If you have deployed Zabbix Server on your Proxmox infra structure, you might be interested in hardening Zabbix installation with SSL certificates for the web frontend. You might also be interested in encrypting communication between Zabbix Server and the other Zabbix components, such as Agents and Proxies, after all, although it is just monitoring information,…
In my previous post, we went through the process of installing Zabbix Server on a Debian LXC container. Although it works alright, it doesn’t come with HTTPS support out of the box. It also has an “ugly” /zabbix in the end of the URL. In this short post, we are going through the steps of…
After some time we accumulating VMs, containers, physical devices and keeping track of what is working as it should or not start to get challenging. Not rarely we start adding a bunch of homemade scripts to warns when some service dies, creating a management nightmare. This is where Zabbix comes to the rescue! According to…
In crazy times as today’s, having strong and unique passwords are a must to handle threats from Internet. However, keeping track of such passwords is very hard, and this is where password managers come in. There are several password managers out there, but I really enjoy Bitwarden. If you don’t know them, I urge you…
Everytime we spawn a new server, it is a good idea to enable email services on it so that they can a means to reach us and notify of important events, such as software or hardware failures. In this post we are going to enable configure E-mail on Linux distros using postfix. I will use…
If you are a Proxmox Virtual Environment (aka PVE) user, chances are that you probably have a few LXC containers running on server. If that is indeed your case and you are interested in leveraging GPU hardware in them, this is for you! In this post, we are going to setup Intel GPU passthrough on…
Most Internet Service Providers (ISP) install devices in our houses, such as a cable/DSL modems or a ONT/ONU for optical, which have a web interfaces on a private IP address of its own. Since the device is not connected to any port of your local network switch, and therefore, sit outside your your network, accessing…
Private Internet Access (aka PIA) provides a cheap VPN service that allows up to 10 simultaneous devices. Recently I have switched from Surfshark to PIA because although Surfshark allows unlimited devices, having multiple connections in the same device (pfSense router) doesn’t always work. The reason is that different connections to different countries can have the…
In previous posts it was discussed how to create a DMZ network and host a website from a isolated VLAN on your network. That is a powerful resource, but with the limitation of not being possible to use a friendly FQDN such as geekistheway.com or mydomain.com as the frontend for the websites. This post will…
DMZ (aka Demilitarized Zone) network as defined by Wikipedia “is a physical or logical subnetwork that contains and exposes an organization’s external-facing services to an untrusted, usually larger, network such as the Internet”. The purpose is to add an additional layer of security by separating what is exposed a public service in the DMZ, while the rest of…