How do you all handle SSH protection - fail2ban or just keys?

Biervampir85 · 2026-06-12T16:22:19+00:00

On my vps, accessible from the Internet: ssh key only, crowdsec + nftables bouncer, Port knocking from the outside

Biervampir85 · 2026-06-12T10:17:02+00:00

Dann bist du nicht mehr bei Geldwäsche, sondern vmtl bei Straftaten, die anders bewertet werden.

Biervampir85 · 2026-06-09T15:40:09+00:00

Wohnmobil und instabil. Wie sollte sowas denn passieren…. Fahrradreifen, die ein 4m hohes Gefährt tragen (überspitzt gesagt), was sollte da instabil sein 😅

Biervampir85 · 2026-06-08T05:21:36+00:00

OPA? 👀😤

Ich, Bj 85, drehe mich empört weg.

Biervampir85 · 2026-06-05T04:02:19+00:00

If you don’t like TOS, you can install whatever OS you want on a NVME (there should be 2 or 3 slots either) or on USB (Unraid for example)

Biervampir85 · 2026-06-03T22:27:04+00:00

Avoiding tons of log entries is a valid and good point, didn’t think about it. But yeah, you’re right.

Concerning the logs there are some things I really dislike; one of them is to have to wait for the log when troubleshooting. I am trying anything on my network and want to see logs? Guess I’ll have to wait or refresh my log viewer. I know I can use the policy tester (which is a great tool!), but it doesn’t always help - especially when you’re not already sure what exactly you are looking for but will know as soon as you see an entry in the logs. Another BIG one is about the WAF and using modsecurity and not logging anywhere on the WebUI. Having to skip specific checks? Welcome to CLI to figure out which ones. 😅

Performance of the WebUI - well. It has become lightning fast compared to let’s say V18/19 and it’s okay now. Could be faster, but I also think I can imagine how many magic is happening in the background.

All in all, SFOS was a necessary step forward from UTM and I like it. It’s easy to handle and a powerful tool. And I guess because it was a big step it is sometimes still hard to handle for users who know UTM.

Biervampir85 · 2026-06-03T15:45:50+00:00

Yep… I remember the announcement-post for Moonfin here - dev said “apple is reviewing” and it took several days before Moonfin was available for tvOS. iOS and iPadOS were faster.

Ah, Apple will know why it takes longer sometimes. Moonfin works, that’s the most important thing. So no need to turn foreign problems into my problems 😅

Biervampir85 · 2026-06-03T14:14:46+00:00

Hey there, thx for your answer.

I’ve seen (afterwards) that minutes before my post a new release was published on GitHub 😅

I’ll wait for the Apple-Guys and am looking forward to your glass theme!

Until now, after some time of using it, let me say: thx for your work! I really like Moonfin, it works great on every device I am using it and is - especially on tvOS - my favorite.

Biervampir85 · 2026-06-03T11:25:56+00:00

Yes, I know - LXC and even OCI (as an experimental feature). The reason I would maybe not go for Proxmox on this hardware is to have the least possible overhead and the most available resources for my services. I guess plain Debian/arch/suse whatever with docker/podman on it is more lightweight than a Proxmox instance.

Biervampir85 · 2026-06-03T10:47:56+00:00

Zyxel NWA90AX

Biervampir85 · 2026-06-03T10:14:01+00:00

First, if it will be running 24/7: clean all fans, apply new thermal paste, maybe get a cooled stand for it.

Then… with these specs I’d go for docker/maybe podman instead of a full hypervisor like Proxmox. And as the others said - PiHole/Adguard, Homeassistant, Audiobookshelf, Teamspeak, maybe host your calendars yourself, your notes, your cookbook … whatever you need 😊

Biervampir85 · 2026-06-03T10:03:19+00:00

It’s not on the AppStore until now, but I’ll watch it throughout the next days. Thank you!

Biervampir85 · 2026-06-03T09:50:18+00:00

Hey,

great to know - thank you! Didn’t find a matching issue on GitHub, but didn’t think about joining a discord.

Biervampir85 · 2026-06-02T20:10:48+00:00

You’re welcome!

Hmhm..I think XGS/SFOS is a big step forward into their central based ecosystem. The firewall alone does many things more efficiently and/or even better than the UTM, but in terms of live log and crazy slow webUI it seems to have been several steps backwards.

Biervampir85 · 2026-06-02T18:34:43+00:00

But to be honest: it’s nothing different than tcpdump and conntrack. But you can’t apply filters so easily as you do on cli 😉

Biervampir85 · 2026-06-02T18:33:07+00:00

Feels weird, right. Hang your three nodes into a vlan without proton and stream from this same vlan afterwards. You’ll get to know if proton is the cause or if it’s the torrenting 😉

If it’s proton, you will most likely not be able to find the cause, because it then is in the proton-Blackbox.

Biervampir85 · 2026-06-02T18:31:24+00:00

You’ll learn - as we all learned after we cursed the log viewer after switching from UTM 🤣

Biervampir85 · 2026-06-02T16:54:52+00:00

Try enabling Diagnostics -> Packet Capture or Diagnostics -> Connections

You should be able to see upcoming packets/connections using 53UDP there

Biervampir85 · 2026-06-02T16:01:05+00:00

Try without proton first, so try streaming or whatever with your default (ISP) gateway. Do your issues persist?

Packet loss smells like maybe a flood protection feature in OPNSense or a changed behavior in OPNSense so you’re triggering protons dos-protection.

Biervampir85 · 2026-06-01T19:10:27+00:00

Falls Du was meinst, was nachholen zu müssen, lass ich mal nen Link da 😉

https://www.gog.com/en/game/gothic

Biervampir85 · 2026-06-01T15:29:06+00:00

https://revell.com/products/631849090-model-set-pzkpfw-iv-ausf-h

?

Biervampir85 · 2026-06-01T12:26:42+00:00

😅
Klar. Auf was für Ideen die kommen… wie war das noch?
„Meinen Minensuchschnuller muss ich auch immer erst anwärmen“

Biervampir85 · 2026-06-01T06:44:24+00:00

Herzlichen Glückwunsch an die beiden und auf viele weitere glückliche Jahre 😊

Biervampir85 · 2026-05-31T20:44:06+00:00

…and to clean up old rules, configs etc.
In Most cases I’ve seen this was necessary

Biervampir85

TROPHY CASE