Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Intrusion Detection and Prevention
»
Suricata and Sensei
« previous
next »
Print
Pages: [
1
]
Author
Topic: Suricata and Sensei (Read 3148 times)
SuperMiguel
Newbie
Posts: 22
Karma: 0
Suricata and Sensei
«
on:
November 16, 2021, 02:48:53 pm »
Im currently only using Sensei on my LAN side, the only open port i have on WAN side is for WireGuard does it make sense to run Suricata on the WAN side?
Logged
FullyBorked
Sr. Member
Posts: 343
Karma: 24
Re: Suricata and Sensei
«
Reply #1 on:
November 16, 2021, 02:57:35 pm »
I run my firewall this way, I have a lot of hardware to spare so it doesn't affect my performance noticeably. I only have OpenVPN exposed currently, but I do host game servers in my DMZ from time to time, so it was a necessity for me. Remember any open port is an attack vector. So you'll need to decide if you have hardware that can handle the added load of Suricata and Sensei without affecting performance. If you can implement it without hurting performance, and have the time to set it up and tune it, I'd say go for it. Security is about layering solutions so it would always be a positive improvement on the security front.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Intrusion Detection and Prevention
»
Suricata and Sensei