## Base Info

- Deadline: 03.05
- Anzahl User: 15

## Angebot Liste

 - Arbeitstunden ausrechnen
 - Angebot fuer Lizenzen raussuchen ([Business License](https://shop.opnsense.com/product/opnsense-business-edition/), [Business Support Subscription](https://shop.opnsense.com/product/opnsense-business-support-subscription/))
 - Keine Hardware noetig

## Bestehende Hardware

- System: Linux, Memory: 7888 MB, 8 processors
- No PPPoe (done by Fritz)

## Funktionen

- Basis Setup (routing, Generische Einstellung, Firewall Regeln, Authentizierung via AD,..)
- VLANs als Grundlage (MGMT, SRV, CLIENT, WLAN, WLAN-Guest)
- VPN (OpenVPN)
- Free SSL certs (via ACME)
- Web Proxy (Caching Proxy, Web Filter, Transparent Proxy, SSL Inspection, https de-/encryption) (!NOTE! OPNsense CA needs to be trusted by every client. Distribute via Filewave)
- OPNsense Antivirus Loesung (Clamav + C-Icap)
- IDS/IPS
- WAF
- OPNcentral

## Zertifikate

- SSL for https (Let's Encrypt oder gekaufte Wildcard)
- Self Signed for Web Proxy (SSL Inspection)
- Self Signed for OpenVPN