Comment on Conntrack question
irmadlad@lemmy.world 3 days ago
There’s an OPNsense between the router and the nginx vm.
Have you tried integrating opensense with Suricata or perhaps Snort as an IDS/IPS? Then use ntopng for observables and traffic analysis. Currently, there are several IP that have been hounding the pFsense firewall. Mostly from China, Romania, and Singapore, but they just get blocked by Suricata.
I have no experience with conntrack tho.
tofu@lemmy.nocturnal.garden 3 days ago
No IDS/IPS yet, I want to try it at some point, but I’m not sure how well my old hardware will handle it (PC engine APU2C4).
irmadlad@lemmy.world 3 days ago
Now there’s a name I haven’t heard in a while.
tofu@lemmy.nocturnal.garden 3 days ago
Been looking for low power devices and liked the concept. Pity they’re discontinued
irmadlad@lemmy.world 2 days ago
No shade bro. I just genuinely haven’t heard of PC Engine for quite some time. Didn’t do too well in North America as I remember, but had a solid following in Japan. For it’s time, it had advantages over other rivals, pretty cutting edge stuff.