Did you know that IPFire is available as an official AMI on AWS?
You can run the same open-source firewall in the cloud and on-prem, with one unified setup.
#AWS #OpenSource #Firewall #CloudSecurity https://www.ipfire.org/downloads/cloud

Alas, log does not seem to get picked up by logrotate - changed filename to /var/log/asterisk/fail2ban (already in /etc/logrotate.d and previously working) to see if thats any better (as apparently #FreePBX can alter /etc/logrotate.d but its not clear exactly where this happens!)

it turns out maybe some regexes in fail2ban may have been fine, but the full log generated by #Asterisk didn't contain "security" events so it couldn't find any to catch). I've also added "notice" to the security log and the regex *now* seems to snag these!

Turned off FreePBX software #firewall as fighting with #fail2ban #iptables rules (never worked straight anyway and didn't guard #SIP traffic), checking if config persist across reboots and services start correctly.. #VOIP

Utilisateur de #pfsense, je commence tout juste à regarder du côté de #opnsense pour mon #homelab. Si des gens qui me lisent ont un avis éclairé à ce propos, ça m'intéresse (pour être franc, je ne connais pas du tout opnsense).

#parefeu #firewall

#PaloAlto Networks warns of #DoS bug letting hackers disable firewalls

https://www.bleepingcomputer.com/news/security/palo-alto-networks-warns-of-dos-bug-letting-hackers-disable-firewalls/

#cybersecurity #PAN #firewall

Activate firewall during installation? #systeminstallation #firewall

https://askubuntu.com/q/1562903/612

Can your #firewall stop a cat

#caturday #caturdayeveryday

Attackers can force Palo Alto firewalls into maintenance mode

DoS attacks can compromise the operation of Palo Alto firewalls. Security patches are available for download.

https://www.heise.de/en/news/Attackers-can-force-Palo-Alto-firewalls-into-maintenance-mode-11142186.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Firewall #IT #Patchday #Security #Sicherheitslücken #Updates #news

Angreifer können Palo-Alto-Firewalls in Wartungsmodus zwingen

DoS-Angriffe können den Betrieb von Firewalls von Palo Alto gefährden. Sicherheitspatches stehen zum Download bereit.

https://www.heise.de/news/Angreifer-koennen-Palo-Alto-Firewalls-in-Wartungsmodus-zwingen-11142149.html?wt_mc=sm.red.ho.mastodon.mastodon.md_beitraege.md_beitraege&utm_source=mastodon

#Firewall #IT #Patchday #Security #Sicherheitslücken #Updates #news

DoS-Schwachstelle in PAN-OS bedroht GlobalProtect-Infrastruktur

Palo Alto Networks hat eine kritische Sicherheitslücke in seiner Firewall-Software PAN-OS behoben. Die als CVE-2026-0227 klassifizierte Schwachstelle erlaubt es Angreifern ohne Authentifizierung, Denial-of-Service-Attacken gegen GlobalProtect-Komponenten durchzuführen und betroffene Systeme in den Wartungsmodus zu zwingen.

https://www.all-about-security.de/dos-schwachstelle-in-pan-os-bedroht-globalprotect-infrastruktur/

#PaloAltoNetworks #DoS #PANOS #firewall

DigiD MAG NIET IN AMERIKAANSE HANDEN VALLEN
De Amerikaanse techgigant Kyndryl wil de Nederlandse IT-dienstverlener Solvinity overnemen. Dat roept fundamentele vragen op over onze digitale autonomie. Solvinity beheert immers de infrastructuur achter #DigiD, het systeem waarmee burgers zich digitaal bij allerlei Nederlandse overheidsinstanties, waaronder de Belastingdienst en ook verzekeraars en zorg- en dienstverleners kunnen identificeren. DigiD is wettelijk aangemerkt als een dienst die van vitaal belang is voor onze samenleving.

