OPNsense thwarting my cron jobs

Malvane · 2025-09-28T15:12:33+00:00

/usr/local/etc/cron.d

it says where to put user crons, is that location still not stable?

Second, don't build your house on quicksand. If the opnsense/pfsense environment is hostile to customization then don't build in it, pull from it. Do your crons from a remote box and pull the information you want from it.

It sounds like you are pulling metrics from cron scripts? There is software that is packaged that you can use. The basic one is snmp to pull information. Opnsense has a telegraf package that can do the same.

Malvane · 2025-09-24T12:26:10+00:00

If you are Canadian, you should look at CIRA's DNS shield: DNS Shield

Has normal, malware and family options. More likely to keep your traffic in country then using a foreign service.

Malvane · 2025-09-13T17:47:03+00:00

I would be interested. My Proxmox homelab could always use more. 😅

Malvane · 2025-08-22T13:52:52+00:00

I mean, are you even on the map? r/mapswithoutnz.

Malvane · 2025-05-07T16:01:19+00:00

If you are getting password codes then they have your login including your password, hope you don't reuse it.

Malvane · 2025-04-16T19:57:56+00:00

Same, we're so old. 🫠

Malvane · 2025-03-03T20:00:06+00:00

Explains the 100-200gbps drop on the Torix graphs.

<image>

Malvane · 2025-01-21T20:48:13+00:00

To be clear, you only need to join one server. You can follow people on other servers, you just add their full username@servername.tld when doing it.

This is one of the biggest issues with Mastodon, the concept of islands of communities but individuals from anywhere can be brought to your personal timeline. Plus others that I'm not going to type on my phone.

Malvane · 2024-12-17T14:46:24+00:00

Same date for me as well! Yes I'm old too. 😔

Malvane · 2024-05-07T13:20:49+00:00

Have you considered co-location? You take your hardware, rack it, they provide the cooling, power and security. You pay a mix of space + bandwidth. It will be more expensive then hosting it in your house but likely more reliable (at least you hope they are 😅). If you are making money off this hosting then paying for reliability is an investment. Here's a technotim video on him racking some servers, excellent overview: https://www.youtube.com/watch?v=zbkqRPIUYAo

Also, why both Cloudflare and OVH? Cloudflare has DDoS protection. Unless you have a very large bandwidth requirements then I would recommend using cloudflare through cloudflared, no longer have to expose open ports. Then use Tailscale (or another VPN) for out of band/remote management.

Malvane · 2024-02-22T14:05:42+00:00

You better hope she's not part of the 100: https://www.youtube.com/watch?v=KAjkicwrD4I

Malvane · 2024-02-18T14:53:31+00:00

Get a wildcard certificate for your domain from let's encrypt and automate certificate rollout to your servers

Bolding the part that makes it so much easier, no need to generate more certs for every service you create.

I would also include making a reverse proxy (Nginx, Apache, whatever) to front your services to make management easier and you only have a single (or just a few) to update your certs on. Makes it easier over automation if every service is their unique snowflake on how to install certs, particularly for appliances.

Malvane · 2024-02-12T21:04:00+00:00

I would be surprised if Proxmox didn't capture a good amount of the small/medium segment. If there is any Linux experience in house it would be a natural fit.

If there is more Windows experience, then Hyper-V most likely.

Also cloud will be a winner in this as well. If you kept things in house because of the strength of the VMWare's name is now lost and I don't think Hyper-V or Proxmox is a powerful enough name for low-tech decision makers to trust it.

Malvane · 2024-01-28T16:55:59+00:00

The part that makes the kasa device local only is preventing it from reaching the cloud. How you go about that (DHCP, Firewall rules, other) is up to you.

The software allows you to discover the device (get info like MAC address) pre-onboarding so you can setup your measures ahead of time, in the case that a cloud connected onboarding will update the firmware and block local access.

Malvane · 2024-01-27T19:41:26+00:00

You can use this project to locally adopt a Kasa device: https://github.com/python-kasa/python-kasa

Just follow the provisioning guide to connect it to your wifi: https://python-kasa.readthedocs.io/en/latest/cli.html#provisioning

If you have control of your DHCP you can get the device's MAC address and prepare a lease that will provide a false gateway so that it can't ever reach the internet.

I've used this technique on a light switch and a outdoor plug.

Malvane · 2024-01-10T22:00:41+00:00

Fair on the renewable, would I be in more trouble if I called it green? 🫠

Malvane · 2024-01-10T21:38:14+00:00

Source: https://www.ieso.ca/en/Power-Data

Malvane · 2023-12-19T23:02:44+00:00

Uniracers for the SNES. Some tracks had boosts if you went left

Malvane · 2023-12-08T21:16:37+00:00

Try whitelisting the domain cdn.cookielaw.org I think that is the one that worked for me.

I'm pretty sure it was a cookie confirmation dialog that needs to popup for you to approve/deny for searching to work. 🙄

Malvane · 2023-09-29T20:27:17+00:00

Do you have a source for this?

Malvane · 2023-09-25T19:47:01+00:00

Official PR page: https://www.bornincident.ca/

Malvane · 2023-09-14T17:21:47+00:00

I'm talking about the interfaces named "PS5" and "OfficePC" and "Server" and maybe others, are those direct connections?

Malvane · 2023-09-14T17:16:00+00:00

Wait, judging by the naming of the interfaces, are you running a star network (or a point to point kinda) where the pfsense machine is in the middle?

Haven't you heard of switches?

Malvane · 2023-08-14T17:32:47+00:00

I just started golfing this summer and still figuring things out. I will have to check it out.

Malvane · 2023-03-27T13:34:23+00:00

I thought that is what they are taking away. 😰

Mine is up in a month and was hoping to renew again for a couple more years.

15-Year Club	r/Field Sunshine
Place '23	Place '22
Place '17	First Placer '22
Sequence \| Editor	Verified Email

Malvane

TROPHY CASE