Projects

Have fun browsing my projects. In case you have any questions, don't hesitate to contact me. I'll answer your e-mail as soon as possible!

If you're interested in a RSS feed, you'll find it here.

Finally, you can search projects or filter them by tags:

nginx as simple reverse proxy for HTTP basic auth

In my last post, I described how to set up a ESK stack (Elasticsearch, syslog-ng, Kibana). I also mentioned that the provided setup is not ideal from a security perspective. In this post I'll show you, how to use nginx as HTTP reverse proxy with HTTP basic auth to protect the Kibana web frontend.

Read more …

pimp my syslog server or "Setting up a syslog server with syslog-ng, Elasticsearch and Kibana"

The jumpNet grows, so do the logs. A little tired of grepping and tailing and lessing it came handy that I needed a solution for a customer with similar needs. After doing some research in the internet, I came across the so called ESK stack. Elasticsearch, syslog-ng and Kibana. Sure, I heared about Elasticsearch and Kibana, but till then I thought this is some hipster IT crap and - I never was so wrong. (Yeah, there is some prejudice coming with age and experience...)

Read more …

ECMP routing - equal-cost multi-path routing

As you propably know, the jumpNet has a redundant VPN infrastructure and is using OSPF. To improve the network design futher, I investigated the possibility of equal-cost multi-pathing. Doing so I needed to tackle a little with the stateful firewall.

Read more …

jumpNet topology update and change of VPN technology

Two more sites joined the jumpNet and we swapped the vpn server hardware. Now, the core of the jumpNet is powered by two RB750Gr3 or hEX.

Read more …

MikroTik mAP lite

Recently, I bought a MikroTik mAP lite to play with. With its size and performance it is far more than a toy, it is a versatile tool I can carry along.

Read more …

(MikroTik) IPSec: I can't ping the router itlsef. Why?

I just configured some IPSec tunnels to connect the management network to our company's local network and stumbled over a well known problem: I can ping hosts "behind" the router doing IPSec, but I cannot ping the router itself. Read why and how to circumvent this issue.

Read more …

I was a webhoster

Several years ago, I was interested in webhosting technologies. As servers and elecricity didn't pay for themselves, I founded a small web hosting business to fund my hobby.

Read more …

jumpNet topology update

jumpNet has grown a bit. We now have full redundancy regarding the VPN server and some more users.

Read more …

Vodafone - what the hell is going on? [last update 09.01.2017]

When I moved to Freiburg some years ago, I ordered my internet access from Arcor. Some time ago Arcor was bought by Vodafone and I involuntarily became a Vodafone customer. The transisition from Arcor to Vodafone went smoothly, but now, I'm experiencing odd issues with my Vodafone line...

Read more …

MikroTik CAP and CAPsMAN

Some time ago, MikroTik included a WiFi controller feature into RouterOS. Today, I implemented it in my home network.

Read more …