Drunk on technology https://nerdydrunk.com/ 2026-04-06T21:03:56+00:00 https://nerdydrunk.com/ https://nerdydrunk.com/_media/wiki:favicon.ico text/html 2025-10-24T18:15:57+00:00 tingalls (tingalls@undisclosed.example.com) https://nerdydrunk.com/cisco:gns3-apple-silicon?rev=1761329757&do=diff GNS3 on Apple Silicon cisco docker Description Below is the steps I used to get GNS3 running on my Apple silicon macs via OrbStack. Steps on mac orb create --arch amd64 ubuntu gns3-host orb -m gns3-host -u root Steps in OrbStack Machine apt update apt install software-properties-common add-apt-repository ppa:gns3/ppa apt update apt install qemu-system-x86 apt install telnet apt install gns3-server apt install git apt install python3-setuptools python3-aiohttp python3-psutil python3-jso… text/html 2025-10-24T17:53:40+00:00 tingalls (tingalls@undisclosed.example.com) https://nerdydrunk.com/cloudflare:zero_trust_docker?rev=1761328420&do=diff Cloudflare Zero Trust Docker linux cloudflare docker ubuntu Using host networking may not be the most secure way, but it is what was needed to get WARP routing when using quic to be able to proxy UDP traffic for proper DNS lookups on the private networks. Install docker pull cloudflare/cloudflared:latest docker run --network host -d --restart=unless-stopped cloudflare/cloudflared:latest tunnel --no-autoupdate run --token <CLOUDFLARE_TUNNEL_TOKEN> text/html 2024-08-19T18:33:11+00:00 tingalls (tingalls@undisclosed.example.com) https://nerdydrunk.com/aws:lambda:letsencrypt_wildcard?rev=1724092391&do=diff Let's Encrypt Wildcard Generator Lambda Function This Lambda function will check if a Let's Encrypt certificate is older than 60 days. If it is older than 60 days, then an EC2 instance will be launched that will update the certificate and then terminate itself. text/html 2024-08-19T18:28:30+00:00 tingalls (tingalls@undisclosed.example.com) https://nerdydrunk.com/aws:lambda:letsencrypt_wildcard:lambda_role_policy?rev=1724092110&do=diff Lambda Role Policy Variables to change * Region us-east-1 * AWS Account 123456789012 * Name certgen used in * EC2 role name passed to instance * SNS topic name used for notifications * Log group name / Lambda function name * Parameter name for P12 password text/html 2023-10-26T17:12:17+00:00 tingalls (tingalls@undisclosed.example.com) https://nerdydrunk.com/ubiquiti:edgerouter-internet-load-balancing?rev=1698340337&do=diff Ubiquiti Edge Router Internet Load Balancing When configuring internet load balancing on an edge router you can also configure a script to be run when there is a transition on an interface. This is helpful if you find that site-to-site VPN routes don't correctly stay in the load balancing route tables or you want to receive a status update on the transition. text/html 2023-08-10T22:11:42+00:00 tingalls (tingalls@undisclosed.example.com) https://nerdydrunk.com/linux:openssl?rev=1691705502&do=diff OpenSSL linux apache OpenSSL Cheat Sheet Most of this should work with LibreSSL, but you will need OpenSSL for the CSR SAN cert. CSR SAN wild card cert openssl req -new -sha256 -newkey rsa:4096 -keyout KEY-FILE.enc.key -out CSR-FILE.csr -addext “subjectAltName = text/html 2023-04-19T12:00:45+00:00 tingalls (tingalls@undisclosed.example.com) https://nerdydrunk.com/sidebar?rev=1681905645&do=diff Topics * * * * * * * * * * * * * * * * * * * * Topic Search ---------- Home Lab About Me Twitter @taingalls ---------- [Subject Matter Expert Specialty] [Advanced Networking Specialty] [Security Specialty] [Data Analytics Specialty] [Machine Learning Specialty] [Database Specialty] [SAP on AWS Specialty] [Solutions Architect Professional] [DevOps Engineer Professional] [SysOps Administrator Associate] [Solution… text/html 2023-02-06T10:57:33+00:00 tingalls (tingalls@undisclosed.example.com) https://nerdydrunk.com/ubiquiti:unifi-tls?rev=1675681053&do=diff Ubiquiti UniFi TLS ubiquiti unifi TLSv1.2 and TLSv1.3 /usr/lib/unifi/data/system.properties unifi.https.ciphers=ECDHE-ECDSA-AES256-GCM-SHA384,ECDHE-RSA-AES128-GCM-SHA256 unifi.https.sslEnabledProtocols=TLSv1.3,TLSv1.2 