Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
Layer 7 interogation
« previous
next »
Print
Pages: [
1
]
Author
Topic: Layer 7 interogation (Read 4391 times)
Atilio
Newbie
Posts: 1
Karma: 0
Layer 7 interogation
«
on:
April 10, 2017, 05:21:20 am »
Hi there,
I'm a new user of OPNSENSE. I think it's a great product. using it on a dedicate i5 with 3 Nics.
However I'm comparing it with PFSENSE and I don't see any Layer 7 capability. I want to block P2P as an example.
Can someone please advise if this is possible with any of the IDS modules or something I'm missing here in firewall policies?
Cheers,
At.
Logged
fabian
Hero Member
Posts: 2769
Karma: 200
OPNsense Contributor (Language, VPN, Proxy, etc.)
Re: Layer 7 interogation
«
Reply #1 on:
April 10, 2017, 09:08:58 am »
Under Services you will find the configuration for IDS and IPS. There you can configure suricata for use cases like this but it may not work as some protocols are heavily obfuscated to trick IPS systems and firewalls. The best thing you can do is using a strongly restricted ruleset.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
Layer 7 interogation