2025-11-06
Jitsi Meet is an open videoconferencing platform that easily integrates with Active Directory (AD). Such integration allows using corporate accounts for login, simplifying administration and improving security.
In this guide we’ll go through how to connect Jitsi Meet (in Docker) to AD based on Windows Server 2016, and show proven debugging methods that help avoid common errors.
Important: using LDAP without encryption is insecure. For testing this is acceptable, but in production you must use LDAPS (port 636) with valid certificates.
2025-11-05
How to run Jitsi Meet (Docker) behind an Nginx Reverse Proxy
In the previous article we deployed a basic Jitsi Meet server using Docker.
This is a great way to quickly start video conferencing, but in production a Jitsi server often needs to run on the same host where other web applications are already running.
To keep everything peaceful, you should hide Jitsi behind an Nginx reverse proxy.
Nginx will take care of SSL, ports 80/443 and will proxy requests to the Jitsi containers running on internal ports.
2025-11-04
Yocto — this is not a distribution.
It’s a tool from which you build your Linux.
Like Lego, only for engineers.
🔧 Who needs Yocto
- Developing medical or industrial devices
- Require a 10-year support lifecycle
- Want a minimal image (15 MB)
- Working at Siemens, Bosch, or Toradex
🛠 How to build your Linux
# 1. Клонируем репозиторий
git clone git://git.yoctoproject.org/poky
cd poky
source oe-init-build-env
# 2. Настраиваем
echo 'MACHINE = "raspberrypi5"' >> conf/local.conf
# 3. Собираем
bitbake core-image-minimal
The resulting image will appear in tmp/deploy/images/.
2025-11-03
pfSense — a tank in the world of firewalls.
Is updated less often, but runs for years without surprises.
🏢 Who pfSense is for
- Corporation with 100+ users
- Needs official support
- Has old but reliable hardware
- Value stability
📚 pfSense Features
- Multi-WAN and automatic failover
- Traffic Shaping — bandwidth management
- Captive Portal — guest authentication
- OpenVPN and IPsec — encrypted tunnels
⚙️ Installation
- ISO → USB
- Install → configure WAN/LAN
- In about 10 minutes — a ready firewall
Example HAProxy config:
2025-11-02
OPNsense — it’s like pfSense, but prettier, faster, and with an API.
Want an office firewall you wouldn’t be embarrassed to show your boss? Here it is.
💼 Who OPNsense is for
- Office of 10–50 people
- VPN for all employees
- Backup internet connection
- Modern web interface
🎨 Apple-like interface
- Dark theme
- Real-time graphs
- REST API for automation
- WireGuard out of the box
⚙️ Installation in 5 minutes
- Download the ISO from opnsense.org
- Write it to a USB stick (
dd or Rufus) - Boot → assign interfaces → done!
Auto-update via API:
2025-11-01
Imagine: an old router for 2000 ₽ blocks ads, shares a VPN, works as a Mesh system and doesn’t slow down even with 50 devices.
This is not magic — this is OpenWRT.
🏠 Who needs OpenWRT
OpenWRT turns an ordinary router into a mini-server. If you have at least one item from the list — it’s definitely time to try it:
- Want AdBlock for the whole house
- Need a VPN without a subscription
- Have an old router lying around
- Like to tinker with settings
90% of users install OpenWRT — and forget about the router forever.
2025-10-31
n8n is a powerful open-source workflow automation tool that allows building complex workflows without deep programming. One of the key scaling mechanisms in n8n is queue mode, where the main instance delegates task execution to separate processes called workers. Workers allow distributing load, enabling parallel workflow execution and improving system performance.
In the n8n community and practical guides, two types of workers are often distinguished: light workers and heavy workers. Although the official documentation doesn’t use these terms directly, they reflect differences in task types and configuration. Light workers are aimed at fast, frequent operations, while heavy workers handle resource-intensive tasks. In this article we’ll examine their differences, how they work, and why they are necessary for effective scaling.
2025-10-30
A PostgreSQL proxy or connection pooler is an intermediary application that sits between your client applications and one or more PostgreSQL servers. It speaks the PostgreSQL network protocol, which allows any standard client (for example, your web server or an application in Java/Python/Go) to connect to the proxy believing it is talking directly to a PostgreSQL server.
Unlike MySQL, where proxies are often used for read/write splitting (R/W split) or caching, in the PostgreSQL world the main task of a proxy is efficient connection management.
2025-10-28
MySQL Proxy is a proxy application that sits between client applications (for example, your web server) and one or more MySQL servers. It uses the MySQL Network Protocol, which allows any standard MySQL-compatible client to connect to the proxy without changes, believing it is talking directly to a MySQL server.
How MySQL Proxy Works
In its basic configuration the proxy simply forwards requests from the client to the MySQL server and returns responses back.
However the key feature of MySQL Proxy and its counterparts is monitoring, analyzing, and modifying the passing traffic:
2025-10-25
In the world of modern applications, especially in the era of AI and big data, storing unstructured data is a key challenge. MinIO is a high-performance object storage distributed under the AGPLv3 license. It is fully compatible with the Amazon S3 API and allows you to deploy storage locally or in the cloud. Designed to scale to exabytes, MinIO is ideal for AI/ML workloads, analytics and web applications. In this article we’ll cover why it’s useful for a developer, evaluate pros and cons, and look at alternatives.
