LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Blogs > serafean
Reload this Page Uncategorized
User Name
Password

Notices


Uncategorized Entries with no category
Old

Docker, systemd-resolved and corporate VPN

Posted 04-29-2021 at 11:44 AM by serafean
Tags docker, systemd
There's no going around it, I really need that docker image now. Unfortunately everything is corporate. apt repositories, conan repositories. Docker needs resolve and contact machines through the local openconnect vpn0 interface.

1. Docker kills my internet

My LAN runs in the 172.17.0.0/16 range. Docker uses that same range.
Easy fix. Set it in daemon.json
Code:
{
  "default-address-pools": [
    {
      "base": "172.22.24.0/24",
...
Continue reading...
Member
Posted in Uncategorized
Views 1913 Comments 0 serafean is offline
Old

Setting up DNS in 2017 - A record to TLSA

Posted 03-23-2017 at 02:28 PM by serafean
Updated 03-23-2017 at 03:14 PM by serafean
I set off on the journey to set up DNS as correctly as I could. After reading through a lot of stuff, here are my findings:
This example server will have on IP, and will run a web server, and an email server.
This is more of a setup dump than tutorial, but might point someone in the right direction...

Prequisites:

First, create an A (AAAA for ipv6 ) record for the domain :
Code:
example.net. 1800 IN A 127.0.0.1
Basic explanation of the entry
  • example.net.
...
Continue reading...
Member
Posted in Uncategorized
Views 2680 Comments 0 serafean is offline
Old

systemd yacy "hardened" unit

Posted 08-31-2016 at 01:51 PM by serafean
This is more of an archive for my yacy service file
Code:
[Unit]
Description=Yacy distributed search engine

[Service]

#Service
Type=forking
GuessMainPID=yes
ExecStart=/opt/yacy/startYACY.sh
ExecStop=/opt/yacy/stopYACY.sh
User=yacy
Group=yacy
WorkingDirectory=/opt/yacy

# Hardening
PrivateTmp=yes
PrivateDevices=yes
ProtectSystem=full
ProtectHome=yes
NoNewPrivileges=yes
...
Continue reading...
Member
Posted in Uncategorized
Views 966 Comments 0 serafean is offline
Old

systemd 219 && systemd-networkd changes

Posted 02-22-2015 at 07:45 AM by serafean
Tags systemd
The recent update to systemd sent it to version 219. Per the changelog, .network files gained two new configuration values
Code:
IPForward
IPMasquerade
After the upgrade, my Gentoo box stopped routing packets to the internet. NAT was setup correctly, so the issue couldn't be there.

It appears that systemd by default sets the forwarding sysctl of each interface to 0. In order for packets to be forwarded, this must be set to 1. /etc/sysctl.conf was of no help.
...
Continue reading...
Member
Posted in Uncategorized
Views 1754 Comments 0 serafean is offline
Old

My fight against ads.

Posted 12-13-2010 at 10:22 AM by serafean
Updated 12-13-2010 at 03:57 PM by serafean
Running openwrt on my router and hating advertisements, I decided to look into dnsmasq's possibilities. And indeed it supports hard binding of addresses to Domain names.

adding
Code:
conf-dir=/etc/dnsmasq.d/
to dnsmasq.conf, and putting a file generated by http://pgl.yoyo.org/as/ in there (as ablock.conf) quite securely blocks all ads on my network (and from basic testing, it seems that even ads at the beginning of flash videos are filtered out. YAY!).

I know using /etc/hosts...
Continue reading...
Member
Posted in Uncategorized
Views 1228 Comments 0 serafean is offline
Page 1 of 2 1 2

  



All times are GMT -5. The time now is 10:59 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration