The post details setting up an OpenConnect VPN and WordPress server using HAproxy on a new VM, migrating services from an old setup. To streamline future configurations, Ansible automation has been implemented. Steps include installing Git and Ansible, cloning a repository, updating secrets, configuring domain names, and running an Ansible playbook to deploy the configured setup.
I installed HAProxy on a CentOS 7 VM to reroute SSH and Openconnect VPN traffic through port 443, bypassing an ISP block on other ports.
I was looking for offsite backup for my ubuntu server which has ZFS file system. I used Sanoid to take snapshots and Syncoid to replicate the snapshots to a different pool on seperate disk. Now, I want to replicate the snapshot to AWS Glacier. I found a great tool “zfs-to-glacier” by Anders. Following how-to document…
Summary:
Set up OpenConnect VPN server on CentOS 7 to enable secure communication for friends in the MENA region. Use EPEL repository to install OpenConnect and Certbot for SSL certificate. Configure firewall, IP forwarding, and SSL certificate. Start the service, create user, and connect using Cisco AnyConnect mobile app for iOS and Android.
I used Putty most of the time. Once I discovered Kitty, I haven’t looked back as it is same as Putty but on steroids. In the world of secure shell (SSH) clients, Kitty stands out as a feature-rich and highly customizable option. While precompiled versions are readily available for different operating systems, I wanted to…
On Ethernet networks, point-to-point security is provided by Media Access Control security (MACsec).MACsec is defined by IEEE standard 802.1AE. End-to-end network security can be achieved by combining MACsec with other security protocols like IP Security (IPsec) and Secure Sockets Layer (SSL). We will go through configuring the setup. Execute the following command on any host…
Kubernetes also written as k8s, is open source solution for management and orchestration of containerized applications. This article assumes that you have a minimally installed CentOS 7 machine as master node and two worker nodes with internet access. Let proceed for installation. Execute following commands on all nodes (master and worker). Update all the systems….
My colleague Imran Yousaf and I got the opportunity to get our hands dirty on Cisco Ironport email security appliance (ESA) model C390. We want to see the maximum throughput in terms of outbound emails which this device can process in one hour. As there are 100s of components involves in email delivery such as…
X2go is remote desktop solution capable of providing encrypted desktop session over low bandwidth, high latency links. It is similar to VNC but with built-in encryption. We are using x2go for replacement of Oracle Sunray solution. This post is part of series where we are going to setup VDI solution based on open source components….
This post is part of series where we are going to setup VDI solution based on open source components. Previously, we have setup DHCP server and TFTP server. Now, we will be setting up local repositories which will be used as source of packages for installation of hardened CentOS 7 operating system on thin clients….