mastouille.fr est l'un des nombreux serveurs Mastodon indépendants que vous pouvez utiliser pour participer au fédiverse.
Mastouille est une instance Mastodon durable, ouverte, et hébergée en France.

Administré par :

Statistiques du serveur :

585
comptes actifs

#securityonion

0 message0 participant0 message aujourd’hui

using only one or two system boards, as small as possible, how would you make a single device that housed both:

1. a #firewall, like #OPNsense or #pfSense
2. a full IDPS, like #SecurityOnion

i want to build a single housing that holds these two systems. idk if i can combine them with one system/ OS? how do you get full IDPS of a WAN port cheaply without a switch for port mirroring?

this would just be for home use, 1Gbps

I just published "Security Onion on Proxmox", a guide to running the opensource security monitoring software in a VM.

It's trickier than you'd think to get traffic to pass all the way from a switch SPAN port to the VM. You have to create a virtual "OVS Bridge" in the Proxmox GUI, then a "mirror" object from the CLI. It winds up looking like:

[switch SPAN port] > [physical NIC] > [virtual OVS Bridge] > [mirror object on VM]

#InfoSec #Linux #Proxmox #SecurityOnion

blog.puddle.town/proxmox-span/

puddle.townSecurity Onion on ProxmoxI'm trying out Proxmox VE on the spare workstation in the garage. The idea is to use this as the bottom-layer hypervisor, and then to install VMs on top as n...