News & Blog
Latest news from the world of IT. TrueNAS, Proxmox, OPNsense and more.
OPNsense Suricata Custom Rules: Write and Optimize Your Own IDS/IPS Signatures
Suricata custom rules on OPNsense: rule syntax, custom signatures for internal services, performance tuning, suppress lists, and EVE JSON logging.
Proxmox Cluster Network Design: Corosync, Migration, Storage, and Management
Design Proxmox cluster networks: Corosync ring, migration network, storage network for Ceph/iSCSI, management VLAN, bonding/LACP, and MTU 9000 — with example topologies.
TrueNAS Alert System: Configure Notifications and Avoid Alert Fatigue
Set up the TrueNAS alert system: alert categories, identifiers, context information, alert rules, Email/Slack/PagerDuty integration, and strategies to prevent alert fatigue.
Systemd Security: Hardening and Securing Linux Services
Systemd security hardening: unit hardening with ProtectSystem, PrivateTmp, NoNewPrivileges, CapabilityBoundingSet, systemd-analyze security, sandboxing, resource limits, and creating custom timers.
TrueNAS Hybrid Storage: Optimally Combining SSD and HDD
Hybrid storage in TrueNAS: Special VDEV for metadata on SSD, L2ARC for read cache, SLOG for sync writes, Fusion Pools — when to use which configuration.
Grafana + Prometheus: Building and Configuring an IT Monitoring Stack
Build a Grafana and Prometheus monitoring stack: node_exporter, Proxmox exporter, SNMP exporter for OPNsense, create dashboards, alerting rules, retention, and comparison with Zabbix.
ZFS Dataset Tiering: Automatically Move Data Between SSD and HDD Storage
ZFS dataset tiering in TrueNAS: automatically move data between fast SSD and cost-effective HDD storage — policies, metadata tracking, use cases, and comparison with traditional tiering.
DNS over TLS in OPNsense: Setting Up DNS Encryption with Unbound
Configure DNS over TLS in OPNsense: set up Unbound with Cloudflare and Quad9 as upstream servers, certificate validation, DNSSEC, performance impact, and DNS leak testing.
PCIe Passthrough in Proxmox: Passing Through Network Cards and HBAs
Set up PCIe passthrough in Proxmox VE: enable IOMMU (Intel VT-d / AMD-Vi), check IOMMU groups, configure vfio-pci, pass through NICs and HBAs to VMs, use SR-IOV, and troubleshoot common issues.
TrueNAS REST API: Automation and Integration for Storage Professionals
Leverage the TrueNAS REST API: create API keys, manage datasets and snapshots, control replication, Python examples, webhook integration, and monitoring with Zabbix and Prometheus.
DATAZONE Control: Automated Compliance Reports for IT Infrastructure
DATAZONE Control: Generate automated compliance reports — update status, security checks, backup validation, vulnerability scans, PDF export, and scheduling.
Nginx as Reverse Proxy: Securely Publishing Internal Services
Set up Nginx as reverse proxy: Server blocks, proxy_pass, SSL termination with Let's Encrypt, WebSocket support, header forwarding, rate limiting, and security headers.
Page 1 of 12 · 135 articles