guiwuff guiwuff

💭

On the way

1 follower · 0 following

Jakarta

View GitHub Profile

Recently created

Least recently created

Recently updated

Least recently updated

guiwuff / self-signed-ssl-certificate.md

Created August 22, 2024 11:02 — forked from lon-io/self-signed-ssl-certificate.md

Setup a self-signed SSL certificate with Nginx (server and browser)

1. Configure server: Nginx

Create the certificate:

$ sudo openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/ssl/private/nginx-selfsigned.key -out /etc/ssl/certs/nginx-selfsigned.crt

Create a strong Diffie-Hellman group:

$ sudo openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048

guiwuff / snat_dnat_advantech.md

Created August 21, 2024 16:32 — forked from tomasinouk/snat_dnat_advantech.md

examples of SNAT, DNAT with iptables for Advantech, Conel routers, with comments (probably will work on other routers where iptables can be manipulated, care needs to be taken on applying these commands after reboot).

Some examples of SNAT, DNAT with iptables with comments

mainly used in start-up script

How to test 'safely'

When we play with iptables aka firewall we might end up in situation, where we execute rule, which has unforseen impact - lock yourself out. Recovering from this situation is necessity.

How to:

Enable reboot via SMS.

Test all commands in shell first before putting them into Start-up script. This way the command will be wiped out, when unit is rebooted.

guiwuff guiwuff

1. Configure server: Nginx

Some examples of SNAT, DNAT with iptables with comments

How to test 'safely'

masquarade all outgoing packets to be WLAN0 IP