Messages

Recently i tried to use sensi free but surprise to know the number of policies are non and only default one can be configured. Even if paid the number of policies are too few. For application layer blocking Snort AppID feature can be a choice as i am unaware if Suricata can do the same job as Snort APPID?

Thanks

H,

the current ntopng plugin has an older version of ntopng 3.4.0 while major version 4.2.0 is available how to update it in the opnsense.

Thanks
fasial

Hello Experts,
I was planning to use OpnSense as Hotspot manager and firewall, for several reasons (e.g Regulatory compliance) the user records are required to be maintained by the person/entity offering hotspot services. I have searched the forums and howtos but couldn't find the CDR/Usage records view and historical data management in the opnsense.

If the Netflow analyzer (which i found a unique proposition in OpnSense) can have user ID info in the table it can be great solution as complete user info will be made available if case of any malicious activity or law enforcement query. The cyber security risks are increasing and these features can help alot.

Thanks
Faisal.

Can you please share some more information how you have done routing and nat on your box? if DHCP is assigning IP to your clients it mean bridge is working.

Thanks a lot Fabian

Hi Ad,
I tried but could not get where to start the CSS are just code while i want to change either background of login screen or add text "DEMO Firewall Deployment" and warning text in the login page footer.

Thanks

Thanks Ad. Let me try to experiment on theme :)

Your requirement is somewhat confusing. If you want to bridge multiple NIC its better to use switch b/w OPNSense and clients for better management.

The documentation is required some improvements it seems. The scenarios where bridge filtering mode is applicable and what features will be available with bridge filtering mode should also be included.

Faisal and everybody thank you,

Faisal, just one question on your comparison, says OPNsense 6000 but product is free?

Sorry that was error it should be "$0" because for software you dont need to incur any cost. But if you are going to deploy in production like reselling to customers then hardware appliance is what we should pitch/sell. This will support the project.

Hi Ad,
Thanks for your response. This is the beauty of OSS indeed. Can you please guide me a little further on theme path and files For login screen only? Please note i dont have programming background i know networks/sysadmin only :) .

Cheers
F.

[Hello,]

Hello,
Is this possible to add a background image for login screen? Is this in accordance with the Licence terms?


Thanks
Faisal.

[Hi Franco,]

Hi Franco,
Thanks for a positive response. In larger deployments mostly BGP or OSPF (failover scenarios) are used.
The protocol implementation is already done in Quagga or BIRD. The integration with WebUI is needed apparently.

What I was thinking by adding routing protocols will add value or can bring complication (in terms of project stability and reliability?) to the existing stable UTM engine.

Cheers
Faisal.

Hello,
I have seen the HOWTO on Quagga to support routing protocols highly encouraging. The routing protocol support is what broader OPNsense the deployment in complex network scenarios.

Is the web based management for Quagga or BIRD is in the roadmap of future releases?

Thanks
F.

Cubieboard is an opensource hardware and it supports FreeBSD, OpenBSD, Android. This can be a best choice for embedded deployment.

Thanks
Faisal.

[Cheers,]

Zeitkind is correct, the cost of shinny expensive products are actually the cost of avoiding the headache you may face in a production environment. there are two cost which are involved 1) hardware cost 2) reoccurring cost licenses/upgrades bla bla.

Its up to your management to decide, all you can do is to provide them cost comparison, feature matrix, risk factors etc clearly. You can also do one step further by deploying OPNsense for limited users and prepare report on Performance, functionality according to your company requirements, stability, end user feedback.

In some paid products you can have centralized management capabilities like if you have several branch offices.

I have attached some basic comparison for your reference.

Cheers,
Faisal