FirewallJobs

Firewall fix Plesk

I forbindelse med overgang fra en Windows baseret udviklingsplatform til en Linux baseret platform, søger vi en erfaren Linux udvikler med lyst og evne til at oplære vores udviklingsteam samt tage del i konkrete udviklingsopgaver. Detaljeret kendskab til følgende områder er en forudsætning: Linux, sikkerhed og firewall opsætning på en Linux server, Remote Desktop programmer til Linux, filsysmer, Docker Container, Java programmeing og debugging. Kendskab til et eller flere af følgende områder er en fordel: Open source, IOT, FIWARE, Apache Kafka, ElasticSearch, CKAN.

...secure state. Scope of work • Track down and remove any malicious files, scripts, cron jobs, or database injections causing the redirects. • Restore full access to phpMyAdmin and the CyberPanel File Manager. • Repair or replace corrupted MySQL tables so every site loads correctly. • Patch WordPress core, themes, and plugins; tighten CyberPanel and LiteSpeed security settings; configure a firewall (e.g., CSF or equivalent) and fail2ban or similar brute-force protection. • Provide a short report of what you removed/changed plus a checklist of hardening steps for future prevention. Environment – VPS running CyberPanel (OpenLiteSpeed) – Multiple WordPress installs (ssh and root access available) Timeline I need the server back...

...application is already functional, and I have real clients. Now I need an experienced DevOps engineer to prepare a proper production-ready infrastructure. Scope of Work: I need help with: 1. Setting up Production Environment (secure & scalable) 2. Creating Staging / Testing environment 3. Implementing CI/CD pipeline 4. Server deployment (Docker preferred) 5. Security best practices (SSL, firewall, access control, secrets management) 6. Logging & Monitoring setup (error tracking, server logs, alerts) 7. Performance optimization basics 8. Documentation of the setup Requirements: • Strong experience in DevOps • Experience with Docker & containerization • Experience with cloud providers (AWS / Azure / GCP / DigitalOcean) • Experience wit...

...correct gblicense v15 binaries, deploy them to the server, and wire them up to the current Laravel stack. • Configure Nginx as the single entry point, including HTTPS termination (certbot is already available) and clean routing so that gblicense runs on its intended port while remaining invisible to the end user. • Optimise basic network security inside the app and proxy layers (a separate firewall is not planned). • Troubleshoot any build, dependency, or permission issues until the service is stable—no 502/504 or TLS errors in the logs. Deliverable & timing A fully operational gblicense v15 instance reachable at my domain over HTTPS, all licence-management functions working, and zero critical errors in the first 24 hours of uptime. The job mus...

I have a production-ready build that now needs to go live on our Google Cloud environment, specifically on Compute Engine. The artifact is finished; what I’m missing is the DevOps expertise to turn that artifact into a resilient, repeatable deployment. Here’s what I need from you: • Provision and configure the necessary Compute Engine instance(s) • Harden the VM with the right firewall rules, service accounts, and startup scripts • Automate the deployment so it can be reproduced in one command (Terraform, Deployment Manager, or a shell script—your call) • Ensure the application starts on reboot and is reachable via HTTPS • Provide a concise hand-over document or README that explains each step and shows how to roll out future versio...

Requires Linux server operation and maintenance capabilities (system operation, permissions, service management, Shell scripting); server environment deployment capabilities (Nginx/Apache/Web service configuration); database management capabilities (MySQL installation, import, and recovery); system backup and recovery techniques ( decompression, directory migr...permissions, service management, Shell scripting); server environment deployment capabilities (Nginx/Apache/Web service configuration); database management capabilities (MySQL installation, import, and recovery); system backup and recovery techniques ( decompression, directory migration, dependency repair); RabbitMQ message queue deployment capabilities; server network configuration (ports, firewall, service connectivity).

Need experienced Linux System Administrator for server hardening. Tasks include security audit, firewall configuration, SSH hardening, user access control, patch management, and security monitoring setup. Must have experience with Ubuntu/CentOS and tools like Fail2ban, SELinux. Provide documentation of all changes.

