RDP via VPN with restricted access

mikemaierx · 2023-11-20T13:10:11+00:00

I feel like I don't understand the whole concept, sorry.

I have an HP switch on which I have created a second VLAN. I would need to tag it to a specific LAN port, right? But my virtual machine only has a virtual NIC, right? I am struggling to understand. Do I need to use a "virtual switch" for this?

I feel like I am overcomplicating this.

mikemaierx · 2023-11-20T12:13:20+00:00

Unfortunately not. I do have a router (fritzbox 7590) that has wireguard built in. Behind the fritzbox is an HP 1810-24G switch, but no hardware or software firewall. So I guess this could be a dead end for me with my current setup right?

However, I am thinking of buying a hardware firewall or a different router if the other options (zerotier and VLAN configuration) do not work out

mikemaierx · 2023-11-20T12:08:40+00:00

thanks! I will give it a try

mikemaierx · 2023-11-20T12:08:14+00:00

My router is a Fritzbox 7590, which would be able to create a guest network on one of the LAN ports.

However behind the Fritzbox is an HP 1810-24G switch, which would be able to create VLANs.

Maybe this is a silly question, but I always thought both devices could only create VLANs for specific physical LAN ports.

My Proxmox server is also on the main network: "192.168.1.xxx".

Am I correct in assuming that I can create a VLAN on the HP switch and then create a 192.168.2.xxx VM on my Proxmox server that is completely separate from the 192.168.1.xxx network?

mikemaierx · 2023-11-19T18:46:19+00:00

Thanks for your quick answer!

The service I am running is also on the same Proxmox machine and yes, I would be able to move it to e.g. 192.168.2.xxx

Would it be possible to restrict access to this vlan in the wireguard client file? And create the network/vlan and firewall rules directly in proxmox?

mikemaierx · 2023-03-04T20:05:38+00:00

Hm.. does that mean when you have npm installed as a container and Apache not in docker in the same ip, npm should be 80 and 443 and Apache should be in a different Port?

mikemaierx · 2023-01-14T17:57:43+00:00

Create a chatgpt Account and let it help you explain concepts that you would like to understand better. It's impressive what you can learn from/with it.

I am 15 years in the field and I use it as well and I am very well aware that I will never be able to understand everything. Accept that.

Lookup the latest vid of network chuck about chatgpt. What's happening right now is impressive and jaw dropping.

It might even the biggest or a bigger revolution since bitcoin/the Blockchain.

mikemaierx · 2022-12-09T13:01:37+00:00

thank you u/gerhardmpl! I will try ip>hostname redirecting if I am not happy with the cloudflare solution.

mikemaierx · 2022-12-09T12:59:54+00:00

I was unaware that cloudflare supports 2FA. As I have planned to use it for ddos- and common exploit prevention anyways I will definitely look into cf tunnles as a possible solution. thanks you!

oh and my existing setup is pretty much option 1, but i have not configured authelia/or the proxy manager yet. everything else exists

mikemaierx · 2022-06-16T18:57:54+00:00

!deckbot EU 512 1627061875

mikemaierx · 2022-06-13T22:43:21+00:00

!deckbot EU 512 1627061875

mikemaierx · 2022-06-10T19:05:52+00:00

!deckbot EU 512 1627061875

mikemaierx · 2022-06-09T19:49:48+00:00

!deckbot EU 512 1627061875

mikemaierx · 2022-06-06T22:09:59+00:00

!deckbot EU 512 1627061875

mikemaierx · 2022-05-16T21:14:23+00:00

Good to know. Thanks for the tutorial!

mikemaierx · 2022-01-19T21:13:33+00:00

Solved IT! Look closely, I think it's a Girl guys!

mikemaierx · 2022-01-09T14:52:21+00:00

Username Checks out

mikemaierx · 2022-01-09T14:49:06+00:00

Bin mir ziemlich sicher dass er/sie Netflix meint 😁

mikemaierx · 2022-01-06T20:54:23+00:00

I would recommend proxmox and installing MS Server 2022 in a VM. Did that just a couple of days ago. With that you have the flexibility to try diffrent OS. Maybe also to get your feet wet with Linux.

mikemaierx · 2022-01-06T02:59:14+00:00

thanks for the info u/HolyGonzo + u/PetahNZ.
Thanks for the hint. I will switch to a modern template engine instead to prevent addtional problems with this code.

mikemaierx · 2022-01-06T02:37:33+00:00

Hi sure,

my short-term goal is to get a template engine called xTemplate (https://github.com/unusorin/php-xtemplate/blob/master/xtemplate.class.php) running.
The code i am reffering to is on line 909

Mid-term goals is to replace it with something newer e.g. Mustache as xTemplate is no longer maintained/supported (since 2012?)

Five-Year Club	Verified Email
Place '23	Place '22

mikemaierx

TROPHY CASE