Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Intrusion Detection and Prevention
»
2questions IDS/IPS
« previous
next »
Print
Pages: [
1
]
Author
Topic: 2questions IDS/IPS (Read 4142 times)
jodumont
Newbie
Posts: 8
Karma: 0
2questions IDS/IPS
«
on:
September 27, 2018, 03:32:21 pm »
Hi everyone;
1.
My public IP, in fact all ip of my ISP are blacklisted by spamhaus.
if I active the IPS mode on my WAN and active the DROP list what will happen ?
2.
If the IPS mode is activated on my LAN interface and I forward a ports; do these ports still under the IPS protection or the traffic will be forward before ?
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: 2questions IDS/IPS
«
Reply #1 on:
September 27, 2018, 04:01:55 pm »
You should activate EDROP via Alias and not IPS, way more performant. Then you can add a whitelist in fron of the rule.
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
jodumont
Newbie
Posts: 8
Karma: 0
Re: 2questions IDS/IPS
«
Reply #2 on:
September 27, 2018, 08:45:51 pm »
thank for sharing your tough it make me discover a new way of doing it
https://wiki.opnsense.org/manual/how-tos/edrop.html
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Intrusion Detection and Prevention
»
2questions IDS/IPS