Proxmox VE is a Type 1 Hypervisor and it uses KVM for VMs and LXC for containers. It is fully open source, but it requires a license to access the enterprise repositories. For this tutorial we will enable non-subscription repositories for use without a license. Downside of this is that package updates are slower to arrive to this repository. Prerequisites: Ideally a server with two or more similar drives to configure ZFS or other raid Read more…
In cryptography and computer security, a root certificate is a public key certificate that identifies a root certificate authority (CA). A certificate authority (CA) can issue multiple certificates in the form of a tree structure. A root certificate is the head certificate of the tree and the private key of which is used to “sign” other certificates. All certificates signed by the root certificate, with the CA field set to true, inherit the trustworthiness of the root certificate Read more…
Systemd is a system and service manager for Linux operating systems. Systemctl is a command to introspect and control the state of the systemd system and service manager. In order to run a service at specified time we need a timer to start service when needed. Timers are systemd unit files whose name ends in .timer that control .service files or events. Timers can be used as an alternative to cron. Timers have built-in support for calendar time Read more…
Required: a running Docker host git client installed on your PC docker-compose (optional) OpenCTI is an open source platform allowing organizations to manage their cyber threat intelligence knowledge and observables. It has been created in order to structure, store, organize and visualize technical and non-technical information about cyber threats. The structuration of the data is performed using a knowledge schema based on the STIX2 standards. It has been designed as a modern web application including a GraphQL Read more…
Required: Login through SSH to the router and lets install required packages, please ensure you have enough free space. This install step will take some time so you should just wait for it to finish. Now we will remove content of the following files using command: Add the following config lines to files: Now we need to enable ipsec and xl2tp services to run on startup then start them manually right now. RIght now IPSEC Read more…
Required: a TFTP client installed on your station static IP on station eth card (need to be from network 192.168.1.x except 192.168.1.20) firmware downloaded locally from Ubiquitu Connect your station eth card to EdgeRouter eth0 port. By default Edgerouter will bring up ip 192.168.1.20 on this eth card if no DHCP server is available in your network (let’s suppose there is not). Press reset button from the router then power it on, now wait until Read more…
1. Open Server Manager 2. On the menu, click Add Roles and Features and follow the prompts to get to the Features page 3. Insert Windows Server 2012 installation DVD in the computer/server DVD ROM Drive 4. Select the .NET Framework 3.5 Features installation in the Add Roles and Features Wizard screen to install it 5. When in the Confirm installation selections screen, Select Specify an alternative source path 6. In the Path tab, input the DVD Rom drive letter and the path to the sxs directory (the same Read more…
FreeBSD is a free and open-source Unix-like operating system descended from the Berkeley Software Distribution (BSD), which was based on Research Unix. The first version of FreeBSD was released in 1993. In 2005, FreeBSD was the most popular open-source BSD operating system, accounting for more than three-quarters of all installed simply, permissively licensed BSD systems. FreeBSD has similarities with Linux, with two major differences in scope and licensing: FreeBSD maintains a complete system, i.e. the Read more…
P12 certificate of PKS12 certificates defines an archive file format for storing many cryptography objects as a single file. It is commonly used to bundle a private key with its X.509 certificate or to bundle all the members of a chain of trust. A PKCS #12 file may be encrypted and signed. The internal storage containers, called “SafeBags”, may also be encrypted and signed. A few SafeBags are predefined to store certificates, private keys and CRLs. Another SafeBag is provided to store any Read more…
One of the oldest protocols and maybe the most used protocol on the Internet today is TCP. You likely send and receive hundreds of millions TCP packets (or segments) a day, and it just works! Many peoples believe TCP development has finished, but that’s not right. In this post will take a look at a relatively new TCP congestion control algorithm called BBR and take it for a spin. We all know the difference between Read more…