...behind Nginx with SSL enabled. I want the server re-imaged to the latest stable Ubuntu, with every element of the existing stack preserved and an additional n8n instance installed. Scope of work • Perform and store an off-box, full backup of all site files, databases, and current Nginx configurations before any changes begin. • Re-provision the VPS on Ubuntu, harden the OS, and apply basic firewall rules. • Restore my websites, bringing Nginx back online with the original virtual host blocks and SSL certificates so no visitor notices the change. • Install n8n (Docker or native systemd service—whichever fits best on Ubuntu) and expose it securely over HTTPS generating new certificates as needed. • Hand over a brief runbook outlining backup...

...Windows 10/11 users and want the environment ready before their machines ship. some device are Azure AD joined, some are not, now I need an Intune specialist to complete the initial build-out, enroll the PCs, and publish core policies so everything works out of the box on first sign-in. Scope of work • Security policies: configure baseline Windows security, BitLocker with escrow, antivirus/Firewall (Defender) settings, device compliance rules, and automated OS update rings, disable USB ports. • Application deployment: package and silently push our standard software stack (O365, Teams, Adobe Reader, two in-house EXE installers) plus set up a Company Portal experience for future self-service installs. • User profile management: implement OneDrive Known Folder ...

...attackers modified, patch any exploited vulnerabilities, and tighten overall security (core, themes, and existing plugins are all up to date once you finish). Deliverables • Full malware and vulnerability report before and after fix • Clean, malware-free site with original content intact and no hidden redirects or injections • Hardening steps applied (file permissions, wp-config adjustments, firewall or security plugin properly configured) • Final verification that the site passes an external scan (Sucuri or similar) and loads correctly for both visitors and administrators • Short hand-over guide outlining what was done and how to keep the installation secure I can supply cPanel, FTP, and wp-admin credentials immediately after we start and wil...

Vær venlig at Tilmelde dig eller Log ind for at se detaljer.

...panel credentials; from there, I expect a streamlined, production-ready environment set up without delay. Please bring your own best-practice checklist—speed, stability, and basic hardening are what matter most to me right now. Deliverables • Update Ubuntu to the latest LTS patches • Install and configure a web-server stack (Apache or Nginx—your call, as long as it’s stable) • Enable a firewall, SSH key authentication, and basic fail2ban or equivalent protection • Set up one test virtual host so I can point a domain and confirm everything works • Provide a brief hand-off document: commands used, key locations, credentials changed, and how to add future sites I need this turned around ASAP, so please reply only if you’re...

...logs and they report network-related errors just before the containers stop responding. • Custom firewall and network rules are in place, so something in that stack might be choking the traffic. • Nothing obvious appears in the application code itself. What I need from you 1. Trace the exact root cause—whether it’s Docker networking, nginx/Traefik, UFW/iptables, or something in the compose stack. 2. Patch or re-configure so the containers stay up indefinitely, without me having to babysit them. 3. Provide a concise summary of the fix (commands run, files changed) so I can reproduce it on staging. You will have SSH access to the server, docker-compose files, and the existing firewall ruleset. If extra monitoring or tweaks (e.g., health-chec...

...services, and making sure performance never drifts. In parallel, I want proactive security updates: closing vulnerabilities quickly, hardening configurations, and documenting every change so there are no surprises later. A typical month might include: • Scheduling and applying Microsoft updates with minimal downtime • Reviewing Event Viewer and other logs for early warning signs • Updating firewall rules or IPS policies when new threats emerge • Producing a concise status report outlining what was done and any recommended next steps All work is performed remotely, and I’ll provide RDP access plus any credentials you need. If you prefer specific toolsets—PowerShell, SCCM, WSUS, or third-party monitoring agents—let me know; I’m f...

The site has suddenly started bouncing visitors to a completely unrelated, suspect domain. Nothing loads from our end—each r...anything malicious. • Restoration of the legitimate site so it loads normally from every device and location, with no hidden redirects. • A concise post-remediation report outlining what was found, which files were fixed or removed, and the steps you took. Once the site is stable, please harden it—tidy permissions, close common injection vectors, and, if appropriate, set up a lightweight firewall or security plugin so this can’t happen again. I can give you immediate access to hosting, cPanel/SSH, and the domain registrar panel. Looking to have the job completed as soon as possible and will be on standby to test changes th...

