tunnels. This is how to set up #WireGuard on #pfSense. #vpn #roadworrior
Networking
Monitoring your Servers
Monitoring servers and VM's is extremely important and highly productive. In real environments you constantly tweak and change setting for optimal performance and also you need to have a early warning system in place to be able to react on upcoming issues. #Zabbix #pfSense #Proxmox #Docker
Security
Password Generator
You need to generate complex passwords. Using strings as complicated as possible and 20-30-40 long is good. #password #generator #passwordgenerator
Security
Using VLAN's on Proxmox
How to setup VLAN's on a Proxmox system. Vlans gives security, speed and a cleaner network. VLAN's has been the standard in corporate networking for years and can be found almost everywhere you look. Also the management i/f #MGMT #VLAN
Basics
Add Color to Proxmox Logon
Add Color to Proxmox Logon Do you want to rice the logon screen of Proxmox? The idea is to show clearly the login as IP and FQDN and also all the colors and positions of the patch cables - this is not in stead of tagging cables its on top. #color #login #proxmox
Basics
ZFS replication and HA
Setup ZFS replication and High Availability in Proxmox VE. An entry-level approach. No NFS or Ceph shared storage will be used.
Proxmox
Proxmox Backup Server
Every system and every device needs backups! Proxmox Backup Server is a stunning Backup Server (later PBS). It's highly recommended and a great tool for automation of critical backups. The PBS makes use of the power of ZFS. You can also backup the Proxmox nodes.
Build
My Terminal - the main tool
The terminal is where I spend most of my day. My main tools are alacritty, iTerm2, zsh, tmux and then neovim. They are riced and have a number of plugins.
Networking
Start using Proxmox
Set up basic services on Proxmox and its VM/CT like personal Add-ons, NTP Chrony, E-mail alerts, Firewall settings, Networking, Users and Pools, Templates Docker, Backup Strategy and DOCUMENTATION.