Hi there 👋

Preamble So, why build a firewall with Proxmox as a hypervisor and not install bare-metal directly? Well, i ran OPNSense bare-metal for years on a Sophos XG105. It was stable and running fine. The Sophos also had an usb serial port, which was very useful for console access. Unfortunaly, the system began to show its age and performance was not sufficient anymore. When there was a lot of network traffic on other VLANs, I had intermittent packet loss and lag spikes in video and voice calls....

I backup my laptop using Syncoid from the Sanoid package to my homeserver. Because I don’t want to do this manually (e.g. forget it), I was looking for a way to automate the whole thing. A systemd-timer seems like a simple solution at first, but the system is not online all the time and also switches between networks. Also my backup destination is not accessible from the outside without VPN. So I need a solution which only runs if the laptop connects to the home network....

For testing purpose i have an old Fritz!Box 7360 flashed with OpenWRT. For $reasons I needed to reflash the original firmware. Unfortunaly the Recovery tool didn’t work with my model, because it used to be provider branded by EWE. There is a rebranded Version of the tool by EWE, but this didn’t work either. So i researched a little and it turns out you can flash the firmware manually via the ADAM bootloader, just like OpenWRT....

Introduction A Icinga 2 satellite is very useful to monitor external remote networks that are not directly accessible from the master server. The Icinga 2 documentation clearly describes the master->satellite->client setup, but (hopefully) nowadays you use Icinga Director for the configuration management. This raised a question for me: How to configure it and especially where. Define the zones in the Icinga core config? Director? Custom config which is shipped via the fileshipper?...