I need a reusable golden template of the latest RHEL 9 release, fully aligned with CIS Benchmark Level 1, for a strictly cloud-based Azure deployment. The goal is to s...are removed or masked • Deliverables include build scripts, a plain-language README, and a compliance report so I can reproduce the image in future updates If you have recent experience hardening RHEL or building secure Azure images, let’s get started. mandatorily remediation for env • SSH hardening controls (e.g., disabling root login, limiting SSH access, enforcing secure configuration) • Firewall configuration (firewalld enabled) • Login and SSH warning banners • Hardening of temporary filesystems (/tmp, /var/tmp, /dev/shm) • Disabling unnecessary services(e.g., systemd-jo...

...freelancer will set up telephony, real-time audio processing, STT/TTS, API connectivity, and perform full fine-tuning so that live calls sound natural, stable, and low-latency. Scope of Work (VM-1 Only) VM & Network Setup OS: Ubuntu (preferred) on Proxmox Configure: Public interface → SIP + RTP Private interface → AI Brain API Optimize OS for: Low-latency audio High concurrent calls Firewall configuration: SIP (TLS) RTP port range Internal API access only SIP Trunk & Telephony Configuration Configure SIP Trunk (provider details will be shared) SIP over TLS preferred Handle: Incoming & outgoing calls NAT traversal DTMF Call start / end events Codec setup: Opus (primary) G.711 (fallback) Telephony stack: FreeSWITCH / Kamailio / Open...

...Configure system so: Any user can log in to any PC or laptop User can access their files & folders from any device Implement best-practice solution (Folder Redirection / Roaming / Modern equivalent) NAS Configuration Configure NAS for: Central file storage User-wise & department-wise permissions Backup & snapshot policies Integrate NAS with Active Directory Sophos Firewall & Remote Access Configure Sophos Firewall: Network security rules VPN for remote users User-based internet access control Basic security hardening Software Installation Install and configure on all 25 devices: Microsoft Office (licensed) AutoCAD (licensed) Ensure activation, updates, and performance tuning Testing & Documentation End-to-end testing of: U...

Vær venlig at Tilmelde dig eller Log ind for at se detaljer.

...toda la migración y que, además, configure correctamente el servidor de destino para que todo vuelva a funcionar sin interrupciones. El trabajo incluye: • Respaldar y mover el sitio web, la aplicación DNN y la API de voz, conservando todas las rutas, permisos y configuraciones de IIS. • Ajustar y optimizar el nuevo servidor (instalación de roles, módulos necesarios, certificados SSL, reglas de firewall y afinación de rendimiento). • Probar cada componente después del traspaso para garantizar que el sitio cargue, la aplicación DNN responda y la API de voz devuelva resultados correctos. • Documentar los pasos realizados y dejar un pequeño plan de reversión por si fuera necesario. . Agr...

Ich habe eine frische OPNSense-Installation (Version 25.7) und möchte sie in mehreren Remote-Sessions über TeamViewer gemeinsam fertig einrichten. Dabei soll die Firewall nahtlos in unsere Active-Directory-Umgebung eingebunden und für den täglichen Betrieb vorbereitet werden. Folgende Arbeiten sollen innerhalb der Sessions erledigt werden: • Grundkonfiguration inkl. Basis-Hardening und Backup-Plan • AD-Anbindung (LDAP/Radius) zur zentralen Benutzer- und Gruppensteuerung • Proxy & Webfilter auf Squid-Basis mit AD-Gruppen-Rechten; Funktionen: Caching und URL-Filterung • Einrichtung von 1–5 VLANs samt passender Firewall-Regeln • Remote-Access-VPN (OpenVPN oder WireGuard, je nach Best-Practice) für Mitarbeit...

...(API keys, tokens, OAuth cuando aplique), mapeo de datos entre aplicaciones. • Docker: despliegue y operación de servicios (docker-compose), redes, volúmenes, reinicios, actualización de contenedores. • Dokploy: gestión de despliegues, servicios, variables de entorno, logs, dominios y mantenimiento básico desde panel. • VPS en Hostinger: administración básica (SSH), configuración de entornos, firewall/puertos, y troubleshooting de servicios. • SSL / HTTPS: configuración y validación de certificados (Let’s Encrypt / reverse proxy), redirecciones y resolución de errores comunes. • Bases de datos: PostgreSQL y Supabase (tablas, relaciones, consultas SQL básicas, backups...

