Deploying pfSense in Azure – A Step-by-Step Guide to Your Own Cloud Firewall
Spinning up a pfSense firewall in Azure can be done in two ways, out of the box or DIY style….
Understanding pfSense IPsec Identifiers: When Public IPs Aren’t Enough
When setting up an IPsec VPN between peers that aren’t both directly reachable by static public IPs, for example, when…
Mastering Windows Updates & Microsoft Updates – Part 3 – Controlling Automatic Updates in On-Prem and Cloud Environments
Keeping Windows servers properly patched can feel deceptively simple, until you realize that automatic updates don’t behave the same everywhere….
Cross-Hub Connectivity in Google Cloud using HA VPN and NGFW Appliances
In multi-hub Google Cloud environments, teams often need full connectivity between workloads that sit behind different Network Connectivity Center (NCC)…
pfSense and APIPA (169.254/16): Enabling Link-Local Transit Networks for IPsec VTI and BGP
Using APIPA (169.254.x.x) addresses as a transit network for IPsec IKEv2 VTI tunnels is a common best practice in major…
Mastering Azure DNS
Azure DNS provides a reliable, scalable, and secure way to host and manage your domain name system (DNS) records directly…
Deploying pfSense in Google Cloud – A Step-by-Step Guide to Your Own Cloud Firewall
Running pfSense in Google Cloud Platform (GCP) is a powerful way to build your own fully controllable network gateway, firewall,…
Building a Centralized Egress and Hybrid Connectivity Hub with Network Connectivity Center (NCC), HA VPN, and a Router Appliance in Google Cloud
In my previous posts I was configuring a hub-and-spoke architecture to support cross-VPC routing and hybrid connectivity. About setting up…
Mastering GCP Virtual Machines – Part 9 (Outbound Internet Access)
If your VMs need general outbound internet (patching, repo downloads, external APIs), and you don’t want public IPs → Cloud…
Mastering GCP Virtual Machines – Part 8 (Networking Best Practices)
Google Cloud Platform (GCP) provides a powerful and flexible networking foundation that can scale from simple projects to complex, global…
Follow me on LinkedIn
