The goal state for this setup is:
- OPNsense acts as a core firewall and regulates access between all VMs.
- All VMs share the same bridge interface to reduce setup needed for each VM.
iamsilk
/ proxmox_complete_microsegmentation.md
Created
July 26, 2025 13:30
aka what i did to get from nothing to done.
note: these are designed to be primarily a re-install guide for myself (writing things down helps me memorize the knowledge), as such don't take any of this on blind faith - some areas are well tested and the docs are very robust, some items, less so). YMMV
JfrAziz
/ docker-compose.yml
Last active
March 14, 2025 14:43
Install Nginx Proxy Manager and disable port 81 from outside
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| version: "3" | |
| services: | |
| app: | |
| image: 'jc21/nginx-proxy-manager:latest' | |
| restart: unless-stopped | |
| ports: | |
| - '80:80' | |
| - '443:443' | |
| - '81:81' | |
| environment: |
mrpeardotnet
/ PVE-host-backup.md
Created
December 17, 2019 18:03
Proxmox PVE Host Config Backup Script
This script can be used to backup essential configuration files from the Proxmox Virtual Enivronment (PVE) host.
The script will create backups using tar with specified backup prefix and date and time stamp in the file name. Script will also delete backups that are older then number of days specified.
To create backup script that will be executed every day we can create backup script in /etc/cron.daily/ folder. We need to make it writeable by root (creator) only, but readable and executable by everyone:
touch /etc/cron.daily/pvehost-backup
notpushkin
/ apt-key but it is bash one-liner.md
Last active
November 2, 2023 10:35
Do not use apt-key add.
apt-key add [filename]Note: Instead of using this command a keyring should be placed directly in the /etc/apt/trusted.gpg.d/ directory with a descriptive name and either "gpg" or "asc" as file extension.
— apt-key(8) manpage
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # This script | |
| # - creates a user (named below) | |
| # - sets up a union (aufs) filesystem on top of the users immutable home | |
| # - creates a cleanup script (/usr/local/bin/cleanup.sh) that empties the aufs | |
| # layer on login/logout/boot | |
| # - replaces the lightdm config | |
| # - replaces rc.local to run the script | |
| # |
kachayev
/ concurrency-in-go.md
Last active
September 23, 2025 16:12
Channels Are Not Enough or Why Pipelining Is Not That Easy
... or Why Pipelining Is Not That Easy
Golang Concurrency Patterns for brave and smart.
By @kachayev
dypsilon
/ frontendDevlopmentBookmarks.md
Last active
November 16, 2025 11:36
A badass list of frontend development resources I collected over time.
Attention: the list was moved to
https://github.com/dypsilon/frontend-dev-bookmarks
This page is not maintained anymore, please update your bookmarks.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "code.google.com/p/go.net/websocket" | |
| //"github.com/garyburd/go-websocket/websocket" | |
| //"github.com/zhangpeihao/gowebsocket" | |
| "net/http" | |
| "net/rpc" | |
| "net/rpc/jsonrpc" | |
| ) |
NewerOlder