47 lines
1.3 KiB
Markdown
47 lines
1.3 KiB
Markdown
## Notes
|
|
|
|
- Wichigsten genutzten Features der Sophos in OPNsense praesentieren
|
|
|
|
## Topics
|
|
|
|
- Erster EInblick in das Dashboard der OPNsense
|
|
- Ueberblick ueber die Anreihung der Funktionen der Firewall
|
|
- Unterschiede zur Sophos Firewall
|
|
- Verwaltung durch unsere OPNcentral Instanz
|
|
- Firmware, Lizenzen, Plugins und Packages in OPNsense
|
|
- Backups
|
|
- Firewall - Aliase, NAT und Regeln
|
|
- EURE FRAGEN
|
|
- (Optional) Interfaces/Schnittstellen
|
|
- (Optional) (Open)VPN
|
|
|
|
## Standard Features (OPNsense vs. Sophos)
|
|
|
|
- DNAT corresponds to Port Forward (NAT)
|
|
- SNAT corresponds to Outbound (NAT)
|
|
|
|
### OPNsense
|
|
|
|
#### Nativ
|
|
- Base Setup (Routing, dhcp, dns, firewall regeln, vlans, authentizierungs server: ldap, totp, local, radius)
|
|
- VPN: IPsec, OpenVPN, Wireguard
|
|
- IDS/IPS Schutz via Suricata
|
|
- backup: lokal, central instanz, google drive. Extra: nextcloud, git, ...
|
|
|
|
#### Extra Features
|
|
|
|
- Web Proxy (Caching Proxy, Web Filter, Transparent Proxy, SSl inspection, managed TLS exclusion)
|
|
- Antivirus via (clamav + c-icap)
|
|
|
|
### Sophos
|
|
|
|
- Basis (network, dhcp, dns, firewall regeln, vlans, authentizierungs server: ldap, ad, radius, azure sso, etc.)
|
|
- VPN: IPsec, SSL VPN (OpenVPN), L2TP, PPTP
|
|
- IDS/IPS
|
|
- Web Protection
|
|
- Application Protection
|
|
- Email Protection
|
|
- Web Server Protection
|
|
- Active Threat Response
|
|
- Zero-day Protection
|