Category Archives: Networking

Suricata and fail2ban

Posted on March 23, 2023 by blogger

In case you want to ban IP addresses based on Suricata fast.log, here is the filter you need: In the jail configuration, I suggest you change the default blocktype from REJECT to DROP. Edit 2023-03-24: you may want to use … Continue reading

Posted in Computer, Linux, Networking, Security, Ubuntu | Leave a comment

Fortigate: SAML authentication in firewall policy with Keycloak

Posted on October 6, 2022 by blogger

First, create a new Single Sign-On authentication under User & Authentication. As of version 7.0.6, the GUI does not specify ports and does not let you change them either. To work around this, use the CLI. Default ports used by … Continue reading

Posted in Networking, Security, Uncategorized | Leave a comment

Elasticsearch in Docker: threat intelligence with filebeat

Posted on January 23, 2022 by blogger

Goals: collect observables from supported feeds collect observables from unsupported feeds with elastic-tip

Posted in Computer, Docker, Linux, Networking, Security | Tagged , , , , , , , | Leave a comment

Elasticsearch in Docker: quick notes

Posted on January 23, 2022 by blogger

Goals: single node elasticsearch single node kibana password for all accounts https between all components behind traefik future post: collect network logs (routers) future post: collect application logs (web servers, dns servers, docker) future post: collect application metrics future post: … Continue reading

Posted in Computer, Docker, Linux, Networking | Tagged , , , , , , , | Leave a comment

A Raspberry Pi, a UPS and a couple of ESXi servers walk into a bar

Posted on December 16, 2021 by blogger

If you have the power of multiple servers connected to a UPS, you probably need to shut them down when the power goes down and before the UPS runs out of juice. Unless your UPS can be connected to the … Continue reading

Posted in Computer, Linux, Networking | Tagged , , , , , | Leave a comment

Tango Luxembourg using private IP addresses for Fiber internet access

Posted on August 11, 2021 by blogger

When I moved in Luxembourg, I subscribed to Tango Luxembourg Fiber internet access. Back then, I got the usual dynamic public IP address “for free”. It was changing every 36 hours but at least it was a public one. Recently, … Continue reading

Posted in Computer, Luxembourg, Networking | Leave a comment

Gitlab-runner and docker behind a proxy

Posted on August 3, 2021 by blogger

After reading many articles and trying many things, this is how I solved it. For docker daemon itself to use a proxy, configure environment variables using systemd file /etc/systemd/system/docker.service.d/http-proxy.conf : For gitlab-runner daemon itself to use a proxy, configure environment … Continue reading

Posted in Computer, Linux, Networking | Tagged , , | Leave a comment

IPsec tunnel between Ubuntu 20.04 and Mikrotik router using strongSwan

Posted on March 6, 2021 by blogger

Here is how to establish an IPsec tunnel between an Ubuntu 20.04 host and a Mikrotik router using IKEv2. The 2 endpoints of the tunnel are: ubuntu.xentoo.info : the Ubuntu server. This server has a local private subnet 10.0.0.0/24 and … Continue reading

Posted in Computer, Linux, Mikrotik, Networking | 2 Comments

Using a Mikrotik router with Tango Fiber (Luxembourg)

Posted on May 26, 2018 by blogger

Hi guys, I moved to Luxembourg and I have opted for Tango Fiber. Their router is a Fritz!box which I do not like at all. I have a spare Mikrotik router, so here is how to configure. Tango Fiber uses … Continue reading

Posted in Computer, Mikrotik, Networking | Tagged , , | 6 Comments

Extend snmpd to add detailed CPU statistics, per CPU (again)

Posted on April 14, 2017 by blogger

For easier use with Cacti, it is easier to group statistics per type instead of per CPU. So you would have a parent OID for CPU time spent by user with many values (one per CPU). Put the following in … Continue reading

Posted in Computer, Linux, Networking | Leave a comment