hacked

Hetzner Hacked!

I have been complaining about Hetzner regarding their retarded support system as well as their bandwidth and security issues. I remember once that when I asked for remote console they gave me another customer’s server. I could reboot it, mount my own ISO and change the root password. Now comes this: Dear Client At the …

ipv6

Tunneling IPv4 over IPv6 VPN

Tunnels are often used to encapsulate IPv6 traffic over IPv4 links. This time we are going to do the reverse. Imagine that you have native IPv6 on two endpoints. Behind those two endpoints you also have non routable IPv4 addresses. We are going to create a IPv6 tunnel for IPv4 traffic and we are going …

World_IPv6_launch

IPv6 Facts

The IPv6 world launch day has come and gone. But how ready are we for IPv6? According to google we are not that ready yet. The fact is that goolge is not fully ready either! Their ads do not display over an IPv6 only network. This post is the beginning of a series regarding a full dual stack implementation …

Data-and-Storage

HAST FreeBSD ZFS with CARP failover

HAST (Highly Available Storage) is a new concept for FreeBSD and it is under constant development. HAST allows to transparently store data on two physically separated machines connected over the TCP/IP network. HAST operates on block level making it transparent for file systems, providing disk-like devices in /dev/hast directory. In this article we will create two identical HAST nodes, hast1 and hast2. …

net-security

Securing hosts with PF

PF is OPENBSD’S default Packet filtering for TCP/IP packets and NAT. PF has been ported to FreeBSD and it is currently at version 4.5 on FreeBSD 9.0-RELEASE. Today, we will see how we can use PF to effectively secure a FreeBSD host on the Internet. Before we even start talking about PF, it is essential …

backup

Automated ZFS incremental Backups over ssh

In a previous article we saw how easy is to use ZFS send/receive to perform differential backups using  incremental snapshots. Today, we will see how we can automate the procedure in order to send incremental snapshots to a different machine over ssh. There are two prerequisites for this procedure to work. First, the machine that is receiving the snapshots must …

update

FreeBSD Update, Upgrade (Part II)

In the previous article we saw how to update FreeBSD from source. In this article I will add a few steps necessary when upgrading FreeBSD trough a major release. A good example is going from FreeBSD 8.2-RELEASE to FreeBSD 9.0-RELEASE. In reality the steps are more or less the same. First and for most, make sure …

update

FreeBSD Update, Upgrade

When I started using FreeBSD, there was only one way to upgrade. The source way. Today, I see that many people have started using the freebsd-update utility. I think it is good that a binary update option is available. But to be honest I have only used it once, out of curiosity mostly. Don’t get me …

zfs-disk

Root on ZFS FreeBSD 9 (Updated)

This is an updated guide showing how you can install a full ZFS system using FreeBSD9. In this guide I will demonstrate how you can install a fully functional full ZFS FreeBSD9 using a GPT scheme. We will also use ZFS for SWAP You can use this as a reference guide for a single or …