Have fun browsing my projects. In case you have any questions, don't hesitate to contact me. I'll answer your e-mail as soon as possible!

If you're interested in a RSS feed, you'll find it here.

Finally, you can filter the projects by tags:

jumpNet topology update March 2018

As I wrote some weeks ago, the jumpNet is now interconnected with dn42. You'll find a new network map in this article.

Read more …

Building a L2TP/IPSec server with OSPF routing capability

Over time, jumpNet's VPN servers became bottleknecks regarding bandwidth. Currently, the best VPN server in jumpNet offers 20MBit/s upstream, which is okay but not sufficient for large file transfers like backups. In this article, I describe how to build a L2TP/IPSec VPN server with OSPF rotuing capability.

Read more …

Interconnection between jumpNet and dn42

jumpNet is fine - no question. But it's small and some how I got used to it. There is little new to discover (maybe I'm going to realize a point-to-point radio link this summer, but that's another story) and so I decided to follow up an old plan: Connecting the jumpNet to dn42.

Read more …

jumpNet topology update in January 2018

Some time ago I moved from Zähringe Straße to Merzhauser Straße. What a lucky coincidence, that I moved into the appartment of one of the jumpNet participants. Time to change the topology of the jumpNet a bit.

Read more …

Hardware VLAN with MikroTik Routerboards and RouterOS

I needed a VLAN trunk but had no VLAN capable switches - at least I thought so. After thinking a minute, I remembered my two RB2011. I'll show you how to configure VLAN trunks with them.

Read more …

Updating the ESK stack (elasticsearch, syslog-ng, kibana)

Just a short notice on my ESK experiences regarding updating the stack.

Read more …

nginx as simple reverse proxy for HTTP basic auth

In my last post, I described how to set up a ESK stack (Elasticsearch, syslog-ng, Kibana). I also mentioned that the provided setup is not ideal from a security perspective. In this post I'll show you, how to use nginx as HTTP reverse proxy with HTTP basic auth to protect the Kibana web frontend.

Read more …

pimp my syslog server or "Setting up a syslog server with syslog-ng, Elasticsearch and Kibana"

The jumpNet grows, so do the logs. A little tired of grepping and tailing and lessing it came handy that I needed a solution for a customer with similar needs. After doing some research in the internet, I came across the so called ESK stack. Elasticsearch, syslog-ng and Kibana. Sure, I heared about Elasticsearch and Kibana, but till then I thought this is some hipster IT crap and - I never was so wrong. (Yeah, there is some prejudice coming with age and experience...)

Read more …

ECMP routing - equal-cost multi-path routing

As you propably know, the jumpNet has a redundant VPN infrastructure and is using OSPF. To improve the network design futher, I investigated the possibility of equal-cost multi-pathing. Doing so I needed to tackle a little with the stateful firewall.

Read more …

jumpNet topology update and change of VPN technology

Two more sites joined the jumpNet and we swapped the vpn server hardware. Now, the core of the jumpNet is powered by two RB750Gr3 or hEX.

Read more …