IPSec VPN Host to Host on Ubuntu 14.04 with strongSwan

hotfuzz-vs-swan

After spending a crazy amount of time trying to find something up to date regarding network security and host to host VPN I decided to write something which will hopefully be useful to other people in the same situation.

Setting up a host to host IPSec connection between two or more hosts running Ubuntu isn’t always a simple process. We want encryption to protect all the communication between two hosts and for this tutorial we will be using what I feel to be the simplest method of using Pre-shared Keys (PSK).

Continue reading →

Migrate MySQL Servers with Databases and Users

wavey-lines

Moving databases between one MySQL server and another isn’t always easy, especially if you’re migrating database servers from one server to another.  Imagine for this tutorial that you want to take an entire MySQL setup and put it on another server.  We will also be exporting all the user accounts too, very useful for instance if we have lots of websites in our database.  This tutorial will show you how to do just that.

Continue reading →

Blocking Countries on Nginx without the GeoIP Module

the-world-in-flags

Sometimes blocking entire swathes of the world is the way to go if you truly want a defense in depth approach on your web apps, for instance do your administrators truly need to log on from every country on Earth? As website administrators we get a feel for where our legitimate traffic is coming from and where we see nefarious connections from.

Continue reading →

Bonding Interfaces on Ubuntu 12.04LTS

uber-neat-uber-switches

Having multiple interfaces on a server helps for a variety of reasons, and recently I had to get a server (a Sun Micrososystems X4100 incidentally), up and running with Ubuntu 12.04LTS and bonded interfaces.

Continue reading →

ISC(2) CISSP Revision Notes – Study and Exam Tips

notes-study-and-exam-tips

I’ve recently sat my CISSP exam and passed!  Very happy with the result, now all I need to do is sort out the paper work.  I present here some tips I learnt while studying for the CISSP, and present some observations from the exam.  I often liken the courses I do to an academic level, for those who know I’d class the CISSP as 60 points at a Post Graduate level.

Continue reading →