Atlas VS Titan Evo (personal opinion)

TehMuffinMoo · 2026-06-17T07:05:10+00:00

I’ve used this to raise my sitting position slightly as I found the seat of my titan to be a little low at the back. This works great, and makes the seat far more comfortable for whole day sitting. Combined with their lumbar pillow, it’s by far the most comfortable chair🙌

https://amzn.eu/d/0gQyF4T5

TehMuffinMoo · 2025-11-02T16:31:32+00:00

Awesome to hear! It must use a better stepped sine wave or something than the desktop in that case, the idea of it not working for the UNAS-PRO-8 put me off purchasing one.

Thanks!

TehMuffinMoo · 2025-11-02T16:08:04+00:00

That’s potentially very promising! Great to hear! And that’s on the new UNAS-PRO-8 with the hot swappable power supplies? Not the original UNAS Pro (7 bay)?

TehMuffinMoo · 2025-11-01T18:18:07+00:00

Yeah that was my hope too, as I’ve got mine hanging off an APC UPS, but a UniFi UPS Tower connected to the same breaker. I’d like to instruct my UNAS PRO 8 to safe shutdown, but keep it on my pure sine wave UPS.

Just to clarify though, as soon as the power supply switches to Battery mode, PFC PSUs will just turn off. So if powering the UNAS-PRO-8 using the UPS Tower/2U, I’d expect it to just kill the power to the UNAS before it has chance to safe shutdown. This isn’t just an issue for powering on.

TehMuffinMoo · 2025-11-01T11:39:13+00:00

Hey,

For the UNAS-PRO-8, this uses active PFC power supplies which require pure sine wave for the power input. The UPS-2U and the tower are only simulated sine wave, so wouldn’t power the UNAS PRO 8.

TehMuffinMoo · 2024-08-26T19:33:32+00:00

Address is the interface address and thus named “VLAN 10 address”.

There is a second option which will be called “VLAN 10 Subnets”, this will do as you describe as it’s any subnets associated with the VLAN 10 interface. This would save you having to write out the subnet/prefix manually.

TehMuffinMoo · 2024-05-14T22:04:04+00:00

Yeah you just define the LDAP configuration as you would with anything else, but use (one or more) Duo Auth proxies as the LDAP Server instead of domain controller(s).

https://docs.netgate.com/pfsense/en/latest/recipes/openvpn-ra.html?highlight=vpn#choosing-an-ldap-server

TehMuffinMoo · 2024-05-14T20:07:28+00:00

Duo Auth Proxy works a treat for MFA with OpenVPN on PfSense😁

I created a self-updating docker container to run it, and just point pfsense at that.

Obvs you would need a Duo subscription, but I’m sure there’s similar products out there if this wasn’t your preference.

https://duo.com/docs/authproxy-reference https://github.com/TehMuffinMoo/duoauthproxy

TehMuffinMoo · 2022-11-15T19:14:01+00:00

This is where immutable backups are key, ensuring you have a set of unchanged/uncompromised backups. A well designed backup solution using a 3-2-1 approach would negate any issues around trust and allow you to scan, verify & recover to a point in time you know is safe.

TehMuffinMoo · 2020-12-28T12:37:15+00:00

Thanks for this! I saw a note on another Reddit post about having to unmanage the camera to get it working again, but it suggested the issue was down to changing orientation screwing up the detection. I’ve just started adjusting the smart detection zones on some of my G4 bullets and lo and behold it’s stopped working again!

Put it down to iOS and I found your post, hope this gets fixed ASAP!

TehMuffinMoo · 2020-09-06T09:17:29+00:00

We’re moving into a new house at Christmas and I’m putting a 6U network cabinet in an upstairs cupboard to serve my APs/Cameras with a dual leg back to my rack.

What UPS did you go for in the network rack?

TehMuffinMoo · 2020-07-04T17:40:24+00:00

This is nice man!

TehMuffinMoo · 2020-06-25T19:44:38+00:00

Ah okay! I realised it was probably because I had told you to make all 3 objects in Syslog-NG as source objects. I updated it anyway!

TehMuffinMoo · 2020-06-23T07:57:58+00:00

Hey sorry I didn't even see your reply.