...Wi-Fi side enjoy secure browsing at all times. Here is what I expect: • The LAN interface pulls DHCP from the public line and forwards nothing until the VPN is up. • The Wi-Fi interface advertises an SSID of my choice, hands out local addresses, and transparently pushes all traffic through the VPN tunnel (OpenVPN or WireGuard—whichever you feel delivers greater stability). • NAT, DNS, and firewall rules must be configured so clients connect instantly without extra tweaks, and a fail-closed rule set should prevent leakage if the tunnel drops. • Everything needs to auto-start at boot, with a concise script or systemd files plus a short README so I can reproduce the setup on another Ubuntu install. If you have clever ideas—better through...

...files or database. Deliverables • Identify and eliminate every malicious redirect script or database entry. • Provide a brief report of the compromised files/URLs and what was done to patch them. • Update core, theme, and plugins safely and patch any vulnerable components. • Configure a reputable security plugin (Wordfence, Sucuri, iThemes Security—whichever you prefer) with sensible firewall rules and automated scans. • Add basic hardening (stronger .htaccess rules, disable file editing, salted keys refresh, etc.). • Final confirmation that the site loads normally, with no redirects detected in popular scanners (Google Safe Browsing, VirusTotal, Sucuri SiteCheck). Please let me know your estimated turnaround and any server-side a...

...won't update at all. A Godaddy guy said this, not sure if it'll help you. "I do see lines of code of wordfence code in the .htaccess code. JSON error you receiving is more a firewall/waf blocking. I tried to add the widgets path to Sucuri so would recommend likely making a ticket with them before the WP team has it’s not the server likely blocking the request. I do check that your RestAPI is accessible but could be a Sucuri believing it is a site injection attack for the widget saving the HTML. Another path would investigate changing to classic widgets instead which can bypass firewall rules. I believe it’s firewall first but could also look into elementor and your generator theme as well. "...

Necesito dejar mi servidor WHM-cPanel afinado para que cada correo transaccional salga con reputación impecable y nunca termine en la bandeja de spam. Hoy los mensajes se envían por Exim y ya tengo Inmunify como capa de seguridad, pero faltan varios ajustes finos: la política del firewall, la firma DKIM, el registro SPF y las pruebas finales de entrega. Entrego acceso de root y de cPanel para que puedas: • Optimizar las reglas de Inmunify (o proponer CSF si sumara valor) y cerrar puertos innecesarios sin afectar el funcionamiento de Exim. • Generar y habilitar DKIM y SPF alineados con el dominio principal, verificando que propaguen correctamente en DNS. • Realizar pruebas con mail-tester, Google Postmaster o similares hasta lograr una pun...

...I’m not even sure whether the credentials I have include full root access, so I’ll need guidance verifying that first. Here’s what I need from you: • Confirm (or help me obtain) root access. • Install a working, properly-licensed copy of cPanel/WHM compatible with whatever OS the VPS is using—whether that turns out to be CentOS, Ubuntu or Debian. • Secure and configure the server (basic firewall, SSH hardening, hostname, nameservers, PHP and MySQL versions suitable for WordPress). • Create the cPanel account and migrate or upload my existing WordPress files and database so the site loads correctly over HTTPS. Once everything is up, I want to be able to log into WHM/cPanel myself, see the WordPress site live, and know how t...

...experienced n8n automation engineer to deploy and configure a fully self-hosted, secure n8n setup on a private VPS environment. This is not a SaaS / Zapier / Make project. The system must be deployed on private servers with proper security and access control. Scope of Work Phase 1 – Infrastructure & Core Setup Deploy n8n (self-hosted) using Docker Configure PostgreSQL database Secure server setup (firewall, SSL, access control) Configure webhooks securely Basic monitoring & backups Phase 2 – Integrations Integrate WhatsApp (Cloud API or approved provider) Initial testing using personal WhatsApp number (QR / scan-based testing if required) Configure inbound & outbound message flows Lead capture and follow-up automation Store conversations and lead data...

