Monitoring pf logs with Gource

tcpdump pflog0 through GourceEver wanted to see your OpenBSD pf(4) logs in a cinematic way?

This post will demonstrate the use of Gource (software version control visualization tool) as a means to visualize our pf firewall logs.

The examples in this post were carried out on OpenBSD piping output from pflog(4) to a Linux workstation with OpenGL extensions support.

Using OpenBGPD to distribute pf table updates to your servers

OpenBGP+PFOne of the challenges faced when managing our OpenBSD firewalls is the distribution of IPs to pf tables without manually modifying /etc/pf.conf on each of the firewalls every time.

This task becomes quite tedious, specifically when you want to distribute different types of changes to different systems (eg administrative IPs to a firewall and spammer IPs to a mail server), or if you need to distribute real time blacklists to a large number of systems.

The following post outlines one a method of distributing such lists using OpenBGP to deliver them into your pf tables.

Using OpenBSD and vxlan to overlay remote lans

Have you ever wanted to "merge" two or more remote lans between your virtualized hosts? The following blog post will outline the steps required to configure VXLAN tunneling between two hosts.

Echofish Monday...

There is no better feeling than being pleasantly surprised by the application you develop. This is what happened to me this Monday morning.

First, let me explain some bits of our network.

Website Renovations under way

Hello and welcome,

Unfortunately, we are currently in the process of renovating our website. This was something we needed to do for quite some time, but couldn't due to prior obligations.