Rad Web Hosting<p>How to Configure Additional <a href="https://mastodon.social/tags/Firewall" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Firewall</span></a> Rules on Rocky Linux VPS </p><p>This article provides a guide for how to configure additional firewall rules on Rocky Linux VPS for improved <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>security</span></a> of your system.<br>How to Configure Additional Firewall Rules on Rocky Linux VPS<br>This tutorial will guide you through the process of configuring additional firewall rules on a Rocky Linux VPS using firewalld. <a href="https://mastodon.social/tags/Firewalld" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Firewalld</span></a> is ...<br>Continued 👉 <a href="https://blog.radwebhosting.com/how-to-configure-additional-firewall-rules-on-rocky-linux-vps/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">blog.radwebhosting.com/how-to-</span><span class="invisible">configure-additional-firewall-rules-on-rocky-linux-vps/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social</span></a> <a href="https://mastodon.social/tags/vpsguide" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>vpsguide</span></a> <a href="https://mastodon.social/tags/rockylinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>rockylinux</span></a> <a href="https://mastodon.social/tags/serverhardening" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>serverhardening</span></a> <a href="https://mastodon.social/tags/sshcommands" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sshcommands</span></a></p>
veganism.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Veganism Social is a welcoming space on the internet for vegans to connect and engage with the broader decentralized social media community.
Administered by:
Server stats:
291active users
veganism.social: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.4.0-alpha.5
#firewalld
0 posts · 0 participants · 0 posts today
albi always there<p>konec <a href="https://f.cz/tags/IPTables" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IPTables</span></a> je v dohlednu, částecně už i na dosah<br>za poslední rok jsem investoval čas a z předchozích <a href="https://f.cz/tags/UFW" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UFW</span></a> a mrtvého <a href="https://f.cz/tags/Shorewall" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Shorewall</span></a> přeskočil <a href="https://f.cz/tags/FirewallD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FirewallD</span></a> rovnou do nahatých <a href="https://f.cz/tags/NFTables" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NFTables</span></a></p><p>- UFW využívá na pozadí iptables automaticky překládané do nftables, což je paskvil, který může vyhovovat závislákům na prehistorických iptables souborech "na které se nešahá", ale progresivnějšímu uživateli dost svazuje ruce<br>- navíc je nutné mít namemorovanou jejich speciální syntaxi a hlavně skladbu argumentů, takže většinou zadám validní příkaz na asi 4. pokus</p><p>- FirewallD si samozřejmě taky vymyslel vlastní příkazovou syntaxi, ale zároveň zapleveluje nftables nepoužívanými chainy, přijít k cizímu stroji a udělat nějakou drobnou úpravu v pravidlech je skoro na nobelovku</p><p>- NFtables jsou za mě nejpřehlednější a nejspolehlivější (největší kontrola), navíc umožňujou mít totální kontrolu nad firewallem a poslat k šípku snahy Dockeru o nadvládu<br>- navíc jsou velmi jednoduché a snadno pochopitelné</p>
openSUSE Linux<p>Successful set up of <a href="https://fosstodon.org/tags/firewalld" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>firewalld</span></a>, <a href="https://fosstodon.org/tags/KVM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>KVM</span></a> & <a href="https://fosstodon.org/tags/Cockpit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cockpit</span></a> Web Console on <a href="https://fosstodon.org/tags/openSUSE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>openSUSE</span></a> Leap 16 Beta done manually & without <a href="https://fosstodon.org/tags/YaST" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>YaST</span></a>! 🛠️ Check out <a href="https://fosstodon.org/tags/CLI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CLI</span></a> this <a href="https://fosstodon.org/tags/testing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>testing</span></a> with <a href="https://fosstodon.org/tags/Leap16" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Leap16</span></a> <a href="https://fosstodon.org/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> <a href="https://dbaxps.blogspot.com/2025/05/setup-firewalld-and-kvm-on-opensuse.html" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">dbaxps.blogspot.com/2025/05/se</span><span class="invisible">tup-firewalld-and-kvm-on-opensuse.html</span></a></p>
