Unifi L3 Adoption with DHCP Option 43 on pfSense, Mikrotik and others

Unifi L3 Adoption with DHCP Option 43 on pfSense, Mikrotik and others

Unifi L3 Adoption Recently I installed a lot of new Unifi Sites in local Schools, due to Corona the demand of a working Wifi in School Environments boosted. Most sites we Setup run their Network split to different VLANs, so a simple Layer 2 Adoption is not always possible. But Unifi Controllers luckily have a way to solve this possible adoption issue. So I got used to set both, DHCP Option 43 and unifi DNS name on each site, no matter if VLAN (L3 Structure) or a flat L2 Network. I just set the Options and done. ...

December 18, 2020 · solariz

Resilio as Private Cloud

Hey, just a heads-up that this content is based on an automatically imported version from our old CMS. If the formatting isn’t perfect, I’m sorry about that. Or my home Cloud without „the Cloud” :) If it comes to Syncing folders to several devices many of us go the “lazy way” using google drive, dropbox, onedrive whatever to sync your local Documents. Some may go a step further and use some kind of Encryption, but this is often not very end user friendly. ...

November 15, 2020 · solariz

Debian/Ubuntu with automatic APT unattended updates

Hey, just a heads-up that this content is based on an automatically imported version from our old CMS. If the formatting isn’t perfect, I’m sorry about that. I cannot point out often enough how critical it is to keep your internet-based Servers updated. I use and manage some Servers, about 20 currently. But I hate to check them on a weekly base for Security Updates. I still remember days where Sysadmins brag with uptimes – not a smart thing to do. ...

October 22, 2020 · solariz

EPIC Game Launcher slow Download speed

Hey, just a heads-up that this content is based on an automatically imported version from our old CMS. If the formatting isn’t perfect, I’m sorry about that. Yesterday I wanted to install a Game from Epic Game Launcher in Windows. (Spellbreak, btw.) Unfortunately even I have a 1G Line, it only dripped in with about 100-500 kb/s and would take several hours to complete. ...

September 4, 2020 · solariz

pihole docker with docker-compose in my LAN

Hey, just a heads-up that this content is based on an automatically imported version from our old CMS. If the formatting isn’t perfect, I’m sorry about that. Recently I moved from my old PI3B to an Intel NUC i3 as my “Home Server”. It has enough power to run all my local services and is still not wasteful in terms of power consumption and space requirement like a “real” Server, and it is fanless. ...

July 12, 2020 · solariz

letsencrypt auto NGINX reload on renew, doing it right...

Hey, just a heads-up that this content is based on an automatically imported version from our old CMS. If the formatting isn’t perfect, I’m sorry about that. If you run Letsencrypt SSL Certs on your servers and use certbot you probably know what I’m talking about. In the past I had it several times that the cert itself was renewed but the webserver, for whatever readon, didn’t reload. Causing the website to report a expired certificate, even it’s not. As soon as I did a manual NGINX Reload it workend. ...

May 13, 2020 · solariz

A SIP Honeypot Blacklist

Hey, just a heads-up that this content is based on an automatically imported version from our old CMS. If the formatting isn’t perfect, I’m sorry about that. TL;DR HoneySIP is a SIP Honeypot Blacklist for use in Firewalls to Block SIP Crawlers and Bruteforcer. All IPs coming from own SIP Validating Honeypots at several servers. If you run a Server accessible over the Internet you will quickly find a lot of “interested” Eyes on it, especially if it is a VoIP System using SIP on default udp/5060. In an Ideal World this system would never be exposed to the Internet – but if you have a PBX which need to be accessible by a lot of remote workers and know how critical SIP/RTP can be you want to avoid forcing SIP over VPN. ...

April 27, 2020 · solariz

$this->DomainName got Changed

Hey, just a heads-up that this content is based on an automatically imported version from our old CMS. If the formatting isn’t perfect, I’m sorry about that. There are several reasons, the most important one is that my old domain got some big hit and “Negative” Backlinks over the many past years. The old Domain solariz.de was registered more then 20 Years ago, in this Time I did a lot of changes on the Domain, CMS, files I hosted and so on. Those gave me a lot of different Backlinks from all over the World – you might think Backlinks are a great thing. ...

April 24, 2020 · solariz

pfsense xinetd on rampage: readjusting service

Hey, just a heads-up that this content is based on an automatically imported version from our old CMS. If the formatting isn’t perfect, I’m sorry about that. Cause I’m not „blogging“ regularly on this page I just want to post more things in a “Today I learned” fashion. Specially if you work on/at Events and IT there are a lot of things which leave you puzzled questioning thing and forcing you to find solutions “RIGHT NOW”. While others in normal IT Ops have time to test things, Event-IT things are often MacGyver jobs. Working on a remote unknown site with other people’s IT Infrastructure and take what you get, at the end nobody cares – it need to work. ...

April 17, 2020 · solariz

Preventive blocking of bad IPs using iptables

Hey, just a heads-up that this content is based on an automatically imported version from our old CMS. If the formatting isn’t perfect, I’m sorry about that. Whoever works with Linux servers on the web knows it, logs filled with attempted accesses, bruteforcers or simply spambots. Fortunately, there are some sites that have specialized in collecting these “bad IPs” via honeypots or logging reports. ...

March 24, 2020 · solariz