1
Intrusion Detection and Prevention / Re: IDS or IPS for School Firewall [SOLVED]
« on: May 14, 2018, 03:06:08 pm »
Thanks to all for the advice, it was helpful.
Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
2
Intrusion Detection and Prevention / Re: IDS or IPS for School Firewall
« on: April 29, 2018, 09:01:13 pm »
Thanks. That was what I was thinking. Just wanted to know if anybody had any of the catergories that was a must have no matter what was behind the firewall. I am going to go through each one and see which ones will work best for me. I don't think that most will apply as I will only have desktop users behind the firewall and only one LAMP server that will be exposed to the web. I should be able to have a pretty streamlined IPS system.
Again any advice is helpful though.
Again any advice is helpful though.
3
Intrusion Detection and Prevention / IDS or IPS for School Firewall [SOLVED]
« on: April 25, 2018, 11:18:17 pm »
Hi,
Am new to opnsense (coming from other sense), and so far I lie it, but I need a little guidance or IDS versus IPS, I am having trouble understating which would be better for my setup. The setup is as follows:
Private school with around 180 students and 27 staff. Internet is 500Mbs up and down (Centurylink FiberPlus). Each student has a tablet or chromebook and teachers have either a desktop or laptop. There is one server (Windows 2016) with a CentOS 7 vm that runs OTRS helpdesk which will be internet facing. Based on this, do I need IDS/IPS and if so, which rulesets make the most sense to start off with?
The firewall hardware is a Partaker 1u i5-3317u with 6 Ethernet, 4GB Ram and 128 SSD.
I have used snort on the other sense, but I just enabled at the ETs, which was probably not smart, but it seems that what most suggested. Any input/advise would be very helpful.
Thanks in advance
Am new to opnsense (coming from other sense), and so far I lie it, but I need a little guidance or IDS versus IPS, I am having trouble understating which would be better for my setup. The setup is as follows:
Private school with around 180 students and 27 staff. Internet is 500Mbs up and down (Centurylink FiberPlus). Each student has a tablet or chromebook and teachers have either a desktop or laptop. There is one server (Windows 2016) with a CentOS 7 vm that runs OTRS helpdesk which will be internet facing. Based on this, do I need IDS/IPS and if so, which rulesets make the most sense to start off with?
The firewall hardware is a Partaker 1u i5-3317u with 6 Ethernet, 4GB Ram and 128 SSD.
I have used snort on the other sense, but I just enabled at the ETs, which was probably not smart, but it seems that what most suggested. Any input/advise would be very helpful.
Thanks in advance
Pages: [1]