Lanie Molinar Carmelo<p>I'm curious to hear what others are <a href="https://allovertheplace.ca/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfHosting</span></a>! Here's my current setup:</p><p><strong>Hardware & OS</strong></p><ul><li><strong>Hardware:</strong> <a href="https://allovertheplace.ca/tags/RaspberryPi500" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RaspberryPi500</span></a> (8 GB RAM, 512 GB SD card) <a href="https://allovertheplace.ca/tags/RPi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RPi</span></a> <a href="https://allovertheplace.ca/tags/RPi500" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RPi500</span></a> <a href="https://allovertheplace.ca/tags/SingleBoardComputers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SingleBoardComputers</span></a> <a href="https://allovertheplace.ca/tags/HomeLab" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HomeLab</span></a></li><li><strong>OS:</strong> <a href="https://allovertheplace.ca/tags/Stormux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Stormux</span></a>, an accessible <a href="https://allovertheplace.ca/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> distro based on <a href="https://allovertheplace.ca/tags/ArchLinuxARM" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ArchLinuxARM</span></a> <a href="https://allovertheplace.ca/tags/LinuxAccessibility" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LinuxAccessibility</span></a> <a href="https://allovertheplace.ca/tags/AccessibleTech" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AccessibleTech</span></a></li></ul><p><strong>Infrastructure & Networking</strong></p><ul><li><strong>Dashboard:</strong> <a href="https://allovertheplace.ca/tags/Glance" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Glance</span></a> (<a href="https://allovertheplace.ca/tags/Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Docker</span></a>) <a href="https://allovertheplace.ca/tags/DockerApps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DockerApps</span></a></li><li><strong>Reverse Proxy:</strong> <a href="https://allovertheplace.ca/tags/Caddy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Caddy</span></a></li><li><strong>DNS:</strong> <a href="https://allovertheplace.ca/tags/Cloudflare" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cloudflare</span></a></li><li><strong>Domain Registrar:</strong> <a href="https://allovertheplace.ca/tags/Porkbun" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Porkbun</span></a></li><li><strong>Networking & Remote Access:</strong> <a href="https://allovertheplace.ca/tags/Tailscale" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Tailscale</span></a> (non-Docker), love its SSH agent and magic DNS features. <a href="https://allovertheplace.ca/tags/NetworkSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NetworkSecurity</span></a></li></ul><p><strong>Security & Monitoring</strong></p><ul><li><strong>Ad Blocking:</strong> <a href="https://allovertheplace.ca/tags/AdGuardHome" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AdGuardHome</span></a> (non-Docker). Previously used PiHole but find AdGuardHome slightly faster. <a href="https://allovertheplace.ca/tags/PrivacyTools" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PrivacyTools</span></a></li><li><strong>Server Monitoring:</strong> <a href="https://allovertheplace.ca/tags/Beszel" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Beszel</span></a> (non-Docker). Tried Grafana/Prometheus/Alertmanager (accessible but overkill) and Netdata (poor screen reader accessibility). Beszel isn't perfect but best compromise so far. <a href="https://allovertheplace.ca/tags/ServerMonitoring" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ServerMonitoring</span></a></li><li><strong>Server Overview:</strong> <a href="https://allovertheplace.ca/tags/Cockpit" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cockpit</span></a> (non-Docker)</li><li><strong>Security Tools:</strong> <a href="https://allovertheplace.ca/tags/Fail2ban" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Fail2ban</span></a>, <a href="https://allovertheplace.ca/tags/FirewallD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FirewallD</span></a>, <a href="https://allovertheplace.ca/tags/ClamAV" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ClamAV</span></a>, and <a href="https://allovertheplace.ca/tags/Rkhunter" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Rkhunter</span></a> (non-Docker). Tried CrowdSec but couldn't get it working on Stormux. <a href="https://allovertheplace.ca/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a></li><li><strong>Service Uptime Monitoring:</strong> <a href="https://allovertheplace.ca/tags/UptimeKuma" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UptimeKuma</span></a> (Docker), accessible and easy to use. <a href="https://allovertheplace.ca/tags/MonitoringTools" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MonitoringTools</span></a></li></ul><p><strong>Authentication & Identity Management</strong></p><ul><li><strong>Authelia</strong> (Docker): Just set this up for two-factor authentication and single sign-on. Seems to be working well so far!