Should You Switch? Deployment Guide and Initial Thoughts
Рет қаралды 11,291
Күн бұрын
@DarrylGibbs 24 күн бұрын
I always thought WAF = wife approval factor
@Jims-Garage 24 күн бұрын
Haha! Very apt in the homelab space ! 😂 "Is the internet down again?"
@chrisumali9841 18 күн бұрын
Thanks for the demo and info. Another great fantastic video Jim. Have a wonderful day
@Jims-Garage 18 күн бұрын
Glad you enjoyed it
@bluesquadron593 24 күн бұрын
Well I stopped at the elephant in the room @3:10
@Jims-Garage 24 күн бұрын
I can understand that, hence why I felt it was important to mention it.
@bluesquadron593 24 күн бұрын
@ very nice and thanks for the transparency.
@PowerUsr1 24 күн бұрын
and................im done here......
@Glatze603 23 күн бұрын
Very interesting, thanks for your work with this video Jim!
@Jims-Garage 23 күн бұрын
@@Glatze603 you're welcome
@1111s-y6j 22 күн бұрын
But I tried and it did work well and I got positive results after a pen test. Every software collect data. Telemetry is very often used to understand usage patterns.
@gaz1978 21 күн бұрын
This sounds like an intersting product right up until the throwawy line "they're based in China" Oh well onto the next.
@Jims-Garage 19 күн бұрын
BunkerWeb next (albeit checkout my CrowdSec video - it's probably the best option)
@chrisumali9841 20 күн бұрын
Thanks for the demo and info. Have a great day
@Jims-Garage 19 күн бұрын
Thanks, you too!
@davidwestra8181 24 күн бұрын
Would love a video of more advanced crowdsec/traefik configuration.
@Jims-Garage 24 күн бұрын
Noted! I have been meaning to revisit for a while now
@ghangj 24 күн бұрын
Same as well. I am building my homelab around these two products Traefik and Crowdsec and getting that data to show on Grafana will be great
@asksearchknock 24 күн бұрын
3:10 - it looks interesting but combining Chinese software with something that can read encrypted packets is a bit too much for me. Great review though and thanks for sharing it
@ency98 24 күн бұрын
Been looking for a decent WAF for awhile. Sophos is a pain and crowdsec isn't much better. I appreciate the transparency on the origin, i wont be testing this out because of the origin but its nice to see other options coming out that might get support going for other projects.
@Sli3py 23 күн бұрын
Very nice indeed! I wonder would this possibly replace traefik+crowdsec+ let's encrypt combo? 🤔
@Jims-Garage 23 күн бұрын
@@Sli3py it can, but you'll have to decide if you should
@ghangj 24 күн бұрын
*Contemplating on setting up WAF for external services*....Jim's Garage "Should You Switch? Deployment Guide and Initial Thought"............. 3:10 ...glad to know.
@alepouna 13 күн бұрын
Looks like a great app, the UI is pretty nice (-light theme), ,bit bummed of the elephant in the room. I wonder if there is anything similar (ui wise) to this
@An78toi13ne 22 күн бұрын
Great video as always ! The chinese factor being a problem, Bunkerweb seems to be a good (French) alternative from what I saw. Maybe you could give it a try to do a WAF comparison ?
@Jims-Garage 21 күн бұрын
Oui oui, I'll check that out. Thanks
@amrhegazy7221 23 күн бұрын
kindly compare it to Crowdsec waf
@Jims-Garage 21 күн бұрын
I already have a video on crowdsec (both docker and kubernetes) but it might be worth a refresh.
@michaeldziegiel4954 18 күн бұрын
I have Nginx configured as a reverse proxy for my web applications, and I'm now trying to integrate SafeLine into this setup. I’ve set port 80 to forward to SafeLine, and then configured Nginx to route traffic to SafeLine on port 9443. In theory, this setup should work, but I keep running into a certificate error. Any ideas on what might be causing this?
@crypto-city859 15 күн бұрын
Subbed :)
@Jims-Garage 15 күн бұрын
@@crypto-city859 thanks 👍
@altimeterlabs 24 күн бұрын
May I ask why you always use VMs as opposed to LXCs? A video on the pros / cons would be great!
@Jims-Garage 21 күн бұрын
@@altimeterlabs sure, a VM has an isolated kernel (more secure albeit LXC should be sufficient). I also prefer a VM as there's no dependency on the underlying OS (it will run on anything KVM).
@panthonyy 20 күн бұрын
@@Jims-Garage I,m with you on this one, I do the exact same. Although, I have a lot of CPU cores and RAM and electricity is dirt cheap where I live. So if those were issues I might've considered LXCs a lot more
@jole23b 23 күн бұрын
compare it to firewalla software / firewall
@Jims-Garage 19 күн бұрын
Thanks, I'm yet to test firewalla
@eelrepus 9 күн бұрын
No Mainland China project....give up for this....
@BenjaminBenStein 22 күн бұрын
Chinese, nope thx
@masterroot24 21 күн бұрын
Honestly, I tried to move past the Chinese origin. However, seeing that it doesn't even default to IPv6 being on was the final nail in the coffin for me.
@Jims-Garage 19 күн бұрын
That's a fair criticism.
@Carrie-f5b 19 күн бұрын
If you enable IPv6 on docker, it actually supports.
@masterroot24 19 күн бұрын
@@Carrie-f5b I can see that, but the fact that this is being offered as a WAF and it's not defaulting to IPv6 being on suggests that IPv6 is a secondary concern to (legacy) IPv4. In other words: Out of the box, it's only filtering on legacy traffic.
@Carrie-f5b 18 күн бұрын
@@masterroot24 Tengine is host network and supports to filter IPv6 traffic by default. But if you mean accessing SafeLine Management Console with IPv6, that is port 9443, you need to enable IPv6 on docker.
@roehlaguila7930 23 күн бұрын
Please review BunkerWeb.
@Jims-Garage 21 күн бұрын
@@roehlaguila7930 I'll have a look
@panthonyy 20 күн бұрын
Thanks for the heads up, didn't know about this one, and will definitely check it out :)
Jim's Garage
Рет қаралды 6 М.
Jim's Garage
Рет қаралды 72 М.
Телеканал Дождь
Рет қаралды 274 М.
Payload
Рет қаралды 30 М.