redfox
@redfox@infosec.pub
Husband, Father, IT Pro, service.
I ask a lot of questions to try to understand how people think.
- Comment on Sophos XG Firewall Home Use 2 weeks ago:
Knowledge primarily, since I’m not running a business.
At this point, like they say in Chips, TLS inspection is standard…
If your enterprise isn’t doing TLS inspection on everything other than banks, medical, gov, they’re doing it wrong.
Some times people think the hard part is getting the CA trust setup, but I find it’s far more tedious to deal with certain sites and mobile apps especially that do certificate pinning.
- Comment on Sophos XG Firewall Home Use 3 weeks ago:
I like OPN also. I’ve always appreciated the stability of the BSDs.
My only personal complaint with OPN/PF was the TLS inspection.
I’ve read about adding the modules to *Sense, but I haven’t figured out the configuration pieces.
It just works with Sophos UTM and XG firewall, and the configuration was super easy.
You always use what you like though.
- Comment on Sophos XG Firewall Home Use 3 weeks ago:
This is true, the 6 GB RAM limit and four cores.
I run a pretty enterprise home lab, and I haven’t ever seen the devices hit the resource limit.
I have around 3k IPS rules and TLS inspection for most categories of sites except the normal stuff like streaming, banking, etc that you’d not want or need to inspect.
For anyone it might help, I use these as inline proxies rather than as the gateway at the moment. So they have more than just internet traffic going through them, they also have segments of my LANs getting evaluated. Performance has been great so far.
- Submitted 3 weeks ago to selfhosted@lemmy.world | 7 comments
- Comment on Grok Reveals Elon Musk Has ‘Tried Tweaking My Responses’ After AI Bot Repeatedly Labels Him a ‘Top Misinformation Spreader’ 4 weeks ago:
Isn’t that also describing his children?