OPNsense Forum
English Forums => Zenarmor (Sensei) => Topic started by: ender526 on April 24, 2022, 07:43:23 pm
-
Hello,
This may be a silly question related to my unfamiliarity with how cloud threat intelligence works in zenarmor, but I can’t find clarification in the docs. It appears like most of the functionality breaks when you turn off cloud threat intelligence. How does the intelligence feature work? Does it send every website address I visit to the cloud (even anonymized), to be checked? Or does it just use the cloud to update the local signature data? I am used to other IDS’s using local rule sets that can be pulled down/updated regularly. I prefer this method as all the analysis is happening locally, and no private data is being send to the cloud.
So I guess my question is… is it sending my data to the cloud to perform this action, and if so, is there a local option, either existing or on a roadmap?
Thanks!
-
Hi,
Zenarmor has the top 100.000 websites locally. It queries the domains / IPs except them and caches it for 1 hour. And all data is queried anonymously. Nevers sends or stores your private data on the cloud site.
-
Hi,
Zenarmor has the top 100.000 websites locally. It queries the domains / IPs except them and caches it for 1 hour. And all data is queried anonymously. Nevers sends or stores your private data on the cloud site.
Awesome, thank you for the information!
-
Thanks. Would be great if there was something in the docs or website about this. It’s also possible there is, and I missed it.