Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- I am paying for some hosting services that I probably should be just serving out of my basement (e.g. mail, etc.) However, given the TOS of my ISP I was SOL as they are blocking some necessary ports (tcp 25, for starters). Wouldn’t it be nice to have a bridgehead server out there in “real” internet land that I could establish the necessary secure tunnels to, and relay in and out the various traffic?
- My general OS preference for providing network services, in descending order of preference is
- 1) OpenBSD (currently running on all my firewalls)
- 2) FreeBSD
- 3) OSX
- 4) sharp stick in eye
- 5) some manner of Linux
- 6) give up, can’t be done
- 7) Windows
- Bsdvm.com appears to have gone away, and they offered native OpenBSD support. So I figured what the heck, let me try a FreeBSD vm at Digital Ocean, since they offer native support (where did I here about those folks, I wonder). After some trials and tribulations, and setting up pfsense on a home vm to act as an offline CA (easyrsa was not playing nice), I got my tunnels up, but was having a devil of a time getting inbound traffic through a double nat and down to a local mail server.
- In a moment of desperation, I googled “openbsd digital ocean” and followed the first link I found (kudos to http://www.tubsta.com/2015/04/openbsd-on-digital-ocean/). Albeit dated, it worked, and was really simple. I deviated from the instructions in that I was installing 5.8 (yeah but haven’t upgraded my other firewalls yet). and I chose auto disk layout. Worked like a charm. The only glitch I encountered was that dhcp didn’t work, and you are using miniroot, so your network interface needs to work in order to get the various packages necessary to complete the install.
- Life is good, I’m using a single nat plus relayd, and everything is going according to plan. And I didn’t even get close to having to sharpen a stick.
- Keep up the great show!
- Van Z
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement