Network

OPNsense Baseline Guide with Mullvad VPN Multi-WAN, Guest, and VLAN Support

2021-11-17 (updated: 2023-07-30)
dnsdnsmasqfirewallhomelablets‑encryptmullvadnetworkopnsenserouterself‑hostunboundvlanvpnwireguard
This beginner-friendly, step-by-step guide walks you through the initial configuration of your OPNsense firewall. The title of this guide is an homage to the pfSense baseline guide with VPN, Guest, and VLAN support that some of you guys might know, and this is an OPNsense migration of it. I found that guide two years ago and immediately fell in love with the network setup. After researching for weeks, I decided to use OPNsense instead of pfSense.
Read more >

Use Custom DNS Servers With Mullvad And Any WireGuard Client

2021-10-31 (updated: 2023-07-30)
dnsmullvadnetworkvpnwireguard
I’ve been using Mullvad VPN for a while now but only ever used it with the official client on my workstation. I use DNS extensively in my home network, so as soon as I activate Mullvad, I can’t resolve DNS names locally. Of course, this is by design and expected. I own an OPNsense appliance, so the natural solution is to move the tunnel there. TL;DR# Use the following shell command to request an IP with no DNS hijacking:
Read more >

Use Terraform to Deploy an Azure Kubernetes Service (AKS) Cluster, Traefik 2, cert-manager, and Let’s Encrypt Certificates

2021-04-25 (updated: 2022-06-12)
aksazureazure‑kubernetes‑servicecert‑managerclouddevopshelmk8skuberneteslets‑encryptnetworkreverse‑proxyself‑hostterraformtraefik

In this post, we will deploy a simple Azure Kubernetes Service (AKS) cluster from scratch. To expose our web services securely, we will install Traefik 2 and configure cert-manager to manage Let’s Encrypt certificates. The best part about it: we will do everything with Terraform.

Read more >