sudo systemctl restart unifi text/html 2023-01-30T18:04:13+00:00 tingalls (tingalls@undisclosed.example.com) https://nerdydrunk.com/ubiquiti:uisp?rev=1675101853&do=diff Ubiquiti UISP ubiquiti uisp docker Let's Encrypt SSL Certificate When attempting to renew the Let's Encrypt SSL certificate I received an error message similar to the following. Traceback (most recent call last): File "/usr/bin/certbot", line 5, in <module> from certbot.main import main File "/usr/lib/python3.8/site-packages/certbot/main.py", line 2, in <module> from certbot._internal import main as internal_main File "/usr/lib/python3.8/site-packages/certbot/_internal/main.py… text/html 2023-01-30T18:03:37+00:00 tingalls (tingalls@undisclosed.example.com) https://nerdydrunk.com/ubiquiti:start?rev=1675101817&do=diff Ubiquiti The following pages are related to Ubiquiti; text/html 2022-12-16T17:29:58+00:00 tingalls (tingalls@undisclosed.example.com) https://nerdydrunk.com/general:plex?rev=1671211798&do=diff Plex (General) plex_linux_docker_linuxserver.io Used to fix invalid future added data in a linuxserver.io plex docker container. The find and touch commands are needed to fix the file date, then Plex SQLite is used to fix the date in the database. Remember to back up your database before doing any changes. The dates of 2023-01-01 and 1700000000 are example future dates and should be updated accordingly. text/html 2022-10-18T14:34:55+00:00 tingalls (tingalls@undisclosed.example.com) https://nerdydrunk.com/ubiquiti:edgerouter-general?rev=1666103695&do=diff Ubiquiti EdgeRouter General ubiquiti edgerouter Traffic Monitoring Site-to-site VPN monitoring between Site1 (198.51.100.2) and Site2 (203.0.113.2). Site1 (198.51.100.2) monitors for Site2 traffic. ubnt@Site1-EdgeRouter:~$ sudo tcpdump -i eth0 -n '(src 203.0.113.2 or dst 203.0.113.2) and (udp port 500 or udp port 4500)' text/html 2022-07-30T21:02:18+00:00 tingalls (tingalls@undisclosed.example.com) https://nerdydrunk.com/cloudflare:zero_trust_ssh?rev=1659214938&do=diff Cloudflare Zero Trust SSH linux cloudflare ubuntu To enable the Cloudflare Zero Trust web based SSH on an Ubuntu Server 22.04 system I did the following. * Followed the following directions at <https://developers.cloudflare.com/cloudflare-one/tutorials/ssh-browser/> * Added an SSH config file /etc/ssh/sshd_config.d/cloudflare_zerotrust.conf text/html 2022-07-24T13:19:56+00:00 ndatingalls (ndatingalls@undisclosed.example.com) https://nerdydrunk.com/aws:roles_anywhere?rev=1658668796&do=diff AWS Roles Anywhere aws python First you need a certificate authority CA Option 1 Use <https://github.com/OpenVPN/easy-rsa> to create certificate authority and certificates. AWS Client VPN has a good example of how to use it <https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/client-authentication.html#mutual>. CA Option 2 Create OCI Certificate Authority Create certificate signing request (CSR) with extension text/html 2022-07-21T15:45:39+00:00 ndatingalls (ndatingalls@undisclosed.example.com) https://nerdydrunk.com/dokuwiki:docker?rev=1658418339&do=diff Dokuwiki Docker linux docker dokuwiki ubuntu Prerequisites Prerequisites - Ubuntu sudo apt update sudo apt -y upgrade sudo apt -y install docker.io docker-compose sudo usermod -aG docker $USER sudo reboot mkdir dokuwiki cd dokuwiki mkdir config Install Create docker compose file text/html 2022-07-20T17:30:40+00:00 ndatingalls (ndatingalls@undisclosed.example.com) https://nerdydrunk.com/?image=wiki%3Afavicon.ico&ns=wiki&rev=1658338240&tab_details=history&media_do=diff&do=media <img src="https://nerdydrunk.com/_media/wiki:favicon.ico?w=500&amp;h=500&amp;tok=81f1e2" alt="favicon.ico" loading="lazy" width="500" height="500" /> text/html 2022-07-20T17:30:23+00:00 ndatingalls (ndatingalls@undisclosed.example.com) https://nerdydrunk.com/?image=wiki%3Adokuwiki-128.png&ns=wiki&rev=1658338223&tab_details=history&media_do=diff&do=media <img src="https://nerdydrunk.com/_media/wiki:dokuwiki-128.png?w=500&amp;h=500&amp;tok=426535" alt="dokuwiki-128.png" loading="lazy" width="500" height="500" />