#networking Articles

What looked like a simple nginx config change turned into a tour through SSL library incompatibilities, pf firewall rules for a new protocol, and a multi-worker affinity problem that only shows up under real traffic. A complete guide to getting HTTP/3 working with nginx 1.28 on FreeBSD 15.0 inside a Bastille jail.

How I obtained my own AS number and IPv6 prefix, set up a FreeBSD BGP router with FRR, and built a tunnel overlay to bring globally routable addresses to servers that already have provider-assigned IPv6 - using dual-FIB policy routing to make both coexist.

A comprehensive guide to configuring PF on FreeBSD, covering core concepts, practical configurations for jails and dual-stack networking, and advanced techniques including brute-force protection and bastion host setups with authpf.

Migrating a Mastodon instance to FreeBSD with BastilleBSD - a multi-jail architecture with aggressive service separation, centralized PF firewalling, and a fully dual-stack network design.

A reproducible dual-stack configuration for FreeBSD on Hetzner Cloud with VNET jails, PF NAT for IPv4, and a /65 split trick to give jails native globally-routable IPv6 from a single /64.