My personal blog| anagogistis
As I was banning Thinkbot,| The Boston Diaries
I updated my Framework 13 to Fedora 42 about two weeks ago, just before the final release. It has been pretty solid! This evening, I went to start up my VPN (I use NordVPN, FWIW). No luck. Just no …| The lost outpost
I've created and released Eztables on Github. Anyone who ever has a need to setup a firewall on Linux may be interested in this project. It doesn't matter if you need to protect a laptop, server or want to setup a network firewall. Eztables supports it all. If you're not …| Louwrentius
Long time no see friends! Despite this break period ended up not being as long as I hoped| evilsocket
The secret of Istio’s abilities in traffic management, security, observability and policy is all in the Envoy proxy. Istio uses Envoy as the “sidecar” to intercept service traffic, with the kernel’s netfilter packet filter functionality configured by iptables. There are shortcomings in using iptables to perform this interception. Since netfilter is a highly versatile tool for filtering packets, several routing rules and data filtering processes are applied before reaching the destinat...| Istio Blog
Brief notes on forwarding specific ports to service running in container.| Random Ramblings
Intro| Into.the.Void.
I really like the "knocking harder" technique I developed. I haven't seen it mentioned in any other places, and it effectively gives the protected service a smart layer of obscurity with minimal effort and complexity.| and1equals1.blogspot.com
TL;DR: use xt_recent to allow persistent clients rather than block them.| and1equals1.blogspot.com
Learn how to easily add comments to iptables rules to be a courteous Linux sysadmin. Adding comments is easy and a best practice.| Putorius