Kyndryl heeft zich bij het Bureau Toetsing Investering (BTI) van het ministerie van EZK gemeld en BTI moet nu toetsen of die overname door de beugel kan. De vraag is of deze toetsing überhaupt plaatsvindt, maar daarover doet BTI geen mededelingen. Over de inhoud van een eventueel genomen toetsingsbesluit kunnen burgers niets te weten komen.
Daarom heeft een coalitie van experts en belangenbehartigers, te weten @marleenstikker, wim voermans, Esther van Egerschot, Maxim Februari, Joris Luyendijk, Felienne Hermans, Sander Schimmelpenninck, @bert_hubert, Karin Spaink, Kees Verhoeven, Jelle Postma, Caroline Nevejan, Reijer Passchier, ikzelf, stichting Privacy First en de stichting #Firewall, op maandag 12 januari een brandbrief naar BTI gestuurd. Daarin dringen wij met spoed aan op informatie over het toetsingsproces, zodat wij als belanghebbende burgers bij dat proces betrokken kunnen worden.

https://www.ftm.nl/artikelen/prominenten-komen-in-actie-tegen-amerikaanse-overname-van-digid-leverancier?share=NP1uH9Zw7nIBew7PrHL7BBOICXS3eoQCUNh84zRLNsfXFgYEW9AsLDmvaQ%3D%3D

@metin I moved from Github to a self-hosted Gitea instance that I self-host on OVH, a European cloud provider.

I also moved my .dev top-level domain from Google to EURid's .eu.

I'm very happy with these changes. I no longer have to put up with AI's obsession every time I did something on GitHub.

On top of that, I no longer use Cloudflare, and recently had to install Anubis (Web AI Firewall) to stop being attacked by AI Crawlers from openai and other Big Tech companies that were scanning all the commits on my Gitea (public repositories ofc).

#github #ovhcloud #eu #europe #eurid #gitea #aicrawler #cloudflare #selfhost #opensouce #privacy #firewall

Did you know you can apply firewall rules to individual VNET Bastille jails?

This allows you to create granular security policies for your services.

#FreeBSD #BastilleBSD #Firewall #Security

Iemand interesse in een Netgate SG-3100 Pfsense firewall? #netgate #firewall #pfsense #router #gateway
https://link.marktplaats.nl/m2355073771?utm_source=ios_social&utm_medium=social&utm_campaign=socialbuttons&utm_content=app_ios

Iptables "-t nat -j LOG" inconsistent with other distros #networking #iptables #firewall

https://askubuntu.com/q/1562825/612

𝗜𝗽𝗙𝗶𝗿𝗲:

#Firewall #OpenSource #IpFire

https://thewhale.cchttps://thewhale.cc/posts/ipfire

IPFire is a versatile, state-of-the-art Open Source firewall based on Linux. Its ease of use, high performance in any scenario and extensibility make it usable for everyone.

#KDE #firewall

Ma in teoria non dovrei poter scegliere il programma che voglio aggiungere alle eccezioni che nel mio caso sarebbe #KDEConnect ? CUPS non è il servizio di stampa?
In pratica non riesco ad inviare file da pc a telefono se non disabilito il firewall del sistema

EDIT. Ho risolto installando GUFW (terzo screenshot)

(Post 2/3) - Die Odyssee durch Netzwerk und DAC-Treiber

Zuerst der Verdacht: IP, Port, Firewall? Music Assistant läuft mit network_mode: host, d.h., die Firewall des Debian-Servers (ufw) war der Übeltäter. Ports 8095 (UI), 9000/9090 (Squeezebox) geöffnet. ✅ PiCorePlayer fand Music Assistant nun per Autodiscovery. Aber die Musik blieb stumm, Player stürzte ab!

Nächster Schritt: Die PiCorePlayer-Logs! Squeezelite meldete "Device or resource busy". Ein Kampf mit sich selbst: Die Squeezelite-Instanz der PiCorePlayer-UI blockierte den FiiO DAC. Deaktiviert, rebootet – DAC frei! Jetzt stürzte Squeezelite nicht mehr ab, aber immer noch keine Musik! 🤔

#UFW #Firewall #Squeezelite #FiiODAC #Troubleshooting

cPanel Shared Hosting Server Specs This article provides an in-depth analysis of our #cPanel Shared Hosting server specs and features powering the 100%-SSD cPanel Hosting services.

cPanel Shared Hosting Server Specs
The following features are included with ...
Continued 👉 https://blog.radwebhosting.com/cpanel-shared-hosting-server-specs/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.raddemo.host #malwareremoval #cloudlinux #caldav #cagefs #firewall #imunify360 #imagemagick #gitversioncontrol #mailman #malwarescanner #cardav #csf #cloudsitebuilder #lscache #imap #memcached #ddosprotection