http://wiki.amihere.de/index.php?title=Spezial:Neue_Seiten&feed=atom&hideredirs=1&limit=50&offset=&namespace=0&username=&tagfilter=&size-mode=max&size=0AmIHereWiki - Neue Seiten [de]2024-03-28T09:12:34ZAus AmIHereWikiMediaWiki 1.38.2http://wiki.amihere.de/index.php/Proxy%2BUPSProxy+UPS2022-10-25T09:59:33Z<p>Onlineprog: +link Proxy, +automation</p>
<hr />
<div>see also see also [[Proxy]]<br />
=== apps ===<br />
webmin :10000 (TSL/SSL)<br />
<br />
squid with daily adblocker-urls (80/443 transparent, 8080/8443 standard)<br />
<br />
pihole as dns adblocker (53, 80/443)<br />
<br />
pdns dns cache (53)<br />
<br />
pvr for mediathek etc.<br />
<br />
logrotate<br />
<br />
failban<br />
<br />
ssh knocking ports<br />
<br />
ids / ips<br />
<br />
rootkit checker<br />
<br />
=== filesystem ===<br />
btrfs compress filesystem<br />
<br />
zfs compress fs + 2nd drive cache ssd → hdd<br />
<br />
=== usv/ups ===<br />
ups/usv - lan cable off → shutdown in 10min when (blocker-file not exists) or (wlan usb not exists) otherwise enable wlan (when exists and promote in cloud private ip?)<br />
<br />
lan by power-ethernet with remote switched outlet (manual on / off by user, shutdown by lan-off detection)<br />
<br />
=== behaviour ===<br />
vm: lan off → shutdown 10min → write zerofile (for better backup-compression of vm file), each time a new till no empty space (leave space when shutting down for next bootup)<br />
<br />
raspi: lan off → log file entry / remove blocker file → shutdown 10min<br />
<br />
=== parameters ===<br />
blocker file (like /etc/nossh) to prevent shutdown by lost lan connection<br />
<br />
no graphical mode (server mode)<br />
<br />
hardened?<br />
<br />
no mitigations (url boot parameter fast linux?)<br />
<br />
squid as proxy port 80<br />
<br />
squid as transparent proxy (ssl bump, ssl/tls certs of squid in client installed)<br />
<br />
web-cache promotion by lan ad (proxy file?)<br />
<br />
=== hardware ===<br />
vm without hyperthreading on host (bios, ht intel, smt amd)<br />
<br />
raspi 2 + usv battery (compiler help by PC)<br />
<br />
little ssd as cache, hdd as big storage (media, web cache squid)<br />
<br />
usb tv with remote control for pvr<br />
<br />
=== linux distro ===<br />
vm gentoo 64 / 32 (compiler help for arm raspi)<br />
<br />
raspi2 gentoo 32 (64?)<br />
<br />
=== nice to have ===<br />
raspi camera / motion detection<br />
<br />
=== automation / repeatable ===<br />
script / log<br />
<br />
ansible</div>Onlineprog