Comment on Conntrack question
irmadlad@lemmy.world 4 weeks ago
There’s an OPNsense between the router and the nginx vm.
Have you tried integrating opensense with Suricata or perhaps Snort as an IDS/IPS? Then use ntopng for observables and traffic analysis. Currently, there are several IP that have been hounding the pFsense firewall. Mostly from China, Romania, and Singapore, but they just get blocked by Suricata.
I have no experience with conntrack tho.
tofu@lemmy.nocturnal.garden 4 weeks ago
No IDS/IPS yet, I want to try it at some point, but I’m not sure how well my old hardware will handle it (PC engine APU2C4).
irmadlad@lemmy.world 4 weeks ago
Now there’s a name I haven’t heard in a while.
tofu@lemmy.nocturnal.garden 4 weeks ago
Been looking for low power devices and liked the concept. Pity they’re discontinued
irmadlad@lemmy.world 4 weeks ago
No shade bro. I just genuinely haven’t heard of PC Engine for quite some time. Didn’t do too well in North America as I remember, but had a solid following in Japan. For it’s time, it had advantages over other rivals, pretty cutting edge stuff.