Browsing Category
Blog
61 posts
IPTables Logs in Loki and Grafana (with Promtail)
In the previous article (Logging in IPTables with NFLog and ulogd2) rules were created to log certain IPTables…
IPTables Logging in JSON with NFLOG and ulogd2
Logging with IPTables requires the use of an extra IPTables extension called NFLOG (https://manpages.debian.org/experimental/iptables/iptables-extensions.8.en.html#NFLOG) and a separate daemon…
Terraform and libvirt nodes
Libvirt (libvirtd) nodes (based on KVM and Qemu) are a great and cheap (read: free) alternative of deploying…
Terraform: Create a map of subnet IDs in Azure
The subnets accessor in the azurerm_virtual_network Terraform data source returns a list of subnet names only. In most…
Time based network access control on OpenBSD
Time based ACL (access control lists) features do not exist in BSD’s packet filter (PF). Having your network…
Block countries on OpenBSD using pf
Same as in the previous article, full countries can be easily blocked on OpenBSD firewall using the pf…
Block countries using IPtables and IPDeny.com
Certain server setups do not require access for all countries or just want to block certain countries since…
Install OpenBSD 6.0 on a Soekris net6501
Recently I bought a Soekris net6501 to build a home network in my new house.Things you need before…
OSSEC: building an OpenBSD package
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring,…
Perl: Archive E-Mails in an IMAP Folder
IMAP folders are really because you can have your e-mails synchronized on multiple devices, without losing e-mails across…