Syntax to block an IP address under Linux using IP tables: [crayon-5abf1a9977088519913609/] Replace 123.45.67.89 with the IP in which you would like blocked. For example, if you wish to block IP address 123.45.67.89 iptables -A INPUT -s 123.45.67.89 -j DROP If you just want to block access to one port Read more…
This one is pretty easy, but some of the quirks of the “Synology way” may lead you to a failed OpenVPN attempt. Mainly after exporting the configuration, it’s not clear that you should have to modify it in any way before trying to use it. If you want to Read more…
Reverse Proxy. I’ve been implementing reverse-proxy solutions in lab and in production for some time now, but I always come across the same problem; It’s not the easiest type of a system to manage, especially when there are SSL certificates involved. Now, before I started looking for an easy-to-manage SSL Read more…
On the topic of NGINX Reverse Proxy, it just so happens that the process for installing an SSL certificate onto your ScreenConnect server can be rather difficult, and a much more flexible approach is by using NGINX over SSL to reverse-proxy to the ScreenConnect instance. This is how you can Read more…
I wanted to write a short introduction to a tool that I’ve been using a lot on my newest servers and development projects. This tool seriously provides the most amazing way of monitoring and comprehending your server’s performance and other metrics that I’ve seen in such a simple, lightweight installation. Read more…
After setting up an NGINX webserver with a GoDaddy-issued SSL certificate, I did an SSL test and saw that I was graded a C. That’s average! I want a secure site. So I looked around at a couple of things, and decided to put together a small list of things Read more…
If you have an office, facility, or residence with a lot of guest traffic and are needing to provide the guests with their own network using your existing Meraki equipment, this is the best way to do it. For this example the environment is using the following devices: Cisco Meraki Read more…
My computer is on a domain. I wanted to enable RDP access so I could work remotely, however in doing that, I’m letting my colleagues and others in my organization log in to my PC, as well as potentially allowing an intruder to log in. There are options to disallow Read more…
We let our Documents sync to the cloud, download themselves on all of our PCs, and trust that no single person besides ourselves can ever see those files, unless otherwise intended. This may be true that “only you” can see what’s in your Dropbox and other cloud storage, but in Read more…
With all of the recent data breaches, online security is (and has been) becoming a growing concern. If you aren’t aware, hundreds of major breaches have been publicized, and who knows how many smaller breaches are going unnoticed each day? With the “have I been pwned” website, you can both view Read more…