Skip to content
FoolControl – Phear the penguin

FoolControl – Phear the penguin

Adnan Hodzic on Linux, Open Source, DevOps, Cloud and much more :)

  • Home
  • About
  • Contact
  • Archives
FoolControl – Phear the penguin

Year: 2017

Secure traffic to ZNC on Synology with Let’s Encrypt

September 10, 2017

I’ve been using IRC since late 1990’s, and I continue to do so to this day due to it (still) being one of the driving development forces in various open source communities. Especially in Linux development … and some of my acquintances I can only get in touch with via IRC :)

My Setup

On my Synology NAS I run ZNC (IRC bouncer/proxy) to which I connect using various IRC clients (irssi/XChat Azure/AndChat) from various platforms (Linux/Mac/Android). In this case ZNC serves as a gateway and no matter which device/client I connect from, I’m always connected to same IRC servers/chat rooms/settings when I left off.

This is all fine and dandy, but connecting from external networks to ZNC means you will hand in your ZNC credentials in plain text. Which is a problem for me, even thought we’re “only” talking about IRC bouncer/proxy.

With that said, how do we encrypt external traffic to our ZNC?

more “Secure traffic to ZNC on Synology with Let’s Encrypt”

HowTo, Internet, Linux, Tutorial bouncer, certificate, chat, freenode, https, irc, letsencrypt, oftc, proxy, secure, securely, synology, traffic, znc

Automagically deploy & run containerized WordPress (PHP7 FPM, Nginx, MariaDB) using Ansible + Docker on AWS

May 21, 2017

Update: containerized-wordpress-project comes with enabled HTTPS site encryption using Let’s Encrypt certificates.

In this blog post, I’ve described what started as simple migration of WordPress blog to AWS, ended up as automation project consisting of publishing multiple Ansible roles deploying and running multiple Docker images.

If you’re not interested in reading about my entire journey, cognition gains and how this process came to be, please skim down to “Birth of: containerized-wordpress-project (TL;DR)” section.

Migrating WordPress blog to AWS (EC2, Lightsail?)

Since I’ve been sold on Amazon’s AWS idea of cloud computing “services” for couple of years now. I’ve wanted, and been trying to migrate this (WordPress) blog to AWS, but somehow it never worked out.

Moving it to EC2 instance, with its own ELB volumes, AMI, EIP, Security Group … it just seemed as an overkill.

When AWS Lightsail was first released, it seemed that was an answer to all my problems.

But it wasn’t, disregarding its bit restrictive/dumbed down versions of original features. Living in Amsterdam, my main problem with it was that it was only available in a single US region.

more “Automagically deploy & run containerized WordPress (PHP7 FPM, Nginx, MariaDB) using Ansible + Docker on AWS”

DevOps, HowTo, Project, Software Ansible, Automagically, automation, AWS, containerization, containerized, contrainers, deploy, docker, docker-compose, fpm, Lightsail, Linux, mariadb, migration, minutes, mysql, myswl, Nginx, php7, php7-fpm, playbook, ubuntu, wordpress

Secure (HTTPS) public access to Synology NAS using Let’s Encrypt (free) SSL certificate

February 17, 2017

Secure public access to your Synology?

Every time I’m outside of my home network, and I need to get something from my Synology NAS, I’m facing the same dillema. Who’s sniffing the network I’m on, and who will I hand over my credentials in plain text using HTTP.

Of course, you can add extra security to your Synology account by using 2 step authentication, or first establishing connection to (preferably private) VPN connection. But even then … footprint of sensitive data you’re leaving behind you is just not worth it.

To resolve this problem, you could get a self-signed SSL certificate, but whole process will cost you time and money. But thanks to good people at Let’s Encrypt, this whole process now takes 15 minutes process and is free!

Secure (HTTPS) access to Synology NAS using Let’s Encrypt (free) SSL certificate

There are couple of tutorials which cover this same topic, however reason why I wrote my own is because none of them worked for me.

more “Secure (HTTPS) public access to Synology NAS using Let’s Encrypt (free) SSL certificate”

DevOps, HowTo, Linux access, certificates, ddns, dns, dsm, encrypt, https, lets, letsencrypt, nas, proxy, proxypass, public, reverse, secure, ssl, synology

Recent Tweets

  • Tweet Avatar @andreagrandi @hermitdave @elonmusk In Netherlands cheapest Tesla Model 3 (Dual Motor All-Wheel Drive) is 58800€. D… https://t.co/DTJ9dojgoY 2 weeks ago
  • Tweet Avatar @madebygoogle asking for a friend who lives in Europe and is interested in buying Pixel 3 XL in USA. Would the lack… https://t.co/cc9QtyFhyv 4 weeks ago
  • Tweet Avatar Been looking for Plex replacement on my NAS for years now. Synology Video Station came close if it wasn't for its p… https://t.co/nWl4VThxy8 4 weeks ago
  • Tweet Avatar Main reason why I have Amazon Prime is #amazonshitcarshow https://t.co/xgDFBwOnNy 1 month ago
  • Tweet Avatar @vedrankaracic Yea I know, I think I need to work on my #sarcasm skills :) 1 month ago
Follow @fooctrl

Recent Posts

  • Ubuntu 18.10 (4.19 linux kernel) for MacBook Pro October 24, 2018
  • Ubuntu 18.04 image release for MacBook Pro 2017/6 with Touch Bar May 17, 2018
  • Automated way of getting Let’s Encrypt certificates for WordPress using Docker + Ansible March 10, 2018
  • Secure traffic to ZNC on Synology with Let’s Encrypt September 10, 2017
  • Automagically deploy & run containerized WordPress (PHP7 FPM, Nginx, MariaDB) using Ansible + Docker on AWS May 21, 2017
  • Secure (HTTPS) public access to Synology NAS using Let’s Encrypt (free) SSL certificate February 17, 2017
  • anon-hotspot: On demand Debian Linux (Tor) Hotspot setup tool September 18, 2016
  • Kernel agnostic, DisplayLink Debian GNU/Linux driver installer (Debian/Ubuntu/Elementary) November 29, 2015
  • Juniper/Pulse Secure VPN on Linux (2015 edition) September 21, 2015
  • Debian PPA Utility September 4, 2014

Archives

Idealist by NewMediaThemes