https://devopstales.github.io/categories/security/ Recent content in Security on DevOpsTales Hugo -- gohugo.io en Wed, 08 Apr 2026 00:00:00 +0000 https://devopstales.github.io/kubernetes/kube-ovn-egress-gateway/ Wed, 08 Apr 2026 00:00:00 +0000 https://devopstales.github.io/kubernetes/kube-ovn-egress-gateway/ Kube-OVN is an open source Kubernetes CNI based on Open vSwitch that provides enterprise-grade networking features including Egress Gateway and Floating IP - completely free and open source. This post explores Kube-OVN’s egress capabilities as another robust open source alternative. https://devopstales.github.io/kubernetes/antrea-egress-gateway/ Sun, 05 Apr 2026 00:00:00 +0000 https://devopstales.github.io/kubernetes/antrea-egress-gateway/ Antrea is an open source Kubernetes CNI based on Open vSwitch that provides advanced networking features including Egress Gateway - completely free and open source. This post explores Antrea’s egress capabilities as a true open source alternative. https://devopstales.github.io/kubernetes/cilium-egress-gateway/ Thu, 02 Apr 2026 00:00:00 +0000 https://devopstales.github.io/kubernetes/cilium-egress-gateway/ Controlling outbound traffic from your Kubernetes cluster is critical for security, compliance, and audit requirements. This post covers Cilium Egress Gateway - a powerful open source solution built on eBPF. https://devopstales.github.io/linux/wazuh-pfsense-syslog/ Sun, 15 Mar 2026 00:00:00 +0000 https://devopstales.github.io/linux/wazuh-pfsense-syslog/ Centralizing pfSense firewall logs in Wazuh SIEM provides critical security visibility and threat detection capabilities. This updated guide for 2026 covers pfSense 2.7.x/2.8.x and Wazuh 4.8+ with proper syslog formatting and decoder configuration. https://devopstales.github.io/windows/windows-server-radius/ Thu, 12 Mar 2026 00:00:00 +0000 https://devopstales.github.io/windows/windows-server-radius/ Implementing 802.1X wireless authentication with Windows NPS (Network Policy Server) and UniFi access points provides enterprise-grade security for your wireless network. This updated guide for 2026 covers Windows Server 2022/2025 and the latest UniFi Controller. https://devopstales.github.io/linux/pfsense-ad-join/ Thu, 05 Mar 2026 00:00:00 +0000 https://devopstales.github.io/linux/pfsense-ad-join/ Joining clients to an Active Directory domain requires specific firewall ports to be open. This updated guide for 2026 covers the minimum and recommended ports for Windows 11/Server 2022+ domain joins, including pfSense firewall configuration examples. https://devopstales.github.io/kubernetes/mtls-traefik-ingress/ Wed, 25 Feb 2026 00:00:00 +0000 https://devopstales.github.io/kubernetes/mtls-traefik-ingress/ Mutual TLS (mTLS) adds a critical security layer to your Kubernetes applications by requiring clients to authenticate with certificates—not just passwords or tokens. This guide covers per-ingress mTLS configuration with Traefik Ingress Controller, using Traefik’s native TLSOption CRD for fine-grained control over which services require client certificate authentication. https://devopstales.github.io/kubernetes/mtls-nginx-ingress/ Tue, 24 Feb 2026 00:00:00 +0000 https://devopstales.github.io/kubernetes/mtls-nginx-ingress/ Mutual TLS (mTLS) adds a critical security layer to your Kubernetes applications by requiring clients to authenticate with certificates—not just passwords or tokens. This guide covers per-ingress mTLS configuration with NGINX Ingress Controller, giving you fine-grained control over which services require client certificate authentication.