MikroTik remote logging using rsyslog

/etc/rsyslog.conf Uncomment these lines, since RouterOS sends log via UDP on port 514: $ModLoad imudp $UDPServerRun 514

/etc/rsyslog.d/50-default.conf Add line(s): :fromhost-ip,isequal,”192.168.x.1″ /var/log/mikrotik-Router1.log :fromhost-ip,isequal,”192.168.x.2″ /var/log/mikrotik-Router2.log

Restart the rsyslog service: sudo service rsyslog restart

Various ways to view logs: System Log Viewer (GUI) Terminal: tail -f /var/log/mikrotik-Router1.log

* Don’t forget to allow IP traffic through firewall

. . . → Read More: MikroTik remote logging using rsyslog

Plesk 11.5.30 on CentOS


Let’s install Plesk not via the Autoinstaller but instead use the super useful tool called the One Click Installer. Instead of downloading a package and then installing it to get the ball rolling, One Click determines your OS and does the whole shebang in one fair swoop.

Here’s how to use it:

wget . . . → Read More: Plesk 11.5.30 on CentOS

UniFi Controller Debian Wheezy guide

To install the Unifi controller you will need to add Ubiquiti’s and mongodDB’s repo to the sources list echo “deb http://www.ubnt.com/downloads/unifi/distros/deb/debian debian ubiquiti” >> /etc/apt/sources.list echo “deb http://downloads-distro.mongodb.org/repo/debian-sysvinit dist 10gen” >> /etc/apt/sources.list You now need to add GPG keys apt-key adv –keyserver keyserver.ubuntu.com –recv C0A52C50; apt-key adv –keyserver keyserver.ubuntu.com –recv 7F0CEB10 You can . . . → Read More: UniFi Controller Debian Wheezy guide

NetFlow: installation and configuration of NFDUMP and NfSen on Debian

After the brief overview about the installation of flow-tools and FlowViewer, in this post I’d like to share my experience about the setup of a basic solution based on another pair of tools: NFDUMP and NfSen. As always on my posts, the starting point is a fresh Debian 5.0 setup. Continue reading NetFlow: installation and configuration of NFDUMP and NfSen on Debian

Postfix cheat-sheet

How to check mail queue?

$postqueue -p

How to flash/resend the queue mails?

$postqueue -f

How to check the basic config?

$postconf -n

How to check whole config?


How to make all queue as renew queue? Continue reading Postfix cheat-sheet

Postfix configure anti spam with blacklist

Postfix is free and powerful MTA. You can easily configure Postfix to block spam. You need to add following directives to /etc/postfix/main.cf file:

disable_vrfy_command = yes : Disable the SMTP VRFY command. This stops some techniques used to harvest email addresses.

smtpd_delay_reject = yes : It allows Postfix to log recipient address information when rejecting a client name/address or sender address, so that it is possible to find out whose mail is being rejected.

red = yes
 : Require that a remote SMTP client introduces itself at the beginning of an SMTP session with the HELO or EHLO command. Many spam bot ignores HELO/EHLO command and you save yourself from spam. Following lines further restrictions on HELO command:
smtpd_helo_restrictions = permit_mynetworks,
reject_non_fqdn_hostname, Reject email if remote hostname is not in fully-qualified domain form. Usually bots sending email don’t have FQDN names.
reject_invalid_hostname, Reject all bots sending email from computers connected via DSL/ADSL computers. They don’t have valid internet hostname.
permit Continue reading Postfix configure anti spam with blacklist

Setting Up Postfix As Buckup MX

In this tutorial I will show how you can set up a Postfix mailserver as a backup mail exchanger for a domain so that it accepts mails for this domain in case the primary mail exchanger is down or unreachable, and passes the mails on to the primary MX once that one is up again.

I do not issue any guarantee that this will work for you! Continue reading Setting Up Postfix As Buckup MX

Installing Papercut NG on Debian 6

PaperCut’s print management delivers real bottom-line savings for organizations of all sizes. Our software is scalable and customizable to your specific business needs. Implementation ranges from silently tracking employee usage by individual, office or department, to explicit reporting of usage costs, budgeting, and environmental impacts. Rest easy knowing your organization’s printing is being monitored and under control.

Key features at a glance:

  • Encourage responsible use of company resources.
  • Silently track printing and associated costs by individual user, office or department.
  • Printing can be monitored and reported or charged back on a per-document, per-user, per-client or per-department basis.
  • Actively manage the print process with filters, routing and redirection.
  • Stay on top with regular print monitoring reports to analyze and audit printer usage.
  • Educate workers, and create an environmentally aware workplace.
  • Simple installation and easy to use. You can begin tracking immediately by installing on your existing servers.
  • Suitable for Windows, Mac, Linux and Novell, making PaperCut the most flexible and integrated print monitor solution available.
  • Take the tour, and Download PaperCut NG.

Continue reading Installing Papercut NG on Debian 6

Setup Mikrotik OpenVPN Server using CAcert with Linux Client

Creating Mikrotik OpenVPN Server Certificates

OpenVPN works with SSL certificates. You can either use http://cacert.org to issue these or use the easy-rsa scripts, that come with most OpenVPN distributions. On RouterOS, all you have to do is to upload them via ftp (ca certificate and router certificate and private key) and import them with . . . → Read More: Setup Mikrotik OpenVPN Server using CAcert with Linux Client

Open-Mesh Revisited

Well after my first attempts with those little white boxes, along came the OpenWRT-Linux guru of our net to point out that most of the ways i tried to tackle problems are things of the past for OpenWRT.  As a matter of fact i think that most of the problems i am trying to tackle under Linux are me own patchwork around my ignorance to some new developments or ways around things. But hey this is the deal. Attempt and right the wrongs by great collaboration and good friends. So lets say thanx to Vasilis Tsiligiannis for all the help and guidance he provided in rewriting and perfecting the script we needed. Continue reading Open-Mesh Revisited