What do you run; Opnsense, pfsense, Smoothwall, maybe a WAF like wazuh?
Today was update/audit firewall day. I’m running a standalone instance of pFsense on a Protectli Vault FW4B - 4 Port - Intel Quad Core - 8GB RAM - 120GB mSATA SSD with unbound, pfBlockerNG, Suricata, ntopng, and heavily filtered. I did bump the swap to 8 GB as I’ve previously noticed a few ‘out of swap’ errors under load.
Before I signed off, I ran it through a couple porn sites to see if my adblocking strategy was working. Not one intrusive ad. Sweet!
Show me what you got.
My firewall varies from installation-to-installation, as it’s always client-side with a custom DNS provider. Right now, I’m using YaST Firewall on my main machine, iptables on my old ThinkPad, and my other machines are currently between operating systems. In the past, I have also dabbled in ufw, pf, and awall.
In addition to that, I generally use NextDNS (though I also get excellent results with Mullvad DNS).
My policy is simple: reject all incoming connections, except for Torrent and Syncthing.
I hear a lot of good things about NextDNS.
Do you call your network Virgin, because that’s pretty tight.