46
24.1 Legacy Series / IDS/IPS
« on: May 08, 2024, 02:52:47 pm »
Hello certified noobie here. What rules do yall use on opnsense ids ips? I also use nat so should i have lan selected as an interface except for wan too?
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Which services are needes besides the simple routing? (4-)8 GB is OK for normal use, more is better for Suricata etc...
Guys, just a little reminder that this is a sticky topic about an aarch64 firmware repo... Thank you.
Yepp, fan-free? Go ahead! I built my first sense with an old notebook for testing, some old workstation, then fan-free stuff. Now mostly Optiplex or alike... :-)
Do your maths. What do you need for the raspi? Plus a managable switch. Plus the time you loose every now and then to get the stuff updated, plus, plus plus.
It's not worth it. Try it out. Write us here how it worked.... ;-)
For traveling I use something like this
https://www.amazon.de/-/en/dp/B0CCJ8K76Z/ref=twister_B0CCTJLVHY?_encoding=UTF8&psc=1
or e.g.
https://www.amazon.de/-/en/dp/B0BP9QPMYW/ref=twister_B0B5DQLSQS?_encoding=UTF8&psc=1
Not exactly the same, but kind of.
For traveling I use something like this
https://www.amazon.de/-/en/dp/B0CCJ8K76Z/ref=twister_B0CCTJLVHY?_encoding=UTF8&psc=1
or e.g.
https://www.amazon.de/-/en/dp/B0BP9QPMYW/ref=twister_B0B5DQLSQS?_encoding=UTF8&psc=1
Not exactly the same, but kind of.
Last time I tried was with raspi 3 some years ago. No arm builds available, lots of tinkering necessary, updates a minor nightmare.
If you want something stable and straight forward, go an buy a cheap old Dell Optiplex SFF (important! only in SFF you can have PCIe cards with further NICs) and have fun. Or for mobility: Have a look at some small device from China (Amazon) or what other recommend for fan-free use.
If it's just for fun: go ahead with some orangepi or alike, there are devices with more than 1 NIC. Router on a stick only if you really like the mess... :-D
No heat? Sure?
It cannot. All packet forwarding is done by the main CPU.Wdym?
The repository should work with all aarch64 systems, but it only provides packages and sets. Additionally, I do publish images on GitHub, but only for VMs. So unless you're planning to virtualize, you'll need to get a hardware specific image for initial installation from somewhere else (or build your own using the provided sets). Then you can configure this repository for updates and plugins.
So can I run Ubuntu on the 5 and then use a vm to run olnsense ?
Question is: Why would one do that? Raspi 5 has one Interface. Router on a stick? LAN only via wifi?
Calculate the raspi 5, power supply, enclosure, fan etc. and you can buy a cheap x64 (refurbished SFF + PCIe networking card), no trouble with virtual machine. If the argument is "small, for travel", there are alternatives (little more expensive though), too.
The repository should work with all aarch64 systems, but it only provides packages and sets. Additionally, I do publish images on GitHub, but only for VMs. So unless you're planning to virtualize, you'll need to get a hardware specific image for initial installation from somewhere else (or build your own using the provided sets). Then you can configure this repository for updates and plugins.