Tag: security

  • Bonding Multiple Windscribe VPN Connections with pfSense and Wireguard

    This guide will show you how to setup pfSense and Wireguard with multiple connections to Windscribe’s VPNs for faster speeds and redundancy / failover.

  • Windows SSH with Public Key Authentication

    Windows SSH with Public Key Authentication

    PowerShell is a powerful scripting language that can automate tasks on Windows computers. This guide will show you how to use SSH from PowerShell to log into a connection without a password by using a key stored on your Windows 11 computer. Prerequisites To use SSH from PowerShell, you will need: Installing SSH client on…

  • Fix Windows 10 / 11 keeps setting static DNS address

    If you find Windows 10 or Windows 11 keeps setting your DNS setting to certain servers instead of automatically getting the DNS from your DHCP server, you can try the following fix: Windows should now use the DNS entries from DHCP server.

  • Implement EAP-TLS with pfSense and FreeRADIUS

    This guide shows how pfSense can be configured to implement EAP-TLS for a more secure method of WiFi authentication. Create Certificate Authority and Certificates Install and Configure FreeRADIUS Server Configure User Device Configure Access Point [To be completed]

  • How to Forward Pi-Hole Log Messages and Events to Graylog

    rsyslog can be used to forward Pi-hole’s log messages and events to Graylog. The imfile module of rsyslog allows you to convert any logs or other text messages into a syslog message format. By using the input module imfile with the output module omfwd, you can send the converted syslog messages from Pi-hole to Graylog. On your Pi-hole server,…

  • How to Add ntopng as Input for Graylog

    You can stream log messages from ntopng to Graylog by adding the Graylog server as an endpoint and recipient for ntopng notifications, and adding the ntopng server as an input in Graylog.

  • How to Use Pi-hole with DoH and Cloudflared (Zero Trust)

    I was setting up Pi-hole on a new LXC container on Proxmox and wanted to use DNS over HTTPS (DoH) for DNS traffic, so I referred to the the official guide from Pi-hole that previously worked for me. When I tried to install the cloudflared package using the –legacy flag per the instructions from the…

  • How to Fix Memory Integrity Vulnerability with X-Rite i1Display

    If you have an X-Rite i1Display, old incompatible drivers could be causing you to receive a warning from Windows Security about your memory integrity being off and your device being vulnerable. One solution is to delete the incompatible drivers. On my system, the filename of the incompatible drivers for the X-Rite i1Display were oem205.inf and…

  • How to Check UFW Firewall Log

    A firewall is critical to the security of your linux system. This is a tutorial to enable UFW (Uncomplicated Firewall) logging and read the logs. For UFW logging to work, rsyslog must be enabled. Check to see if it is running: If rsyslog is not running, enable the service for it: Then, check if UFW logging is…

  • How to Restrict SSH Access by IP Address

    Allowing SSH access to the outside world is a security risk, so it’s a good idea to restrict access to certain IP addresses or subnets within your LAN. Here is how to restrict SSH access to certain IP addresses. Open the file/etc/hosts.allow as follows: Assuming you want to restrict access to systems in the 192.168.2.0 subnet,…