61 lines
2.2 KiB
Plaintext
61 lines
2.2 KiB
Plaintext
2019-05-11 22:11 - mz
|
|
Removed curl from hostname.gif0 because only early-boot bin is allowed
|
|
Added interface groups
|
|
pf.conf: using interface groups
|
|
pf.conf: not NATing IPv6
|
|
pf.conf: don't allow incoming IPv6 traffic except to a particular /64 and icmp6
|
|
sysctl.conf: make sure we reboot when panicking
|
|
sysctl.conf: allow kernel to use more RAM
|
|
unbound: there's a bug that reponds to every DNS query with our external IP?
|
|
|
|
2019-04-21 17:30 - mz
|
|
Made rad.conf more explicit
|
|
|
|
2019-04-20 19:33 - mz
|
|
Modified hostname.gif0 and rad.conf to reflect our actual tunnel
|
|
Sending /64 prefix to make clients create their own EUI64 address
|
|
Sending /48 prefix to make sure other subnets are routed
|
|
Added classless static routes for box0rs in dhcpd.conf
|
|
Added appropriate config and local hostnames to unbound.conf
|
|
|
|
2019-04-19 18:29 - mz
|
|
Created /etc/rad.conf
|
|
Added IPv6 static address to em1
|
|
Changed Tunnel prefixlen to 64
|
|
|
|
2019-04-18 17:48 - mz
|
|
Installed python-3.6.6p1 to use with ansible
|
|
|
|
2019-04-17 11:41 - mz
|
|
Edited resolv.conf to match settings for internal bits
|
|
Established /etc/dhclient.conf to make sure we use our own resolv.conf
|
|
Edited /etc/hosts to reflect names used for foo
|
|
Added /etc/hostname.gif0 for IPv6 tunneling
|
|
|
|
2019-04-16 20:31 - mz
|
|
Removed bridge, only using em1 for our network, reserving em2 for cooler uses
|
|
Installed zsh, changed shell for jtm and mz
|
|
|
|
2019-04-15 14:16 - mz
|
|
Installed wget
|
|
wget https://www.internic.net/domain/named.cache -O /var/unbound/etc/root.hints
|
|
(apparently that should be done on a regular basis - cron job)
|
|
Added root.hints to unbound config, removed '.' forwarding zone
|
|
|
|
2019-04-14 20:37 - mz
|
|
Created /etc/hostname.{vether0,em1,em2,bridge0}
|
|
Enabled dhcpd daemon
|
|
Set dhcpd flags vether0 making it listen on that virtual network
|
|
Synced clock, replaced www.google.com with en.wikipedia.org in /etc/ntpd.conf
|
|
Symlinked New_York timezone to /etc/localtime
|
|
Created /etc/dhcpd.conf
|
|
echo 'net.inet.ip.forwarding=1' >> /etc/sysctl.conf
|
|
echo 'net.inet6.ip6.forwarding=1' >> /etc/sysctl.conf
|
|
Enabled NATing rules in /etc/pf.conf
|
|
Enabled unbound
|
|
Modified /var/unbound/etc/unbound.conf to (some of) our liking
|
|
|
|
2019-04-13 21:03 - mz
|
|
Created /etc/doas.conf allowing group wheel to do anything they want
|
|
Installed iperf3 neovim htop
|