While preparing the infrastructure for migrating RTFM from the DigitalOcean server to AWS (see AWS: basic infrastructure setup for WordPress) I decided to also try AWS ALB mutual authentication (for some reason I thought this feature launched at the last re:Invent, at the end of 2024, but it’s actually been around since late 2023 –… Read More »
I looked at the costs for the infrastructure described in the previous post AWS: basic infrastructure setup for WordPress, and let out a heavy sigh: One NAT Gateway is a quarter of my AWS spend, and even with AWS Credits I can’t help feeling a bit stingy about it. There’s an option to remove the… Read More »
It’s time for a major server upgrade for RTFM, which I usually do by migrating to a new server – because I also do various other upgrades along the way, like upgrading the PHP version or even migrating to a different cloud. This time I’m planning to move from DigitalOcean, where RTFM has been hosted… Read More »
Another one of the many nice features of MikroTik – built-in WireGuard support (although even cheap TP-Link Archers have it). In my setup, the MikroTik RB4011 acts as a “VPN Hub” – all clients connect to it and are united into a single network, and the role of VPN is slightly exaggerated is genuinely important… Read More »
I had been thinking about trying MikroTik for a long time, but I was always a bit too lazy to delve into RouterOS. Finally, riding the wave of the Home NAS project setup (see the beginning in FreeBSD: Home NAS, part 1 – setting up ZFS mirror), I decided it was time to upgrade my… Read More »
For a couple of months now, my work laptop, a Lenovo ThinkPad T14 Gen 5 running Arch Linux, has been having trouble opening new websites – for the first 10-15 seconds, the site loads in “pieces”, for example: But then it “wakes up”, and everything starts working perfectly: Finally, when I started setting up a… Read More »
The next step in the process of setting up a home NAS on FreeBSD is to add an NFS share. We set up Samba in the previous part – now we let’s add NFS shares to it. My idea is for the Samba share to be used for various media resources requiring access from phones… Read More »
Got an alert from the monitoring system this morning, indicating that the blog is down: Well, I thought: another one DDoS, not the first time. Investigating the issue I went to the Cloudflare admin, enabled the Under Attack Mode, and started the investigation. Checked the requests: I think, okay, it’s simple – requests are coming… Read More »
Continuing the setup of my home NAS on FreeBSD. Actually, a NAS is a Network System, and it’s desirable to have access to it from other devices – Linux and Windows hosts, phones, and TVs. Here we have two main options – Samba and NFS. One could also mention sshfs – but this solution is… Read More »
In the previous post, FreeBSD: WireGuard VPN, Linux peer and routing between networks, we set up a VPN to connect two networks – my office and home – and everything is working perfectly. However, currently, to connect to any host in the networks, you have to specify an IP address. Of course, you could manually… Read More »