-
Archives
- March 2023
- February 2023
- October 2022
- February 2022
- January 2022
- December 2021
- September 2021
- August 2021
- July 2021
- March 2021
- January 2020
- May 2018
- May 2017
- April 2017
- March 2016
- February 2016
- December 2015
- September 2015
- March 2015
- January 2015
- October 2014
- June 2014
- March 2014
- February 2014
- December 2013
- November 2013
- August 2013
- July 2013
- June 2013
- May 2013
- February 2013
- October 2012
- July 2012
- May 2012
- April 2012
- March 2012
- February 2012
- January 2012
- November 2011
- October 2011
- June 2011
- May 2011
- April 2011
- December 2010
- November 2010
-
Meta
Category Archives: Networking
Suricata and fail2ban
In case you want to ban IP addresses based on Suricata fast.log, here is the filter you need: In the jail configuration, I suggest you change the default blocktype from REJECT to DROP. Edit 2023-03-24: you may want to use … Continue reading
Posted in Computer, Linux, Networking, Security, Ubuntu
Leave a comment
Fortigate: SAML authentication in firewall policy with Keycloak
First, create a new Single Sign-On authentication under User & Authentication. As of version 7.0.6, the GUI does not specify ports and does not let you change them either. To work around this, use the CLI. Default ports used by … Continue reading
Posted in Networking, Security, Uncategorized
Leave a comment
Elasticsearch in Docker: threat intelligence with filebeat
Goals: collect observables from supported feeds collect observables from unsupported feeds with elastic-tip
Posted in Computer, Docker, Linux, Networking, Security
Tagged docker, elastic, filebeat, ioc, kibana, monitoring, security, threatintelligence
Leave a comment
Elasticsearch in Docker: quick notes
Goals: single node elasticsearch single node kibana password for all accounts https between all components behind traefik future post: collect network logs (routers) future post: collect application logs (web servers, dns servers, docker) future post: collect application metrics future post: … Continue reading
Posted in Computer, Docker, Linux, Networking
Tagged docker, elastic, kibana, logstash, metrics, observability, search, traefik
Leave a comment
A Raspberry Pi, a UPS and a couple of ESXi servers walk into a bar
If you have the power of multiple servers connected to a UPS, you probably need to shut them down when the power goes down and before the UPS runs out of juice. Unless your UPS can be connected to the … Continue reading
Posted in Computer, Linux, Networking
Tagged debian, esxi, linux, raspberrypi, ups, vmware
Leave a comment
Tango Luxembourg using private IP addresses for Fiber internet access
When I moved in Luxembourg, I subscribed to Tango Luxembourg Fiber internet access. Back then, I got the usual dynamic public IP address “for free”. It was changing every 36 hours but at least it was a public one. Recently, … Continue reading
Posted in Computer, Luxembourg, Networking
Leave a comment
Gitlab-runner and docker behind a proxy
After reading many articles and trying many things, this is how I solved it. For docker daemon itself to use a proxy, configure environment variables using systemd file /etc/systemd/system/docker.service.d/http-proxy.conf : For gitlab-runner daemon itself to use a proxy, configure environment … Continue reading
IPsec tunnel between Ubuntu 20.04 and Mikrotik router using strongSwan
Here is how to establish an IPsec tunnel between an Ubuntu 20.04 host and a Mikrotik router using IKEv2. The 2 endpoints of the tunnel are: ubuntu.xentoo.info : the Ubuntu server. This server has a local private subnet 10.0.0.0/24 and … Continue reading
Posted in Computer, Linux, Mikrotik, Networking
2 Comments
Using a Mikrotik router with Tango Fiber (Luxembourg)
Hi guys, I moved to Luxembourg and I have opted for Tango Fiber. Their router is a Fritz!box which I do not like at all. I have a spare Mikrotik router, so here is how to configure. Tango Fiber uses … Continue reading
Extend snmpd to add detailed CPU statistics, per CPU (again)
For easier use with Cacti, it is easier to group statistics per type instead of per CPU. So you would have a parent OID for CPU time spent by user with many values (one per CPU). Put the following in … Continue reading
Posted in Computer, Linux, Networking
Leave a comment