Redirect local ports with firewalld
Redirecting local ports with iptables directly isn’t too difficult, but can we use firewalld to get the same result? 🧱
Networking
Add a VLAN on a Mikrotik router
Segment your home network easily with a VLAN on a Mikrotik router. 🖥️
Monitor a UPS with a Mikrotik router via SNMP
Mikrotik routers and switches serve as efficient network devices, but they know other tricks, too. Monitor your UPS with a Mikrotik device and query it via SNMP. 🔌
Build a Tailscale exit node with firewalld
Tailscale exit nodes allow you to route your traffic through nearly any system in your tailnet. Learn how to build an exit node using firewalld. 🕳️
PXE boot netboot.xyz on a Mikrotik router
Get systems online quickly or rescue a broken system by PXE booting from netboot.xyz using a Mikrotik router. 🛠
Secure Tailscale networks with firewalld
Tailscale provides a handy private network mesh across multiple devices but it needs security just like any other network. 🕵
Set network interface speed with systemd-networkd
Sometimes network interface autonegotiation doesn’t work as well as it should. Luckily, you can fix it with systemd-networkd. 🔧
DHCPv6 prefix delegation with systemd-networkd
Use the new DHCPv6 prefix delegation features in systemd-networkd to make IPv6 subnetting easy! 🎉
Get a /56 from Spectrum using wide-dhcpv6
...
Pixel 3 Wi-Fi drops constantly
...
Allow a port range with firewalld
...
Ensuring keepalived starts after the network is ready
...
Fixing OpenStack noVNC consoles that ignore keyboard input
...
OpenStack-Ansible networking on CentOS 7 with systemd-networkd
...
systemd-networkd on Ubuntu 16.04 LTS (Xenial)
...
Talk Recap: Holistic Security for OpenStack Clouds
...
OpenStack instances come online with multiple network ports attached
...
Setting up a telnet handler for OpenStack Zuul CI jobs in GNOME 3
...
Troubleshooting OpenStack network connectivity
...
802.1x with NetworkManager using nmcli
...
Lessons learned: Five years of colocation
...
Enable IPv6 privacy in NetworkManager
...
Automated Let’s Encrypt DNS challenges with Rackspace Cloud DNS
...
Tinkering with systemd’s predictable network names
...
systemd-networkd and macvlan interfaces
...
GRE tunnels with systemd-networkd
...
Customizing systemd’s network device names
...
First thoughts: Linux on the Supermicro 5028D-TN4T
...
Build a network router and firewall with Fedora 22 and systemd-networkd
...
Understanding systemd’s predictable network device names
...
Using systemd-networkd with bonding on Rackspace’s OnMetal servers
...
Research Paper: Securing Linux Containers
...
Restoring wireless and Bluetooth state after reboot in Fedora 22
...
Aruba access points, EAP, and wpa_supplicant 2.4 bugs
...
cups.service start operation timed out in Fedora 22
...
Adventures with GRE and IPSec on Mikrotik routers
...
HOWTO: Mikrotik OpenVPN server
Mikrotik firewalls have been good to me over the years and they work well for multiple purposes. Creating an OpenVPN server on the device can allow you to connect into your local network when you’re on the road or protect your traffic when you’re using untrusted networks. Although Miktrotik’s implementation isn’t terribly robust (TCP only, client cert auth is wonky), it works quite well for most users. I’ll walk you through the process from importing certificates through testing it out with a client. ...
Share a wireless connection via ethernet in GNOME 3.14
There are some situations where you want to do the opposite of creating a wireless hotspot and you want to share a wireless connection to an ethernet connection. For example, if you’re at a hotel that offers only WiFi internet access, you could share that connection to an ethernet switch and plug in more devices. Also, you could get online with your wireless connection and create a small NAT network to test a network device without mangling your home network. ...
Creating a bridge for virtual machines using systemd-networkd
...
Xerox ColorQube 9302 and Linux
...
Trust an IP address with firewalld’s rich rules
...
HOWTO: Time Warner Cable and IPv6
...
httpry 0.1.8 available for RHEL and CentOS 7
...
Unexpected predictable network naming with systemd
...
Adventures in live booting Linux distributions
...
Configure static IP addresses for Project Atomic’s KVM image
...
Information security nuggets from DevOps Weekly #150
...
Speed up your Fedora PXE installations by hosting the stage2 installer locally
...
Keeping bwm-ng 0.6 functional on Fedora 19
...
Moving from OS X to Linux: Day One
...