<br></li><li><strong>LLDAP</strong> (Docker): Lightweight LDAP server for managing authentication. Also seems to be working pretty well!<br><a href="https://allovertheplace.ca/tags/AuthenticationTools" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AuthenticationTools</span></a> <a href="https://allovertheplace.ca/tags/IdentityManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IdentityManagement</span></a></li></ul><p><strong>Productivity & Personal Tools</strong></p><ul><li><strong>Docker Management:</strong> <a href="https://allovertheplace.ca/tags/Dockge" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Dockge</span></a> (Docker). More accessible than Portainer; main issue is built-in terminal isn't readable with screen readers. <a href="https://allovertheplace.ca/tags/DockerCompose" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DockerCompose</span></a></li><li><strong>Docker Logs Viewer:</strong> <a href="https://allovertheplace.ca/tags/Dozzle" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Dozzle</span></a> (Docker), great web interface and easy searching.</li><li><strong>Git Hosting:</strong> <a href="https://allovertheplace.ca/tags/Forgejo" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Forgejo</span></a> (non-Docker), my personal Git server. <a href="https://allovertheplace.ca/tags/GitServer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GitServer</span></a></li><li><strong>Backups:</strong> <a href="https://allovertheplace.ca/tags/IDrive" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IDrive</span></a> (non-Docker), backs up all my devices easily. <a href="https://allovertheplace.ca/tags/BackupSolutions" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BackupSolutions</span></a></li><li><strong>Notes:</strong> <a href="https://allovertheplace.ca/tags/Joplin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Joplin</span></a> server (Docker). Accessibility improving; love the VSCode extension. <a href="https://allovertheplace.ca/tags/NoteTakingApps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NoteTakingApps</span></a></li><li><strong>Bookmarks:</strong> <a href="https://allovertheplace.ca/tags/Linkding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linkding</span></a> (Docker). Accessible bookmark manager with good browser extension support. <a href="https://allovertheplace.ca/tags/BookmarkManager" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BookmarkManager</span></a></li><li><strong>Recipes:</strong> <a href="https://allovertheplace.ca/tags/Mealie" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Mealie</span></a> (Docker), starting to learn cooking! 🍳📖 <a href="https://allovertheplace.ca/tags/CookingApps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CookingApps</span></a></li><li><strong>RSS Feeds:</strong> <a href="https://allovertheplace.ca/tags/Miniflux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Miniflux</span></a> (non-Docker), excellent accessibility. Originally wanted better podcast support but other options had major accessibility issues. <a href="https://allovertheplace.ca/tags/RSSReader" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RSSReader</span></a></li><li><strong>Automation & Workflows:</strong> <a href="https://allovertheplace.ca/tags/N8N" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>N8N</span></a> (Docker). Haven't explored deeply yet—open to ideas! <a href="https://allovertheplace.ca/tags/AutomationTools" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AutomationTools</span></a> <a href="https://allovertheplace.ca/tags/WorkflowAutomation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WorkflowAutomation</span></a></li><li><strong>Pastebin Service:</strong> <a href="https://allovertheplace.ca/tags/PrivateBin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PrivateBin</span></a> (non-Docker). Considering alternatives or CLI tool for easier console access. <a href="https://allovertheplace.ca/tags/PastebinAlternative" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PastebinAlternative</span></a></li><li><strong>File Sharing & Editing:</strong> <a href="https://allovertheplace.ca/tags/Samba" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Samba</span></a> (non-Docker), easy file management