...configure, and maintain a VPS on Hostinger (or similar providers) that will host modern web applications (React/Node.js) and WordPress websites. The ideal candidate should have deep Linux server skills, web stack expertise, and full deployment experience. Scope of Work VPS Installation & Configuration Set up Hostinger VPS (Ubuntu 20.04/22.04 recommended) Configure SSH key login, disable root login Firewall setup (UFW / iptables) Security hardening (Fail2Ban, SSH, ports, updates) Server monitoring & backups Full-Stack Environment Setup Node.js / React / NPM / Yarn setup Nginx / Apache configuration (reverse proxy, SSL) PM2 or process managers for Node.js apps WebSocket / API server configuration Environment variables & secure credentials WordPress Hosting & ...

My private server farm runs entirely on Windows Server 2019/2022 and I want a single, reliable point of contact to keep it both secure and resilient. Day-to-day, you will be hardening the network with advanced threat-detection practices—think real-time log analysis, strict firewall policy reviews, prompt patching, and well-documented incident response plans. All data protection flows through Veeam. I rely on daily image-level backups, off-site replication, and periodic restore tests, so you’ll need to stay on top of job success reports, storage consumption, and any failure remediation without waiting for me to ask. Support is part of the arrangement: when an issue or change request lands in the ticket queue, I expect timely follow-through and clear communication until ...

I have a WooCom...updates automatically to Processing/Completed after successful payment - Handle async crypto confirmations properly - Implement a safe fallback solution (cron or custom logic) so paid orders never remain stuck Technical details: - WordPress + WooCommerce - Webhooks/IPN already configured for PayOp - CoinPal crypto payments show success on gateway but not in WooCommerce - Cloud hosting (Linux), firewall and caching may be involved Expected deliverables: - Permanent fix (not a temporary workaround) - Explanation of the root cause - Tested solution across mentioned gateways - Optional: custom plugin or clean code solution Only experienced WooCommerce + payment gateway developers should apply. Please mention similar work you have done with payment gateways or crypto...

I ran the GoAutoDial installer and bumped into software-installation issues midway—so the process stopped before everything finished. Since then Kamailio keeps throwing RTPengine-related errors and calls never reach the dialer. I can see specific error messages in the log, but I am not confident about their root cause; my guess is that...Connect over SSH, review the interrupted install, and identify every Kamailio / RTPengine error that is still active. • Fix the configuration—whether that means reopening the right UDP/TCP ports, rebuilding RTPengine, or completing the missing GoAutoDial components—so the dialer starts, registers, and can place a clean test call. • Document each change you make (file paths, commands, and any firewall rules) so I can m...

...this stage—just reliable collection, parsing, and visualization. Here’s what I need done: • Deploy or fine-tune Wazuh agents/managers to ingest all firewall events (the devices are already exporting Syslog today). • Configure Splunk inputs, indexes, and props/transforms so the data is correctly tagged, timestamped, and CIM-compliant. • Build a starter dashboard and a couple of saved searches that prove the data is landing and searchable. • Hand over concise documentation: major config snippets, any custom field extractions, and step-by-step instructions so I can replicate the setup in staging. Success to me is simple: I can reboot a firewall, see the logs pour into Wazuh, watch them appear in real time inside Splunk, and run a search...

I need a cloud-hosted Linux environment focused on Compute—think clean, reliable virtual...will deliver the smoothest experience (AWS EC2, Google Compute Engine, Azure VMs, or a comparable service). Here’s what I expect: • A base image (Ubuntu or similar) launched in the cloud and secured with SSH key authentication. • Clear, reusable steps—Terraform, Ansible playbooks, or a straightforward manual guide—for creating, scaling, and tearing down the instances. • Basic hardening: firewall rules, user management, swap configuration if needed, and a quick script for package updates. • A concise hand-off document showing how to log in, modify resources, and monitor instance health. If you can introduce a consultant forLinux VM setup wit...

