NFTables Configuration @linux_router
m device label</color>\\ <tab3>define <color red>lan = br0</color><color blue> #definition of lan device label</color>\\ <tab3>define <color red>router_ip4... cally add IP address(es) to a timed drop list for LAN access control </color> ++ | \\ +<color #202000/#... WAN ssh attempts. As I only allow ssh locally on LAN or via VPN I drop all such incoming traffic. (Als
KPTree Torrent VM Setup @home_server
s.conf script| <code> #!/usr/sbin/nft -f define lan = ens3 define tun = tun0 # Clean out the curr... w IP addresses of VPN only for outgoing packet on lan #PrivatVPN Addresses (Host Addresses) oifname $lan ip daddr counter accept #Host: oifname $lan ip daddr counter accept #Host:
NFTables IP Control @linux_router
define wan = ppp1 define modem = eno1 define lan = br0 define router_ip4 = define ht... f lo counter accept # accept input from LAN iifname $lan counter accept # By port is a pain in the arse! # iifname $lan tcp dport { ssh, domain, 667, 953 } counter accep
IPMI CLI Tools @home_server:home_server_setup:other_services
h the machine locally. This is called Serial Over Lan (SOL) and is available in IPMI v2.0 as a standard... v1.5 - Ability to send IPMI messages to BMC over LAN, LAN alerting. No SOL as part of the standard's specification but some vendor specific SOL implementations. *IPMI v2.0 - Serial Over LAN enabling console redirection, access control, enh
Debian / Ubuntu Network Setup @linux_router
setup to look like a router with 1 WAN port and 3 LAN port. The WAN port will be setup on NIC1 with the LAN ports 1-3 will be on bridged NIC2-4. Ensure the ... .255.255.0 broadcast # Then LAN networks are eno2 eno3 eno4 in bridged mode br1 ... Netplan. The NIC back panel layout: <code> IPMI_LAN DisplayPort USB2-1 USB3-1 LAN3(eth2) LA
Router Hardware @linux_router
l Pentium N3700 system with 4 x Intel i210-AT GbE LAN, from [[|M... d power slightly lower than the J1900. (The Intel LAN controllers are also the more modern ones). This unit also comes with a dedicated IPMI LAN Port, allowing full remote KVM operation on the n... also a Supermicro based unit with dedicated IPMI LAN Port and has given me a good 5 years of service t
Web Server setup @home_server
roup and User IDs across Virtual Machines on Same LAN===== Unfortunately, does not ... ual machines (VMs), each with a separate distinct LAN IP address. However there is only one WAN static ... s to to a separate local LAN apache server, hence the reference to the local LAN address: (Does not seem to f
IPTables Configuration @linux_router
ING ACCEPT [0:0] # eno1 is WAN interface, br1 is LAN interface (bridged eno2 - eno4), # ppp1 is the P... OUTING -o ppp1 -j MASQUERADE # WAN Ports DNAT to LAN -A PREROUTING -p tcp -m tcp -i ppp1 --dport 80 -j... t-with icmp-port-unreachable # DNS - accept from LAN -A INPUT -i br1 -p tcp --dport 53 -j ACCEPT -A IN... -p udp --dport 53 -j ACCEPT # SSH - accept from LAN -A INPUT -i br1 -p tcp --dport 22 -j ACCEPT # DH
Network Setup @home_server:home_server_setup
NIC connectors are setup as follows: <code> IPMI_LAN USB2-1 USB3-1 LAN3(eth2) LAN4(eth3) USB2-0 USB3-0 LAN1(eth0) LAN2(eth1) VGA </code> Edit the network configuration file: '
Calibre Server @home_server:home_server_setup:other_services
''http://your_server_ip:8080'' in a browser on my LAN. Next setup the systemd service as follows sudo ... guard running to allow secure remote access to my LAN I can not be bothered trying to put my Calibre li... re on-line server, as it is only accessible on my LAN. If some one gains unauthorised access to my LAN, their access to my Calibre Library is the least of m
IPMI Console Setup @home_server:home_server_setup:other_services
elects IPMI interface to use; options seem to be: lan for IPMI 1.5 and lanplus for IPMI 2.0. (All my in... elects IPMI interface to use; options seem to be: lan for IPMI 1.5 and lanplus for IPMI 2.0. (All my in... sol : Configure and connect IPMIv2.0 Serial-over-LAN * activate : to activate the terminal connectio... Hence it should only be operated in a restricted LAN, where only strict secure outside control is poss
DHCP / DNS Setup @linux_router
IP address... A ; This is the LAN address of the html server ;... before the name. </code> **Note:** //To allow all LAN traffic to correctly flow to the html server and ... fined earlier for dynamic updates } # kptree LAN scope subnet netmask {
Router Miscellaneous @linux_router
e some security benefits by obscuring the private LAN addresses from the public WAN. IPv6 does not use... nect to a physical network and even be assigned a LAN IP address. Bonding allows physical networking de
Router Basic Debian / Ubuntu Server Setup @linux_router
some the of keypoints: *I set-up Ubuntu to use LAN port 2, as I want to use LAN port 1 as the Router WAN port. *I do not encrypt the home directory. (S
IPv6 summary notes @tech_notes
ole internet) *UNIQUE LOCAL - everything in our LAN (behind the internet gateway) *LINK LOCAL - (wi... BAL unicast (Internet)| |FC00::/7 |Unique-local (LAN), note 1| |FE80::/10 |Link-Local Unicast (same
samba @home_server:home_server_setup:other_services
dokuwiki setup notes
TC - Traffic Control @linux_router
IPv6 Setup Notes @linux_router
ISP IPoE DHCP Setup Notes @linux_router
Webmin @home_server:home_server_setup:other_services
