Presentation is loading. Please wait.

Presentation is loading. Please wait.

p f S e n s e WSULUG Matt Bailey

Published by潭若 田 Modified over 7 years ago

Similar presentations

Presentation on theme: "p f S e n s e WSULUG Matt Bailey"— Presentation transcript:

1 p f S e n s e WSULUG 2006-10-25 Matt Bailey
Theme created by Sakari Koivunen and Henrik Omma Released under the LGPL license.

2 p f S e n s e - history m0n0wall (http://m0n0.ch/wall)
Reasons for fork embedded vs. installed features of new sofware IPF vs. iptables vs. pf CARP ALTQ quick pass FreeBSD 6.1-RELEASE

3 p f S e n s e - basics Things “router” packages should do (read: NAT boxes) DHCPd aliasing NAT (rfc1918 :WAN, 1:1, proxy arp) Rules (a firewall rule is not an address translation) DNS forwarding (dnsmasq)

4 p f S e n s e – basics (cont.)
Interfaces OpenSSH (off by default) HTTPS Updating Static routes Graphing and statistics General crap you'd expect for a network device

5 p f S e n s e - shaping Fully functional shaping system
Wizard for initial setup stateful packet inspection Queues and rules

6 p f S e n s e – IPsec & VPNs GRE and IPsec fully supported OpenVPN
PPPoE PPTP stunnel (as a package)

7 p f S e n s e - clustering CARP (pfsyncd) XMLRPC Load balancing
Across interfaces Across pfsync nodes

8 p f S e n s e - wireless NAT a wireless connection (just like any other interface) HostAP (way cool feature) Atheros/madwifi based cards supported Special mode for these cards (ad-hoc, managed, HostAP) All modern security protocols useable Atheros zone range mode Can bridge with LAN to share DHCP and other resources

9 p f S e n s e – logging & stats
SNMP pftop pflog pfflowd ntop snort etc

Download ppt "p f S e n s e WSULUG Matt Bailey"

Similar presentations

DNA-A212 / DNA-A213 ADSL 2+ Modem/Router

DNA-A212 / DNA-A213 ADSL 2+ Modem/Router
AOC-2406n Operation Mode configuration guide

AOC-2406n Operation Mode configuration guide
BSD Packet Filter (PF) David Liana

BSD Packet Filter (PF) David Liana
MikroTik Vendor Session © MikroTik 2005 1 MikroTik Vendor Session WISPNOG February 17-18 th, 2005 Chicago, IL.

MikroTik Vendor Session © MikroTik MikroTik Vendor Session WISPNOG February th, 2005 Chicago, IL.
Ming-Chang Cheng 鄭明彰 May 22 / May 29 , 2014

Ming-Chang Cheng 鄭明彰 May 22 / May 29 , 2014
Allied Telesyn Wireless LAN Solutions AT-WL2411 Access Point AT-WR2411 Wireless LAN PCMCIA Card.

Allied Telesyn Wireless LAN Solutions AT-WL2411 Access Point AT-WR2411 Wireless LAN PCMCIA Card.
Jonas Lippuner. Overview IPCop  Introduction  Network Structure  Services  Addons Installing IPCop on a SD card  Hardware  Installation.

Jonas Lippuner. Overview IPCop  Introduction  Network Structure  Services  Addons Installing IPCop on a SD card  Hardware  Installation.
Hardware Firewalls: Advanced Feature © N. Ganesan, Ph.D.

Hardware Firewalls: Advanced Feature © N. Ganesan, Ph.D.
Wi-Fi Structures.

Wi-Fi Structures.
70-270, 70-290 MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.

70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.
Hands-On Microsoft Windows Server 2003 Networking Chapter 1 Windows Server 2003 Networking Overview.

Hands-On Microsoft Windows Server 2003 Networking Chapter 1 Windows Server 2003 Networking Overview.
WiNG 5.3.

WiNG 5.3.
Networking Components Manuel Palos. HUBS Hubs are inexpensive devices that connect multiple devices t0 a network. Hubs merely pass along network data.

Networking Components Manuel Palos. HUBS Hubs are inexpensive devices that connect multiple devices t0 a network. Hubs merely pass along network data.
D-Link Confidential Sales guide for 3G wireless router DWR-113 D-Link Confidential WRPD, Amy Wang, 16 th Sep., 2010.

D-Link Confidential Sales guide for 3G wireless router DWR-113 D-Link Confidential WRPD, Amy Wang, 16 th Sep., 2010.
What’s New in Fireware XTM v11.8.1 WatchGuard Training.

What’s New in Fireware XTM v WatchGuard Training.
NetComm Wireless VPN Functionality Feature Spotlight.

NetComm Wireless VPN Functionality Feature Spotlight.
DrayTek VPN Solution. Outline What is VPN What does VPN Do Supported VPN Protocol How Many Tunnels does Vigor Support VPN Application Special VPN Application.

DrayTek VPN Solution. Outline What is VPN What does VPN Do Supported VPN Protocol How Many Tunnels does Vigor Support VPN Application Special VPN Application.
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 Configuring Network Devices Working at a Small-to-Medium Business or ISP – Chapter.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 Configuring Network Devices Working at a Small-to-Medium Business or ISP – Chapter.
Basic Networking Components

Basic Networking Components
Virtual Private Networking with OpenVPN Wim Kerkhoff Fraser Valley Linux Users Group April 15, 2004.

Virtual Private Networking with OpenVPN Wim Kerkhoff Fraser Valley Linux Users Group April 15, 2004.

Similar presentations

Ads by Google