I need Openclaw and openhands installed and fully configured so I can start using it for automation right away....template capable of generating builds for a simple “Hello World” web app (Node or Python is fine—whichever integrates fastest with Openclaw). • Short walkthrough (screen-share or recorded) showing how to trigger, monitor, and extend the workflow so I can clone or tweak it myself. I already have root access and a fresh server ready; just tell me beforehand if you need additional packages or firewall changes and I’ll open them up. Once everything is running, I’ll test by kicking off a build from the agent and confirming the output. If you’ve set up Moltbot or Clawdbot before, great, but the only must-have is proven experience wi...

...in-place build), all initial security hardening applied, and the machine prepared for day-to-day use. Here’s what I expect: • Pick or confirm the correct Ubuntu AMI, size the volume, and attach any additional EBS space if needed. • Configure SSH access with key-based login, disable root login, and set up at least one non-root sudo user. • Tighten security groups, enable UFW (or an equivalent firewall), and apply automatic security updates. • Install core utilities I’ll need for general server work—curl, git, htop, build-essential, etc.—and keep everything fully patched. • Give me clear CLI commands or simple documentation so I can repeat or tweak this setup myself later. Nothing exotic is required right now; a lean, secu...

...PostgreSQL) • Encryption at rest and in transit • Regular backups and restore verification • Restricted direct database access 8.3 Time Synchronization • Centralized time source (NTP) • Time-stamp consistency across PLC and software ________________________________________ 9. Cybersecurity Requirements • Secure PLC communication (certificates, encryption) • Network segmentation (IT/OT separation) • Firewall and access control rules • Event logging and intrusion detection • Compliance with IEC 62443 (recommended) ________________________________________ 10. Change Management and Maintenance • Formal change control process • Impact assessment for GMP relevance • Re-validation after significant changes • Periodic ...

...simple: secure a hosting plan, turn up the instance, and leave me with a fully functioning environment ready for site deployment. Here’s what I expect, in order: • Identify and recommend the most cost-effective, reputable hosting provider that offers Windows web servers (IIS preferred). • Complete the subscription and initial provisioning under my account details. • Apply basic hardening: firewall rules, SSL certificate provisioning (free LetsEncrypt is fine), and any must-have Windows updates. • Hand over clean access credentials along with a brief rundown of where everything lives and how to scale or back up. Time is critical—I’ve selected “ASAP” and I mean it. If you know your way around Azure, AWS Lightsail, or simila...

Vær venlig at Tilmelde dig eller Log ind for at se detaljer.

Tengo una cuenta de hosting en iPage que aloja varias páginas informativas. Algunas están desarrolladas en WordPress y otras en código per...Endurecimiento básico del servidor (permisos correctos, reglas .htaccess, bloqueo de ejecución de PHP en carpetas de carga, etc.). • Informe final con los hallazgos, las acciones realizadas y recomendaciones para prevenir nuevas intrusiones. No estoy seguro de las medidas de seguridad actuales, por lo que agradezco asesoría adicional sobre copias de seguridad, autenticación de dos factores y firewall a nivel hosting o aplicación. Busco a alguien con experiencia probada en desinfección de cuentas iPage (o cPanel similares), análisis de malware PHP y hardening de WordP...

...unauthorized content that I never published, clear signs that malicious code or back-door scripts were injected. I need the site cleaned, all rogue files removed, and the normal pages loading again without any redirects or warnings. Please locate and eliminate every trace of the hack, restore the correct versions of core, theme, and plugins, and then harden the installation so it stays secure—firewall rules, security plugin configuration, file-permission checks, and any other best practices you recommend. Acceptance will be based on: • No more unexpected redirects or injected content • A clean scan report from a reputable malware scanner (e.g. Wordfence, Sucuri, MalCare) • Up-to-date WordPress core, theme, and plugins with documented changes &bull...

...vulnerabilities, lock down SSH or other exposed services, and restore trusted system files. – Ensure the iPhone is clean, free of spy profiles or side-loaded configuration files, and fully updated. • Hardening & After-Care – Deliver a concise, plain-English report showing what was found, what was fixed, and how the compromise happened. – Provide a step-by-step hardening checklist (firewall rules, SELinux/AppArmor settings, 2FA recommendations, secure backup strategy, ongoing monitoring tools) to keep both devices safe. I can be available for live sessions via Zoom or any screen-sharing tool of your choice. If you have verifiable experience in incident response on Linux and iOS, plus a solid track record of helping individuals recover their...

