Blogs

Blogs
Disk passthrough for vms …

Intro It has always been recommended to give ZFS full disk control, so after placing my raid card in HBA mode, I went ahead and gave full disk control to my TrueNAS vm. Figuring out the id of the disk Typically, disks are labeled as /dev/sdX, but this can change when adding other drives or moving …

Blogs
Replace the default shell …

Intro After setting up the AD trust, every time I logged in the shell defaulted to /bin/sh. To change it to /bin/bash or any other shell of your choice you can do the following. Editing SSSD.conf Navigate to /etc/sssd/ and open sssd.conf in an elevated text editor. It should look something like …

Blogs
Using Fail2Ban with …

Intro To better protect my web accessible services, I decided to use Fail2Ban in conjunction with Cloudflare’s WAF to block IPs with more than 3 failed login attempts. I already leverage Cloudflare’s CDN and geo-blocking capabilities on my homelab, so I opted to utilize their WAF to …

Blogs
Map an Active Directory …

Intro After creating my domain trust between AD and FreeIPA, I was left wanting to access restricted resources in Linux using my AD accounts. To circumvent this, I mapped a group from AD to FreeIPA and gave it the appropriate permissions. Create the group in AD The first step would be to create a …

Blogs
Log in to Linux using AD …

Intro After creating a trust in FreeIPA, I kept having to write the full domain alongside my username whenever I tried to access the system. These are the steps I took to log in only with my username. Editing SSSD.conf Navigate to /etc/sssd/ and open sssd.conf in an elevated text editor. It should …

Blogs
Setting up a cross-domain …

Intro I’ve been playing around with FreeIPA in my homelab for a while and have always wanted to enable seamless authentication between all my hosts regardless of their operating system. I stumbled upon the concept of cross-domain trusts between FreeIPA and Active Directory which allows us to …