Hi Ho @world,
I'm running a Juniper Firewall and a (non-Juniper) Switch, using a subscription based IDP on the Juniper. Since the license is running out, I'm thinking about not renewing the service and rather put an OPNsense appliciance between the switch and the router.
Though, before spending some money for some hardware box, the setup I've in mind would be something like:
Router <- -> OPNsense <- -> Switch
Where OPNsense runs in bridge mode with e.g. Suricata only. So I move the IDP service from the router one step back into the network.
So far, bridge mode is documented, but does OPNsense support aggregated interfaces + bridge + e.g. Suricata ? So I've 2 links into each direction, right now it's 2 SFP links between switch and router.
If it's some "playing" with the CLI, no problem as I'm no newbie with FreeBSD.