Made my FreeBSD server at Netcup ready to host multiple isolated applications with automatic https via Let's Encrypt.

Internet → Server → PF firewall → Caddy jail (reverse proxy) → Individual application jails

Each app gets its own isolated jail for security, while Caddy handles all the routing and https. PF keeps the front door locked.

All of course with IPv6 first, where every Jail has it's own public IP address and using NAT for legacy IPv4.

Love how FreeBSD jails make this kind of segmentation so elegant.

#FreeBSD #Jails #SelfHosting #Caddy #ipv4

Made my FreeBSD server at Netcup ready to host multiple isolated applications with automatic https via Let's Encrypt.

Internet → Server → PF firewall → Caddy jail (reverse proxy) → Individual application jails

Each app gets its own isolated jail for security, while Caddy handles all the routing and https. PF keeps the front door locked.

All of course with IPv6 first, where every Jail has it's own public IP address and using NAT for legacy IPv4.

Love how FreeBSD jails make this kind of segmentation so elegant.

#FreeBSD #Jails #SelfHosting #Caddy #ipv4

On commence #CIS2025 avec Guillaume Desgranges « La coordination technique de l’internet africain à l’épreuve du marché : raréfaction des adresses #IPv4 et crise de l’#Afrinic. »

@cis_cnrs

If, like me, you've ever been annoyed at people just saying to grep the output of ifconfig for inet, and the likes, to get the assigned IP address of a network interface.

I got annoyed one time too many.

Have a proper solution.

May or may not also work on for example the *BSDs, but should definitely work on any modern typical-userland Linux.

https://michael.kjorling.se/blog/2025/ip-address-of-network-interface-linux/

#Linux#BlogPost #blog#PersonalWebSite #indieweb #networking#IPv4#IPv6

If, like me, you've ever been annoyed at people just saying to grep the output of ifconfig for inet, and the likes, to get the assigned IP address of a network interface.

I got annoyed one time too many.

Have a proper solution.

May or may not also work on for example the *BSDs, but should definitely work on any modern typical-userland Linux.

https://michael.kjorling.se/blog/2025/ip-address-of-network-interface-linux/

#Linux#BlogPost #blog#PersonalWebSite #indieweb #networking#IPv4#IPv6

Yes, The Book of PF, 4th Edition Is Coming Soon https://nxdomain.no/~peter/yes_the_book_of_pf_4th_ed_is_coming.html

Long rumored and eagerly anticipated by some, the fourth edition of The Book of PF is now available for preorder https://nostarch.com/book-of-pf-4th-edition #openbsd #pf #packetfilter #freebsd #networking #security #tcpip #ipv6 #ipv4#bookofpf

Yes, The Book of PF, 4th Edition Is Coming Soon https://nxdomain.no/~peter/yes_the_book_of_pf_4th_ed_is_coming.html

Long rumored and eagerly anticipated by some, the fourth edition of The Book of PF is now available for preorder https://nostarch.com/book-of-pf-4th-edition #openbsd #pf #packetfilter #freebsd #networking #security #tcpip #ipv6 #ipv4#bookofpf

From an idea to a working beta version in just a few hours. #IPv6 tunnel service with #Wireguard and #OpenVPN support. GRE & SIT follows, OpenVPN PKI backend will be switched to Hashicorp Vault.

Still several things to do… #network#IPv4#GRE#SIT#Tunnel #homelab #net #services @BoxyBSD