You can use invalid IP on wan interface. This way is no way to avoid the
firewall.
On Sep 29, 2014 4:37 PM, "Roberto Carna" <robertocarn...@gmail.com> wrote:

> Mainly bridge to hide the IPS server from Internet, and also if I
> don't use the bridge mode I have to put a public IP in the WAN
> interface connected to the router and I have not much more available
> public IP's.
>
> 2014-09-29 16:31 GMT-03:00 Espen Johansen <pfse...@gmail.com>:
> > Why bridge? Do you want to hide evrything? Its not that hard to
> fingerprint
> > a pfS bridge. If you have practical reasons, sure go ahead.
> >
> > 29. sep. 2014 21:28 skrev "Roberto Carna" <robertocarn...@gmail.com>
> > følgende:
> >
> >> Ok, and do you recommend to setup the Pfsense WAN and LAN interfaces
> >> in bridge mode with firewall rules enabled ???
> >>
> >> Really thanks,
> >>
> >> Roberto
> >>
> >>
> >>
> >> 2014-09-29 16:15 GMT-03:00 Espen Johansen <pfse...@gmail.com>:
> >> > Depends on what you want. A splitt design is normaly better and safer
> >> > then a
> >> > all in one box. If you want suricata +snorby and barnyard its not
> >> > recommended to run it all on pfsense. There are many deps. that will
> >> > cause a
> >> > security nightmare and you will probably run out of hw resources as
> >> > well.
> >> >
> >> > OK, thanks, the last please:
> >> >
> >> > Do you recommend to install an IPS in a Virtual Machine like Vmware
> >> > ??? Because we have VMweare for all our servers.
> >> >
> >> > Regards,
> >> >
> >> > 2014-09-29 15:39 GMT-03:00 Anastasios Stefos
> >> > <anastasios.ste...@gmail.com>:
> >> >> Roberto
> >> >>
> >> >> Here is a good place to start regarding Suricata or Snort.
> >> >>
> >> >>
> >> >>
> >> >>
> http://www.linux.org/threads/suricata-the-snort-replacer-part-1-intro-install.4346/
> >> >>
> >> >>
> >> >>
> >> >> ---
> >> >> Anastasios Stefos
> >> >> ´αίέν άριστεύειν
> >> >>
> >> >> On Mon, Sep 29, 2014 at 2:34 PM, Roberto Carna
> >> >> <robertocarn...@gmail.com>
> >> >> wrote:
> >> >>>
> >> >>> Dear Ivo and people, just three short questions:
> >> >>>
> >> >>> 1) Using Suricata, can I enable the IPS mode as I can using Snort
> ???
> >> >>>
> >> >>> 2) In IPS mode, do I have to have 3 interfaces in my server ???
> >> >>>
> >> >>> 3) The only way to view the IPS blocking events is from into Pfsense
> >> >>> or can I use Snorby ???
> >> >>>
> >> >>> Thanks again,
> >> >>>
> >> >>> Roberto
> >> >>>
> >> >>> Thanks again,
> >> >>>
> >> >>> Roberto
> >> >>>
> >> >>>
> >> >>>
> >> >>> 2014-09-29 14:37 GMT-03:00 Ivo Tonev <i...@tonev.pro.br>:
> >> >>> > Use suricata
> >> >>> >
> >> >>> > On Sep 29, 2014 2:27 PM, "Roberto Carna" <
> robertocarn...@gmail.com>
> >> >>> > wrote:
> >> >>> >>
> >> >>> >> Dear, I need to know if it's possible to setup Pfsense with Snort
> >> >>> >> to
> >> >>> >> get an IPS (Intrusion Prevention System), and in this case what
> is
> >> >>> >> the
> >> >>> >> graphical interface used to view events and dropped traffic.
> >> >>> >>
> >> >>> >> Thanks a lot,
> >> >>> >>
> >> >>> >> Roberto
> >> >>> >> _______________________________________________
> >> >>> >> List mailing list
> >> >>> >> List@lists.pfsense.org
> >> >>> >> https://lists.pfsense.org/mailman/listinfo/list
> >> >>> >
> >> >>> >
> >> >>> > _______________________________________________
> >> >>> > List mailing list
> >> >>> > List@lists.pfsense.org
> >> >>> > https://lists.pfsense.org/mailman/listinfo/list
> >> >>> _______________________________________________
> >> >>> List mailing list
> >> >>> List@lists.pfsense.org
> >> >>> https://lists.pfsense.org/mailman/listinfo/list
> >> >>
> >> >>
> >> >>
> >> >> _______________________________________________
> >> >> List mailing list
> >> >> List@lists.pfsense.org
> >> >> https://lists.pfsense.org/mailman/listinfo/list
> >> > _______________________________________________
> >> > List mailing list
> >> > List@lists.pfsense.org
> >> > https://lists.pfsense.org/mailman/listinfo/list
> >> >
> >> > _______________________________________________
> >> > List mailing list
> >> > List@lists.pfsense.org
> >> > https://lists.pfsense.org/mailman/listinfo/list
> >> _______________________________________________
> >> List mailing list
> >> List@lists.pfsense.org
> >> https://lists.pfsense.org/mailman/listinfo/list
> >
> >
> > _______________________________________________
> > List mailing list
> > List@lists.pfsense.org
> > https://lists.pfsense.org/mailman/listinfo/list
> _______________________________________________
> List mailing list
> List@lists.pfsense.org
> https://lists.pfsense.org/mailman/listinfo/list
_______________________________________________
List mailing list
List@lists.pfsense.org
https://lists.pfsense.org/mailman/listinfo/list

Reply via email to