What do you run; Opnsense, pfsense, Smoothwall, maybe a WAF like wazuh?
Today was update/audit firewall day. I’m running a standalone instance of pFsense on a Protectli Vault FW4B - 4 Port - Intel Quad Core - 8GB RAM - 120GB mSATA SSD with unbound, pfBlockerNG, Suricata, ntopng, and heavily filtered. I did bump the swap to 8 GB as I’ve previously noticed a few ‘out of swap’ errors under load.
Before I signed off, I ran it through a couple porn sites to see if my adblocking strategy was working. Not one intrusive ad. Sweet!
Show me what you got.
Pfsense with pfblocker in a VM. Works wonders. Pipe fail2ban to pfblocker for extra goodness.
another advantage of running VMs is the flexibility of changing stuf whenever you decide to try something new. like shuffling new hardware around but you don’t need to get up from the couch, or buy new hardware.
Or swapping networks around!
The thought has crossed my mind on several occasions. If you don’t mind me asking and take up your time, how do you integrate f2b with pFsense? I’m running f2b on several VPS I have, and it just downright works. So, my thought was, what would f2b do to enhance pFsense’s capabilities, and how would you make that all homogenate?
Been a while since I set it up but as I recall it’s a 5-minute from job that runs a command that just dumps the pf block list fail2ban manages into a text file in my public_html directory. Then I just add a feed in pfblocker with the address of the text file and it loads from that feed.
I’ll see if I can dig up some info. I started searching, then got busy. So I put the few I had time to find in a selfhosted Readeck instance. I use it for ‘read it later’ kind of bookmarks.
Thanks for the share.