#networking
4 posts tagged networking.
How to run a maintenance window without losing sleep
Eight VMs decommissioned, four teams consolidated, one new Windows server stood up. The window ran a day early, hit one real incident, and the post-window verify script passed clean. Here's the full story.
Routes and policy: giving the mesh the keys, one team at a time
An authenticated peer that can't reach anything is useless. This part turns the gateway into a routing peer, advertises the internal network, pushes internal DNS, and replaces 'connected means full access' with default-deny, group-based policy.
The two networks bare-metal guides skip, and booting the head node
Almost every \"my node won't PXE boot\" problem is a network problem. Here's the two-network design, including the DHCP-less network that makes stateless booting possible, and how to stand up the head node on it.
Why we're tearing out a VPN that works
The old OpenVPN setup wasn't broken. It was a pile of per-user certificates and a manual onboarding ritual. Here's the case for replacing it with a self-hosted WireGuard mesh tied to the directory, and the one rule that keeps the swap from becoming an outage.