Why? DNS is one of these protocols that makes the web work. Well, not only web, many other internet things that need to communicate one with another. You can think of it as a phone book for the internet. When you visit a domain, for example google.com, your computer follows a series of steps to turn the human-readable web address into a machine-readable IP address. DNS is a very old protocol, but it does have some issues and if mis-configured and not monitored, it can compromise security of your network. DNS problem – security DNS queries are sent in a clear text. This means that others can see and manipulate the queries and responses. Such attacks are well known, for example MITM (Man In The Middle) attacks. Manipulating DNS is well known by many ISP’s around the world. ISPs (Internet Service Providers) can censor the web by simply blocking DNS resolution of domains and they can build a profile of all the sites you visit by recording your DNS queries. Then there are ads. Internet is full of them. Some of them are useful and certainly add value while not being very intrusive. Unfortunately, many of them are very...
Continue readingMy home network
Why investing in home network? I have always liked technology. My main driver to get into IT many years ago was fascination with wireless technology and desire to understand how it is possible to send or receive a file and do other things via the air that surrounds us. I have done lots of infrastructure work and this has led to me wanting to get more insight and control with what’s happening on my home network. I have stopped using standard ISP equipment companies provide when you sign up for broadband service as I have always found them poor in quality with regards to performance and with very limited controls and functionality. I have used various equipment at home such as Asus routers with custom firmware, Fortigate, Meraki and pfSense, up until… I have started hearing more and more about Ubiquiti. Few of my friends have started using their WiFi equipment at home. I have done my research and decided to purchase two wireless access points (UAP AC-Pro). I have set up a controller on my MacOS server and provisioned them. My wireless at home has become rock solid, reliable and much faster than before after tweaking various features...
Continue reading