## Notes

- Wichigsten genutzten Features der Sophos in OPNsense praesentieren

## Topics

- Erster EInblick in das Dashboard der OPNsense
- Ueberblick ueber die Anreihung der Funktionen der Firewall
- Unterschiede zur Sophos Firewall
- Verwaltung durch unsere OPNcentral Instanz 
- Firmware, Lizenzen, Plugins und Packages in OPNsense
- Backups
- Firewall - Aliase, NAT und Regeln
- EURE FRAGEN
- (Optional) Interfaces/Schnittstellen
- (Optional) (Open)VPN 

## Standard Features (OPNsense vs. Sophos)

- DNAT corresponds to Port Forward (NAT)
- SNAT corresponds to Outbound (NAT)

### OPNsense

#### Nativ
- Base Setup (Routing, dhcp, dns, firewall regeln, vlans, authentizierungs server: ldap, totp, local, radius)
- VPN: IPsec, OpenVPN, Wireguard
- IDS/IPS Schutz via Suricata
- backup: lokal, central instanz, google drive. Extra: nextcloud, git, ...

#### Extra Features

- Web Proxy (Caching Proxy, Web Filter, Transparent Proxy, SSl inspection, managed TLS exclusion)
- Antivirus via (clamav + c-icap)

### Sophos

- Basis (network, dhcp, dns, firewall regeln, vlans, authentizierungs server: ldap, ad, radius, azure sso, etc.)
- VPN: IPsec, SSL VPN (OpenVPN), L2TP, PPTP
- IDS/IPS
- Web Protection
- Application Protection
- Email Protection
- Web Server Protection
- Active Threat Response
- Zero-day Protection