This is simple WireGuard server - client configuration to get started with WireGuard. I'm using separate conf file and privatekey because i'm configuring servers with Ansible scripts and dont want privatekey to be in my Ansible file.
Tag: security
Configure Elasticsearch, Logstash and Kibana to use X-Pack and SSL
X-Pack is included in free Basic version of Elasticsearch and you should use it. Here are my notes how i configured Elasticsearch, Logstash and Kibana to use X-Pack and SSL.
Send audit logs to Logstash with Filebeat from Centos/RHEL
Install Filebeat Add repositories https://www.elastic.co/guide/en/beats/filebeat/current/setup-repositories.html Install sudo yum install filebeat sudo systemctl enable filebeat Configure Filebeat sudo cp -av /etc/filebeat/filebeat.yml /etc/filebeat/filebeat.yml.default sudo vim /etc/filebeat/filebeat.yml filebeat.inputs: filebeat.config.modules: path: ${path.config}/modules.d/*.yml reload.enabled: false output.logstash: hosts: ["LOGSTASHIP:5044"] processors: - add_host_metadata: ~ - add_cloud_metadata: ~ logging.to_syslog: false logging.to_files: true logging.files: path: "/var/log/filebeat" name: "filebeat.log" keepfiles: 7 sudo filebeat modules enable … Continue reading Send audit logs to Logstash with Filebeat from Centos/RHEL
Qubes 4 Fedora 29 minimal sys-net
https://www.qubes-os.org/doc/templates/fedora-minimal/ Download fedora 29 minimal Run in dom0 [user@dom0 ~]$ sudo qubes-dom0-update qubes-template-fedora-29-minimal Update fedora 29 minimal Run in dom0 [user@dom0 ~]$ qvm-run -u root fedora-29-minimal xterm bash-4.4# dnf upgrade -y bash-4.4# poweroff Clone fedora 29 minimal template Start Qube manager. Click top left Qubes icon - System tools - Qube manager. Right click fedora-29-minimal … Continue reading Qubes 4 Fedora 29 minimal sys-net
Basic iptables rules
Basic iptables rules with some tips and tricks.