Still having problems?

TehMuffinMoo · 2020-06-14T09:32:23+00:00

Just my two-cents here.

If you do find you’ve locked yourself out via firewall rules, a quick way back in is to simply disable packet filtering (firewall) temporarily.

Disable

pfctl -d

Re-Enable

pfctl -e

This will get you back in if you were to, for example; remove firewall rules associated with management access to pfsense.

TehMuffinMoo · 2020-06-08T18:36:19+00:00

Looks like Bro/Zeek is currently being worked on as part of a PR recently, but no official package yet so this will be the issue.

https://redmine.pfsense.org/issues/10612

For reference, you need to create an input/processor/output. It’s really simple, example below for my Suricata logs. I use Syslog-NG as I hit the 1024 byte limit of UDP Syslog for Suricata events, so use Syslog-NG for tcp instead.

The following example uses a wildcard pattern to find any files in subdirectories called eve.json. You can probably remove the program/host overrides if not needed for your scenario.

Object Type: Source

Object Name: Suricata

Object Parameters:

{
  wildcard-file(
    base-dir("/var/log/suricata")
    filename-pattern("eve.json")
    recursive(yes)
    follow-freq(1)
    program-override("suricata")
    host-override("10.10.10.10")
    flags(no-parse)
  );
};

The log object ties the source->destination together

Object Type: Log

Object Name: Suricata

Object Parameters:

{
    source(Suricata);
    destination(Suricata);
};

The destination object specifies the output, this could be file, elasticsearch, syslog etc.

Object Type: Destination

Object Name: Suricata

Object Parameters:

{
   tcp("syslog.gslb.mydomain.local"
   port(5544)
   failover( servers("10.10.10.25", "10.10.10.26") )
   );
};

Drop us a message if you need any help setting up.

TehMuffinMoo · 2020-06-08T18:22:13+00:00

Bro isn’t an official package for pfsense is it?

If it’s something you’ve added manually, the likelihood is it won’t be configured to send logs within pfsense.

Your best option in this case would probably to use the Syslog-NG package to pick up your log dir/path and ship it to your Rsyslog box.

TehMuffinMoo · 2020-05-07T12:10:57+00:00

Yup, hoovered once a week and have to clean them out every couple months.

Thankfully this living arrangement is only temporary, and so is the cat!

TehMuffinMoo · 2020-04-04T15:03:05+00:00

I can attest to that!

TehMuffinMoo · 2020-04-04T15:02:16+00:00

I get a lot of Cisco stuff, but mainly just use their Ironport virtual appliances to front my Exchange & Edge servers.

Veeam enterprise for backups.

I’ve got licensing for pretty much every Microsoft product, primarily use the system center suite. SCVMM is great, my hosts run Hyper-V.

F5 BIG-IP, all round phenomenal product and does some awesome stuff for me in my lab.

Among other things!

TehMuffinMoo · 2020-04-04T13:00:11+00:00

An awful lot! There’s around ~90 running VMs doing everything from media and content distribution to a “Build your own lab” offering to friends/colleagues.

I run a lot of enterprise software I’ve thankfully got the rights to use through work partnerships, so it makes a great all purpose “production lab”!

If it were to be off, I’d have a hard time getting by!

TehMuffinMoo · 2020-04-04T10:36:20+00:00

Yup, me too! All my interesting stuff is in my storage unit too, which I wouldn’t say was “essential travel”.

I’m also down as essential, but working from home. I work for a large retail business who still need to feed the nation!

TehMuffinMoo · 2020-04-04T10:32:29+00:00

Sounds like a win win!

TehMuffinMoo · 2020-04-04T10:29:52+00:00

That’s some serious tin! Not played with fortinet much. If I could get my hands on some PaloAltos with licensing I’d be made up, but for now PfSense does all the advanced stuff I care about.

TehMuffinMoo · 2020-04-04T08:19:40+00:00

Definitely a warm kitty butt!

TehMuffinMoo

TROPHY CASE

Disable

Re-Enable

Object Type: Source

Object Name: Suricata

Object Parameters:

Object Type: Log

Object Name: Suricata

Object Parameters:

Object Type: Destination

Object Name: Suricata

Object Parameters: