OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of klaasth »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - klaasth

Pages: 1 [2]
16
Documentation and Translation / Re: Confusing Documentation for Newbies
« on: March 07, 2019, 09:20:44 pm »
There is a Spanish udemy course on OPNSense here: https://www.udemy.com/opnsense-firewall-fundamentals/
Juliocbc (https://forum.opnsense.org/index.php?action=profile;u=18970) is currently making a Udemy course in Portegese.

If someone would make a good course in English, I would definitely buy it. OPNSense I find it a better product then Pfsense, but many IT'ers I know still stick with Pfsense software since it has more manuals, youtube video's, official trainings,...

17
Tutorials and FAQs / Re: OPNsense Manual
« on: March 07, 2019, 09:15:39 pm »
Hi Julio

Thanks for your reply. No chance you will make it in English?  :) Every year I go on holiday to Portugal, but my knowledge of Portegese is still limited to: "Bom Dia" and "Obrigado".  8) If it's ready definitely post it in this thread https://forum.opnsense.org/index.php?topic=9382.0, people are looking for good OpnSense documentation.

18
Intrusion Detection and Prevention / Re: Intrusion Detection and Prevention usefulness
« on: March 05, 2019, 04:23:50 pm »
Comments like: "Can we please stop asuming pfsense actually does help in most modern environments? How does pfsense with suricata protect my webserver or mailserver or whatever if the connections are using SSL... right it doesn't .. This wil make you feel more secure while it doens't really do alot. yes it helps for some things but we all can agree that atleast 30% of your daily traffic is SSL? I work for a relatively small comapny with around 200 users and we average 5300GB of traffic per month with 3700GB of that traffic being SSL(we also host our own webapps and apis etc..)."

19
Intrusion Detection and Prevention / Intrusion Detection and Prevention usefulness
« on: March 05, 2019, 03:59:11 pm »
Dear OPNsensers

I am using  OPNsense firewalls on different school campuses scince this schoolyear. We are using it for VPN access to compuses, conecting the compuses trough IPsec tunnels, are using traffic shapping and as a statefull firewall.

Now I am looking into IDS/IPS on OPNSense (Suricata). I watched different articles and youtube videos on IDS. Is IDS/IPS still usefull today in a world where most websites are HTTPS, in a world where users are using VPN software on their devices like Nordvpn to anonymize network traffic?

I would like to use IDS/IPS for detecting and preventing students or guests on our network to use automated network hacking tools and blocking out torrent downloads.

Is there someone who can explain the usefulness of IDS/IPS in a school network?

Many regards
IDS noob Klaas

20
General Discussion / Re: Howto disable brute force login
« on: March 05, 2019, 08:47:12 am »
Thanks Bagoline for the info.

So my opnsense firewall is safe from bruteforce attacks when it is only possible to logon to the webinterface from:
  • on a specific VLAN which is not accessible for normal users
  • or when connected to VPN

Kind regards


21
General Discussion / Howto disable brute force login
« on: March 04, 2019, 02:49:26 pm »
Dear

Opnsense uses default sshlockout_pf to lock out brute force from SSH. I woudl like to block brute force attempts to HTTPS webpage of opensense. I tried 30 times in a row to login with a false password voor root and the system still accepts to logon.

My question: Is there a way of maximum login attempts op 5 on HTTPS?

Kind regards

22
General Discussion / OpenDNS setup
« on: February 22, 2019, 02:15:03 pm »
Dear

I am looking for the correct way to setup DNS in the Opnsense. Is there a way to prevent clients form changing their DNS settings to get around Open DNS. Is there a rule/a way to forward all website DNS requests to Open DNS?

A little network scheme in attacchment.

Kind regards and thanks for the advice and help.
Klaas

23
Tutorials and FAQs / Re: OPNsense Manual
« on: February 22, 2019, 02:10:47 pm »
Thanks franco for the tip! Unfortunately my knowledge of German is non existing.   :)

24
Tutorials and FAQs / OPNsense Manual
« on: February 18, 2019, 02:33:11 pm »
Dear

The OPNsense documentation is to limited for me.
Udemy has a good basic course, the only downside is that it is in Spanish. (https://www.udemy.com/opnsense-firewall-fundamentals/)

Does anyone knows a good resource?


Kind regards
Klaas

Pages: 1 [2]
OPNsense is an OSS project © Deciso B.V. 2015 - 2019 All rights reserved
  • SMF 2.0.15 | SMF © 2017, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2