The office just sent me to Cisco IPS training. Cisco ASA's have
(linux) hardware modules that you can add for IPS -- basically the
same thing that Snort does, but for additional cost, licensing, and
maintenance on top of the equipment you already bought. Snort
signature updates are cheap compared
I use Asterisk behind pfSense, but do not have advanced outbound NAT
enabled. I have about firewall rules to permit 5060 and 1-2
from my SIP trunk provider, and then do port forwarding on those ports
to the Asterisk box. I don't permit any other SIP connections unless
it's through a
Has anyone bridged interfaces in embedded pfSense? I was wondering if
support for bridging is compiled in the kernel.
I am running an Alix 2d3 board, and I can't run snort locally. Being
too cheap and lazy to purchase or build a tap, I'd like to bridge the
external interface to the unused
I ran the openssl speed tests on my Alix.2d3 w/hardware acceleration
and on my Atom box for fun. Alix is running pfSense embedded, Atom is
running Asterisk on CentOS 2.6.18-92.1.6.el5. These are not network
tests but rather speed of encryption tests.
Atom Board:
The 'numbers' are in 1000s of
I'm running pfSense on an Alix 2d3. The install was pretty flawless.
No wireless, but I did get the Soekris VPN 1411 miniPCI card for
encryption acceleration. It was auto-recognized.
On the other hand, my Asterisk box (pbxinaflash/freepbx) is an Intel
Atom CPU/Board bundle. I needed to install a