from my Windows 11 mini PC. <a href="https://allovertheplace.ca/tags/FileSharing" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FileSharing</span></a> <a href="https://allovertheplace.ca/tags/Windows11" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows11</span></a></li><li><strong>Search Engine:</strong> <a href="https://allovertheplace.ca/tags/SearXNG" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SearXNG</span></a> (non-Docker), accessible and searches multiple engines at once. <a href="https://allovertheplace.ca/tags/PrivacySearchEngine" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PrivacySearchEngine</span></a></li><li><strong>IRC Client:</strong> <a href="https://allovertheplace.ca/tags/TheLounge" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TheLounge</span></a> (non-Docker). Some accessibility issues but best I've found so far for always-connected IRC. <a href="https://allovertheplace.ca/tags/IRCClient" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IRCClient</span></a></li><li><strong>Read Later Service:</strong> <a href="https://allovertheplace.ca/tags/Wallabag" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Wallabag</span></a> (Docker). Biggest issue is Wallabagger Chrome extension doesn't work for me yet. <a href="https://allovertheplace.ca/tags/ReadItLater" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ReadItLater</span></a></li></ul><p><strong>Notifications & Development Workflow</strong></p><ul><li>Notifications via: <a href="https://allovertheplace.ca/tags/Ntfy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ntfy</span></a> (Docker) and Zoho's ZeptoMail (<a href="https://allovertheplace.ca/tags/Zoho" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Zoho</span></a>)</li><li>Development Environment: Mostly using VSCode connected to my server via Remote-SSH extension. <a href="https://allovertheplace.ca/tags/VSCodeRemote" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VSCodeRemote</span></a></li></ul><p><strong>Accessibility Focus ♿️🖥️</strong></p><p>Accessibility heavily influences my choices—I use a screen reader full-time (<a href="https://allovertheplace.ca/tags/ScreenReader" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ScreenReader</span></a>), so I prioritize services usable without sight (<a href="https://allovertheplace.ca/tags/InclusiveDesign" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InclusiveDesign</span></a>, <a href="https://allovertheplace.ca/tags/DigitalAccessibility" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DigitalAccessibility</span></a>). Always open to discussing accessibility experiences or recommendations!</p><p>I've also experimented with:</p><ul><li>Ollama (<a href="https://allovertheplace.ca/tags/Ollama" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ollama</span></a>): Not enough RAM on my Pi.</li><li>Habit trackers like Beaver Habit Tracker (<a href="https://allovertheplace.ca/tags/HabitTracking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HabitTracking</span></a>): Accessibility issues made it unusable for me.</li></ul><p>I don't really have a media collection, so no Plex or Jellyfin here (<a href="https://allovertheplace.ca/tags/MediaServer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MediaServer</span></a>)—but I'm always open to suggestions! I've gotten a bit addicted to exploring new self-hosted services! 😄</p><p>What's your setup like? Any cool services you'd recommend I try?</p><p><a href="https://allovertheplace.ca/tags/SelfHosted" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SelfHosted</span></a> <a href="https://allovertheplace.ca/tags/LinuxSelfHost" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LinuxSelfHost</span></a> <a href="https://allovertheplace.ca/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> <a href="https://allovertheplace.ca/tags/TechCommunity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechCommunity</span></a> <a href="https://allovertheplace.ca/tags/FOSS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>FOSS</span></a> <a href="https://allovertheplace.ca/tags/TechDIY" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechDIY</span></a></p><p><span class="h-card" translate="no"><a href="https://lemmy.ml/c/selfhost" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>selfhost</span></a></span> <span class="h-card" translate="no"><a href="https://lemmy.world/c/selfhosted" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>selfhosted</span></a></span> <span class="h-card" translate="no"><a href="https://a.gup.pe/u/selfhosting" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>selfhosting</span></a></span></p>
Sams feeling for snowranty nerdy sweary content
VegansExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload