The FreeBSD-native-ish home lab and network
The author details a complex home lab setup with a FreeBSD server on a laptop, utilizing Jails for services like WordPress and emphasizing security measures and network configurations for efficiency and functionality.
Read original article
The article discusses the author's evolving home lab and network setup, transitioning from a simple FreeBSD server to a more complex infrastructure. The home server, named pingvinashen, runs FreeBSD on a Latitude E5470 laptop with various services like email, web, and chat servers. The author emphasizes the use of containers, specifically Jails, for resource efficiency. The server hosts multiple Jails for different services like WordPress, MySQL, Git, and automation tools. The network setup includes VLANs for management, LAN, and guest networks, with detailed configurations for each VLAN. The home router, evn0, also runs FreeBSD and handles routing, DHCP, DNS, and syslog services. Security measures include using pf(4) firewall and VLAN isolation to protect the network. The setup includes IPv6 support through an IPv6-over-IPv4 tunnel and static routes. The author shares configuration details for services like WireGuard VPN, nginx web server, and various Jails. Overall, the setup aims for efficiency and functionality in managing a diverse range of services within a home environment.
Related
EasyOS: An experimental Linux distribution
The EasyOS website is a comprehensive guide covering the unique operating system. It includes advantages, development guidelines, application details, installation tutorials, technical workings, and troubleshooting insights, serving as a valuable resource.
FreeBSD Bhyve Companion Tools
The author details transitioning from VirtualBox to FreeBSD Bhyve, praising Bhyve's benefits in a FreeBSD setting. Tools like VNC connection and pause/resume scripts optimize Bhyve operations, simplifying VM management.
Daily Automated Testing for Milk-V Duo S RISC-V SBC (IKEA Tretakt, Apache NuttX)
The article discusses daily automated testing for Milk-V Duo S RISC-V SBC using IKEA TRETAKT and NuttX RTOS. Tests run via Home Assistant API, Google Assistant, and USB serial port. Future plans include software emulator testing.
SSH as a Sudo Replacement
Using SSH instead of sudo, the article addresses limitations of setuid binaries for privilege escalation. It details configuring s6-sudod to allow authorized users root access securely, emphasizing OpenSSH's security features.
My weekend project turned into a 3 years journey
Anthony's note-taking app journey spans 3 years, evolving from a secure Markdown tool to a complex Electron/React project with code execution capabilities. Facing challenges in store publishing, he prioritizes user feedback and simplicity, opting for a custom online deployment solution.
1 commentsRelated
EasyOS: An experimental Linux distribution
The EasyOS website is a comprehensive guide covering the unique operating system. It includes advantages, development guidelines, application details, installation tutorials, technical workings, and troubleshooting insights, serving as a valuable resource.
FreeBSD Bhyve Companion Tools
The author details transitioning from VirtualBox to FreeBSD Bhyve, praising Bhyve's benefits in a FreeBSD setting. Tools like VNC connection and pause/resume scripts optimize Bhyve operations, simplifying VM management.
Daily Automated Testing for Milk-V Duo S RISC-V SBC (IKEA Tretakt, Apache NuttX)
The article discusses daily automated testing for Milk-V Duo S RISC-V SBC using IKEA TRETAKT and NuttX RTOS. Tests run via Home Assistant API, Google Assistant, and USB serial port. Future plans include software emulator testing.
SSH as a Sudo Replacement
Using SSH instead of sudo, the article addresses limitations of setuid binaries for privilege escalation. It details configuring s6-sudod to allow authorized users root access securely, emphasizing OpenSSH's security features.
My weekend project turned into a 3 years journey
Anthony's note-taking app journey spans 3 years, evolving from a secure Markdown tool to a complex Electron/React project with code execution capabilities. Facing challenges in store publishing, he prioritizes user feedback and simplicity, opting for a custom online deployment solution.