Once you start to use fail2ban on more than one machine you’ll get to the point where you’d like to apply the IP blocking to machines other than the local one. While there are other (partially commercial) solutions to do that, I still decided to go with fail2ban. Please consider the following description as a […]
Category: VPN
As shown in my last post using wireguard over TCP (with a little help of proxyguard) isn’t that hard (once you understood how things work). However most VPN solutions come with certain limitations: They often use their specific ports and protocols and therefore can be filtered by firewalls (either by choice or even sometime by […]
Some time ago I tried to get eduvpn working with wireguard over TCP. As you might remember I wasn’t able to make it work reliably so I skipped that attempt for the time being. Now some time has passed and I decided to start over with a more basic approach to get a feeling about […]
Wireguard is a very nice and fast VPN solution, however it comes with some drawbacks: Most of all it only supports UDP traffic. On an open network this is not a problem, however some networks may deny UDP traffic or may even allow only very specific traffic (like (TCP based) http(s)). So to increase the […]
I’m planing to install eduvpn as a personal VPN solution. I also want to separate the VPN functionality (“vpn-daemon“, hostname “eduvpn-node“) from the management web frontend (controller or “vpn-user-portal“, hostname “eduvpn“). eduvpn-node eduvpn (portal) vpn-server-node vpn-user-portal vpn-daemon vpn-ca vpn-maint-scripts Software packages installed on the different hosts Adding software repository So we start by configuring the […]
I recently got a few NordVPN licenses, so I gave it a try. The GUI client on Linux seems extremely limited, so settings things up requires some good old shell commands. Basic installation/setup Documentation can be found here: At that point you’ll need to reboot in order to apply the new group membership (at least […]