Author: KingJ

Creating a GRE Tunnel Between OpenWRT and pfSense 3

Creating a GRE Tunnel Between OpenWRT and pfSense

Following on from my previous post about building a IPsec tunnel between a Palo Alto firewall and a pfSense VM, I started trying to build a GRE tunnel between a OpenWRT router on my local network and the pfSense VM. Since GRE tunnels are unencrypted, it needs to traverse the IPSEC tunnel and not the internet! Nothing will stop you from running a GRE...

Setting up a Policy-Based IPsec VPN between a Palo Alto PA-200 and pfSense 1

Setting up a Policy-Based IPsec VPN between a Palo Alto PA-200 and pfSense

As part of an ongoing home network project, i’m trying to set up an IPsec VPN mesh between different sites – e.g. my own home, family home and VPS hypervisor located in an offsite datacentre. The reasoning behind this? Because I can and because it’s fun! To allow for easier resource sharing and remote diagnosis. To allow for an always-on VPN...

1

Invalid/Malformed SSL Certificates on OSX

OSX users, welcome back. Recently, I enabled SSL by default for this site. If you try and browse to a non-HTTPS version of this site, you’ll be instantly redirected to the HTTPS version without loading any content. There’s no real security reason behind this, it’s just another thing I wanted to play around with and worry not, i’ll be doing...

0

Optimising WordPress for Performance

WordPress is a very powerful yet accessible platform. It powers many blogs and websites, including this one. However, many WordPress sites can often be slow to load and navigate. For a user, this is frustrating and will often result in them leaving the site and going elsewhere. This isn’t WordPress’s fault per-se, a lot of optimisations are simply not possible out of...

Running the Dibbler DHCPv6 Client as a Service 3

Running the Dibbler DHCPv6 Client as a Service

In a previous post, I explained how to install and configure the Dibbler DHCPv6 client, which is necessary for using IPv6 at certain providers such as online.net. Perplexingly, I could only get the client to run interactively and not as a service. This meant that I would need to make sure that I ran the client every time the server started,...