My VPS hosts a little over twenty WordPress installations and the whole server is now riddled with spam links and other malware. Even though a firewall, ClamAV-based antivirus, and routine security monitoring are already in place, the intrusion has spread across every site. What I need first is a thorough, manual cleanup of each WordPress instance—core files, themes, plugins, and database tables—so the sites can return to normal operation without breaking functionality. I do have backups, but I suspect they carry the same infection, so please factor that in when you plan your approach. If, during your audit, you find that a clean-in-place strategy isn’t realistic, I’m open to spinning up a brand-new server and migrating only verified-clean data. Guidance ...

...(If these switches already exist, proceed to the next step.) 3. DC01 Virtual Machine Creation: o Create a Hyper V virtual machine named DC01. o Configure it with at least 2GB of RAM and connect it to the Private virtual switch. o Install Windows Server 2019, 2022, or 2025 Standard Edition (with Desktop Experience). 4. DC01 Initial Configuration: o Set the correct time zone and disable Windows Firewall for all profiles. o Change the computer name to DC01 and reboot. o Rename the Private network interface to "Private" and configure it with:  Static IP address:  Subnet mask:  DNS IP address: 5. Install Active Directory Domain Services (AD DS): o Install AD DS and configure the server as a domain controller for a new forest and domain named

...IP allowlisting with proper access controls • Zero-trust network access implementation • Deliverable: Secure access solution with documented procedures 6. Open Ports Security Audit • Task Type: Network security assessment and hardening • Requirement: Review and secure network port exposure • Process: • Comprehensive port scan and service audit • Close unnecessary open ports • Implement proper firewall rules and security group configurations • Document justified open ports with security rationale Required Qualifications Essential Experience: • 3+ years in web application security and DevOps/infrastructure security • Proven track record with penetration testing remediation projects • Strong understanding of OWASP security ...

...IP allowlisting with proper access controls • Zero-trust network access implementation • Deliverable: Secure access solution with documented procedures 6. Open Ports Security Audit • Task Type: Network security assessment and hardening • Requirement: Review and secure network port exposure • Process: • Comprehensive port scan and service audit • Close unnecessary open ports • Implement proper firewall rules and security group configurations • Document justified open ports with security rationale Required Qualifications Essential Experience: • 3+ years in web application security and DevOps/infrastructure security • Proven track record with penetration testing remediation projects • Strong understanding of OWASP security ...

...delivered: • A lightweight service (or set of REST endpoints) that talks to eSSL’s API, polls or receives push events in real time, and writes them to our database with the correct member or staff mapping. • Logic to push authorised user templates/credentials back to each device so door controllers can decide who enters which zone. • Clear setup documentation covering device configuration, firewall/port rules, and how to add future locations without touching the code. • Postman collection or similar so my in-house developers can test every call quickly. I’ll provide access to a staging instance of the SaaS, an eSSL test unit on the network, and our existing auth schema. Code quality, security, and concise comments are non-negotiable; onc...

We are looking for a highly experienced Cloudflare Server Deployment expert. Currently, we are facing SSL handshake issues, and we need someone who has deep hands-on expertise with Cloudflare, including: SSL/TLS handshake problems Cloudflare security & firewall rules Server deployment and optimization API and non-browser request handling ⚠️ Important: Only apply if you are truly experienced in Cloudflare and SSL-related issues. Beginners or non-relevant profiles should not apply.

...stage and a separate "Apply" stage with a Manual Approval Gate. • The "Principal" Detail: Use a Service Connection (Service Principal) to allow the pipeline to talk to Azure without using your personal password. 3. Hub-and-Spoke Networking via Code • The Task: Use Terraform to create a Hub VNet and a Spoke VNet with VNet Peering. • Key Skill: Deploying an Azure Firewall and a Route Table (UDR) to force traffic through the firewall. • The "Principal" Detail: Explain why "Forced Tunneling" is mandatory for HIPAA/Healthcare compliance to ensure all traffic is inspected. PART 2 4. Security Automation (Zero Trust) • The Task: Connect a VM or App Service to a Key Vault without using a password. • Ke...