20250429 push notes
This commit is contained in:
Petar Cubela
40
projects/OPNsense/Schulungen/20250305-initial_ideas.md
Normal file
40
projects/OPNsense/Schulungen/20250305-initial_ideas.md
Normal file
@@ -0,0 +1,40 @@
|
||||
|
||||
## Intro
|
||||
|
||||
Ziel: Gebe Kollegen und Kolleginnen einen Ueberblich ueber die wichtigsten Funktionender OPNsense, sodass sie effizient und selbststaendig damit arbeiten koennen.
|
||||
|
||||
## Notes
|
||||
|
||||
- Template/Anleitung fuer Firewall Regeln in IT-Glue
|
||||
- Wichigsten genutzten Features der Sophos in OPNsense praesentieren
|
||||
|
||||
## Erste Schulung
|
||||
|
||||
### Ort
|
||||
|
||||
Hybrid: Teams + Meetingraum
|
||||
|
||||
### Zeit
|
||||
|
||||
Vorraussichtlich der 14.03.2025 um 10:00.
|
||||
|
||||
### Themen
|
||||
|
||||
#### Allgemein/System
|
||||
|
||||
- Lobby/Dashboard - Grundlagen, Customizierbar,
|
||||
- System/Firmware - Einspielen, Richitges Mirror und Caveat, Updates, Plugins und Packages
|
||||
- Gehe allgemein und grob die Einstellungen durch und Ihre Positionen
|
||||
-
|
||||
|
||||
#### Firewall
|
||||
|
||||
- Aliass - sehr wichtig und praktisch - sollte durch OPNcentral gepushed werden
|
||||
- NAT
|
||||
- Rules
|
||||
- Unterschiede zu Sophos - kein Masquerading erforderlich (macht opnsense automatisch?)
|
||||
|
||||
#### Interfaces
|
||||
|
||||
|
||||
### VPN
|
||||
46
projects/OPNsense/Schulungen/20250319-pre-meeting-prep.md
Normal file
46
projects/OPNsense/Schulungen/20250319-pre-meeting-prep.md
Normal file
@@ -0,0 +1,46 @@
|
||||
## Notes
|
||||
|
||||
- Wichigsten genutzten Features der Sophos in OPNsense praesentieren
|
||||
|
||||
## Topics
|
||||
|
||||
- Erster EInblick in das Dashboard der OPNsense
|
||||
- Ueberblick ueber die Anreihung der Funktionen der Firewall
|
||||
- Unterschiede zur Sophos Firewall
|
||||
- Verwaltung durch unsere OPNcentral Instanz
|
||||
- Firmware, Lizenzen, Plugins und Packages in OPNsense
|
||||
- Backups
|
||||
- Firewall - Aliase, NAT und Regeln
|
||||
- EURE FRAGEN
|
||||
- (Optional) Interfaces/Schnittstellen
|
||||
- (Optional) (Open)VPN
|
||||
|
||||
## Standard Features (OPNsense vs. Sophos)
|
||||
|
||||
- DNAT corresponds to Port Forward (NAT)
|
||||
- SNAT corresponds to Outbound (NAT)
|
||||
|
||||
### OPNsense
|
||||
|
||||
#### Nativ
|
||||
- Base Setup (Routing, dhcp, dns, firewall regeln, vlans, authentizierungs server: ldap, totp, local, radius)
|
||||
- VPN: IPsec, OpenVPN, Wireguard
|
||||
- IDS/IPS Schutz via Suricata
|
||||
- backup: lokal, central instanz, google drive. Extra: nextcloud, git, ...
|
||||
|
||||
#### Extra Features
|
||||
|
||||
- Web Proxy (Caching Proxy, Web Filter, Transparent Proxy, SSl inspection, managed TLS exclusion)
|
||||
- Antivirus via (clamav + c-icap)
|
||||
|
||||
### Sophos
|
||||
|
||||
- Basis (network, dhcp, dns, firewall regeln, vlans, authentizierungs server: ldap, ad, radius, azure sso, etc.)
|
||||
- VPN: IPsec, SSL VPN (OpenVPN), L2TP, PPTP
|
||||
- IDS/IPS
|
||||
- Web Protection
|
||||
- Application Protection
|
||||
- Email Protection
|
||||
- Web Server Protection
|
||||
- Active Threat Response
|
||||
- Zero-day Protection
|
||||
Reference in New Issue
Block a user