this post was submitted on 25 Feb 2024
338 points (96.4% liked)

Selfhosted

40324 readers
550 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

Another successful OpenBSD setup

I've been buying these little boxes from AliExpress for years to use as firewalls and routers. My oldest one is almost 9 years old now! OpenBSD installs just fine. Just a BIOS tweak to always boot up after power is restored.

@selfhosted #selfhosting #selfhosted #openbsd #runbsd

you are viewing a single comment's thread
view the rest of the comments
[–] Link@rentadrunk.org 8 points 9 months ago* (last edited 9 months ago) (1 children)

It is a managed switch. What’s wrong with TP-Link managed switches?

I have a basic Netgear managed switch for VLANs.

[–] MigratingtoLemmy@lemmy.world 0 points 9 months ago (1 children)

The problem is that their Web interface and firmware in general are not updated (at all). I think it's even possible for script kiddies to hack into such managed switches, which forms the reasoning behind my comment.

Does your switch produce its Web interface over TLS?

[–] Link@rentadrunk.org 2 points 9 months ago* (last edited 9 months ago) (1 children)

Doesn’t look like it but if I set up VLANs unless an user is on the correct VLAN they can’t access the web interface. And the only way for them to get access is to get physical access and plug a device into the correct port.

[–] MigratingtoLemmy@lemmy.world 0 points 9 months ago (1 children)

VLAN hopping can be done on outdated firmware if one is somewhat determined, AFAIK

[–] Link@rentadrunk.org 1 points 9 months ago (1 children)

From the switch? I thought the routing was done at the router level?

[–] MigratingtoLemmy@lemmy.world 0 points 9 months ago (1 children)

If the switch is managed (I'm assuming it supports L3 functions which means inter-VLAN routing), then it's possible to hop VLANs on the switch.

[–] Link@rentadrunk.org 1 points 9 months ago

My Netgear switch doesn’t support Level 3 routing. It only supports basic VLAN functions.