Niets is zo permanent als een tijdelijke oplossing.
I have a Synology DS214 NAS in my network. A folder on the NAS was shared via NFS. Connecting to this shared folder with NFS version 3 worked fine in VMware ESXi 8.0, but I was unable to get access to the folder using NFS version 4.1. Newer models may support NFS version 4.1 out …
Continue reading “Add Synology NFSv4.1 datastore to VMware ESXi 8”
Vanwege een nieuw internetabonnement ben ik met ingang van 31 oktober 2020 door KPN overgezet van het Telfort netwerk naar het KPN netwerk. Dit betekende onder andere het omschakelen van DHCP naar PPPoE om verbinding te kunnen maken met het internet. Mijn uitdaging: IPv6 zonder al te veel moeite werkend krijgen. Let op: ik maak …
Om vanuit een eigen mailserver te kunnen mailen vanuit het netwerk van KPN, moet onderstaande toegevoegd worden aan het SPF-record van het verzendende domein: include:spf.ews.kpnxchange.com Hiermee worden de mailservers op het domein kpnxchange.com geautoriseerd om te mailen namens het verzendende domein.
When I was looking for something new to build I ended up building a DNS over HTTPS server. This way I can use my Pi-hole server wherever I am, without exposing port 53. I let nginx handle the encryption of the HTTPS connection, send the information to dnsdist for translation to DNS, and let Pi-hole …
Continue reading “DNS over HTTPS with nginx, dnsdist and Pi-hole”
The next commands are used to optimize and secure my Zimbra Collaboration 8.8 Open Source Edition (executed as user zimbra in the CLI): zmdhparam set -new 3072 zmprov mcf zimbraMtaSmtpTlsMandatoryCiphers high zmprov mcf zimbraMtaSmtpdTlsMandatoryCiphers high zmprov mcf zimbraMtaSmtpdTlsCiphers high zmlocalconfig -e postfix_enable_smtpd_policyd=yes zmprov mcf zimbraMtaEnableSmtpdPolicyd TRUE zmprov mcf +zimbraMtaRestriction “check_policy_service unix:private/policy” zmprov mcf zimbraMtaSmtpTlsSecurityLevel may …
Continue reading “Optimizing and securing Zimbra Open Source Edition”
The most recent open source version of Zimbra Collaboration 8.8 has no official backup module. But with the help of scripting it is still possible to backup a mailbox. The following situation is assumed: Up-to-date Zimbra Collaboration 8.8 A file is available (emailaccounts.txt) containing all email addresses for the backup A NFS server is available …
Continue reading “Backup Zimbra Open Source edition to a NAS with NFS”
I want to receive a notification when someone rings the doorbell at my front door. For this I can buy all kinds of expensive (wireless) doorbells, but I want to use the existing wiring. Because I use Home Assistant for all kinds of automation at home, I also want to integrate this into Home Assistant. …
When you encounter the following error: ** Creating file ‘/opt/zimbra/ssl/zimbra/jetty.pkcs12’ERROR: openssl pkcs12 export to ‘/opt/zimbra/ssl/zimbra/jetty.pkcs12’ failed(1):unable to load certificates140665143981720:error:0906D066:PEM routines:PEM_read_bio:bad end line:pem_lib.c:805: Do this (when for example having all the certs temporarily stored in /tmp/): chown zimbra:zimbra /tmp/*.crt chmod 666 /tmp/*.crt Source: https://forums.zimbra.org/viewtopic.php?t=60189
By default, every Google device uses the following configured DNS-servers: 8.8.8.8 8.8.4.4 But I don’t want my guests, who can use my WiFi, to let Google phone home and give information about who visits my network. I use iptables to block those DNS-requests. The firewall rejects all the DNS-requests that would be sent to Google. …
Het toevoegen van lange DKIM sleutels met dnscmd Probleem met PowerShell: het kan geen strings aan die langer zijn dan 255 tekens. Mijn DKIM-key is langer dan dat, en ondanks allerlei pogingen is het niet gelukt om deze met PowerShell toe te voegen aan de DNS-zone. Gelukkig werkt dnscmd nog wel in PowerShell, dus kan …
Continue reading “Handige PowerShell commando’s voor mezelf”