This is first post of hopefully many about my “kidnet”. The idea is to limit the kids exposure to the more “adult” side of the internet.
Splunk isnt on the officially support list of apps that can intergrate with G-Suite SAML, but it can be manually addded. This is the process i went through just last night to intergrate G-suite SAML with Splunk.
There has been a lot of changes in my life including a new awesome job aswell as some family stuff, hence so few updates. But now as i have a few minutes i figured id run down what i have been doing in my homelab and hopefully this will prompt me to update this blog… Read more New year, New Homelab
This website used to use Jekyll as its static site generator. I prefer working with static site generators as it means the website needs very little resources and isnt prone to as many vulnerabilities as other CMS’s.
While i do somewhat trust my ISP, I certainly do not trust my government. There is some traffic going in and out of my network that i’d rather not have tied back to me (Im not talking highly illegal stuff, where anyone or anything gets hurt, think more “downloading linux iso’s” and live streaming uhh… Read more Routing specific traffic over a PIA VPN using PfSense
I have been fiddling with multiple different authentication methods to centralise the authentication across all my devices and services. Im trying to push myself to use FreeIPA more as it seems to be becoming more widley used where using Active Directory isnt suitable. It is also really easy to enable 2FA per user which i… Read more Using FreeIPA to authenticate OpenVPN Users on PfSense
Zen give out documentation for how to setup IPv6 on their own devices but i didnt find any info on setting it up on pfSense. This question also appears on /r/pfsense and /r/homelab/ occasioanlly so i figured write down how i managed to get it all working.
Telegraf and influxdb seem to be the new craze in the time-series database world, add in Grafana and you have the basis for a very powerful graphing solution. I personally have moved all my machines away from using Collectd and Graphite to using Telegraf and influxdb
Everyone loves the Pi-Hole. It does a great job blockig ad’s across your entire network. The admin page is also really useful to see whats been going on. Unfortunately the admin interface only gives details of the last 24 hours. I love graphs and graphing things. So i wanted more data.
The reason for this build was because i wanted to use my office Active Directory users within AWS but without giving each instance direct access to the domain controller. I also wanted some kind of resilience should the VPN’s between my VPC and office went down. Also, being a linux guy, im more comfortable with… Read more Configuring 389 Directory service with Active directory bi-directional synchronisation