ChiefGyk3DLevel up your security game! 🛡️ This new short dives into CrowdSec – think Fail2Ban, but seriously powerful. Learn how to integrate it with pfSense for some next-level threat detection. Check it out! #CrowdSec #pfSense #OpenSource
AlejandroSetting up remote access to Bambulab 3D printers that are on a different VLAN than yours is a pain in the ass.
Bambulab has chosen the wrong path. It might carve out a niche among users who aren't very tech-savvy when it comes to 3D printing (and who aren’t interested in learning either), but all of us nerds who have used their printers are going to tell them to go to hell.
By the way, if you're trying to set up remote access using pfSense or OPNsense, here's a great guide: https://nuxx.net/blog/2024/12/19/bambu-lab-p1s-on-iot-vlan/
Daniel Böhmer@openwrt It feels reassuring to see an OpenWRT release a short time after the #dnsmasq security fix with release notes explicitly mentioning said fix.
#pfSense has been running incredibly stable for years on my home router but its update frequency feels questionable to me. I'm going to migrate to OpenWRT. After using it on some actual WiFi gear I am amazed how much OpenWRT has matured! 🤗
Santiago 
El test de buffer bloat da super bien, categoria A, lo que dice que la latencia no aumenta tanto bajo demanda. El pfSense rutea bien y mantiene la QoS razonablemente bien, ademas pasamos todas las listas de bloqueo a Quick Tables flotantes que con el doble de cache en el CPU se nota #undernet #pfsense #firewall #seguridad #mejoras #mantenimiento
abs(in)theLets try some #hashtag #wordsalad
Finishing internal #wiki notes on connecting across #Tailscale to boot a remote #Dell server via #iDRAC from a #proxmox iso image (on my #NetBSD laptop in a #Firefox window). Wipe, install, then install #pfSense and flip the Proxmox to be secured behind pfSense, and add a #Ruckus smartzone controller and some other VMs
All without physical access to the machine. Takes me way back to remote #Sun #Sparc installs via a #RS232 #Spiderport :-p
Bueno, parece que los ataques de scraping estan cesando o por lo menos el bloqueo del firewall está siendo exitoso y permite más o menos respirar al servidor. Como últimas novedades, ayer terminé de migrar las listas de bloque de Alias y reglas manuales, a listas dinámicas automáticas, aparte de que agregué algunas más que estaban faltando. Las listas dinámicas corren en bajo nivel en el firewall y aprovechan el motor pf packet filter que hace famoso a pf-Sense. Eso quedó lujo y los tests que corrí muestran que el firewall ni se despeina filtrando unas 50k IPs. También en el proxy Nginx dejé corriendo CrowdSec junto con Fail2ban y ahora ambos alimentan de IPs maliciosas que detectan, al pf-Sense que las bloquea para toda la red. CrowdSec fue sugerencia de @j3j5 y luego de @ElenaMusk y valió la pena porque solo lo conocía de nombre, nunca lo había probado, muchas gracias por el apoyo y la ayuda. Pensé que era similar a Fail2ban pero se nota que es mucho más moderno y agarra IPs que Fail2ban no agarra, justamente por el análisis decomportamiento. Yo creo que estamos bastante bien ahora, con pfBlocker-NG, Suricata y DNSBL corriendo en pf-Sense y Fail2ban y CrowdSec corriendo en el proxy que a su vez retroalimenta a pf-Sense. #pfsense #crowdsec #dnsbl #suricata #seguridad #undernet #mastodon
Sean Eric FaganI am not a network dummy. While I'm not a network engineer, I've had to deal with networking my entire career (that includes writing code, as well as the more common configuration and management).
It took me 3 whole days to get #WireGuard working on my #pfSense box. Because I missed that it had defaulted to "dynamic endpoint"... which is great if it was the server, but I was trying to set up a VPN *client*, to connect to work.
OY WITH THE POODLES!
KMJ 🇦🇹
ℒӱḏɩę 💾☮∞🎶♲☀🔋I found a Mini-ITX with some AMD A series APU on it. Dual core / 8GB DDR3. I'm going to make a #router out of it because we no longer trust closed-source hardware, right?
