Over time, jumpNet's VPN servers became bottleknecks regarding bandwidth. Currently, the best VPN server in jumpNet offers 20MBit/s upstream, which is okay but not sufficient for large file transfers like backups. In this article, I describe how to build a L2TP/IPSec VPN server with OSPF rotuing capability.
In my last post, I described how to set up a ESK stack (Elasticsearch, syslog-ng, Kibana). I also mentioned that the provided setup is not ideal from a security perspective. In this post I'll show you, how to use nginx as HTTP reverse proxy with HTTP basic auth to protect the Kibana web frontend.
The jumpNet grows, so do the logs. A little tired of grepping and tailing and lessing it came handy that I needed a solution for a customer with similar needs. After doing some research in the internet, I came across the so called ESK stack. Elasticsearch, syslog-ng and Kibana. Sure, I heared about Elasticsearch and Kibana, but till then I thought this is some hipster IT crap and - I never was so wrong. (Yeah, there is some prejudice coming with age and experience...)
I worked a lot with asterisk when it came to provide VoIP. As there a plans to provide VoIP via WebRTC too and asterisk didn't prove to be very well suited because of SIP incompatibilities, I decided to have a look at FreeSWITCH.
Do you know this scenario: Every time you want to try something out, you need to install linux on some hardware. After you've played around, the system is in a somehow messy state. The next time you want to try something, you need to start over...
I don't have time for this anymore and wanted to be more flexible. In the past I read a lot about qemu and kvm, so let's give it a try.