Search the Community
Showing results for tags 'firewall'.
-
Please can anyone help me to setup pfsense on gcp I followed this tut https://gist.github.com/mkhon/0d8867e07c6b325ae228 i was able in launch the instance but i am unable to access the webgui and the console.
-
I've got a Cisco 2811 router collecting dust, I was thinking. Do you guys recommend i use it as firewall/VPN or shall I get myself a Cisco ASA 5505?
-
Hey everyone, I want to buy a MikroTik RouterBOARD RB2011UiAS-RM but I need to have some ports open for my servers. My dad however needs a secure network for business reasons. I was wondering if I could configure it, and if so how, to have two separate networks with my server network having open ports and the house network protected. I don't want to buy another firewall and was wondering if anyone knew how to do this. Thanks -The_Auditor
-
Hello, I just implemented Geo Blocking in my Fortigate 100D. Is there a way to check if this is working properly? Thanks in advanced.
-
Hey, im new to actually configure ufw on a Linux server. And i have set some rules that does not seem to work. I wanted to disable incoming and outgoing connections from port 3306 on interface eth0. and allow from eth1 The rules are set but i can still connect to the database. Any idea's? $: sudo ufw status verbose Status: active Logging: on (low) Default: deny (incoming), allow (outgoing), deny (routed) New profiles: skip To Action From -- ------ ---- 3306 on eth0 DENY IN Anywhere 22/tcp ALLOW IN Anywhere 3306 on eth1 ALLOW IN Anywhere 3306 (v6) on eth0 DENY IN Anywhere (v6) 22/tcp (v6) ALLOW IN Anywhere (v6) 3306 (v6) on eth1 ALLOW IN Anywhere (v6) 3306 DENY OUT Anywhere on eth0 3306 ALLOW OUT Anywhere on eth1 3306 (v6) DENY OUT Anywhere (v6) on eth0 3306 (v6) ALLOW OUT Anywhere (v6) on eth1
-
I love this game but there is one Problem..... The problem is that when I try to play offline, it automatically reconnects. EVEN THOUGH I blocked it with my firewall it still connects... Can Someone help me with this problem because it is really annoying, Thanks.
-
I was looking into buying a old av810-b blue coat system. The question, I have is can I still use it in today's age? I was going to use it with a pfsense build to add more protection. I am doing in jan or feb. it's age can it still be used to protect me from crap in today's world. I think this machines like 8-10 years old. So that why, I ask these questions. Also is 250$ a good price for this blue coat system? -
Hey all, So my brothers just got new PC's, now before I start - I DO NOT want to monitor them, however teamviewer will be installed for remote support. They're 11 & 9, they're sensible but we just want to make sure everything is okay with their PC's and that they aren't accessing anything bad. So, I'm going to make a homegroup and have us all connected to it. Is there a way to see their internet traffic and to enforce a security policy so that they can't get to certain websites, open certain file extensions etc? I know it can be done on a server, but I don't have a server as of yet, so instead I would like to know of a way to enforce it via homegroup or another method. Thanks in advance, Jack
-
Hi everyone, I know this is a broad topic, but I am partnering with a business analyst to provide encryption of data and basic network security to a law firm. I wouldn't say this is outside my skill set, but I need more familiarity with some products and services people may recommend. I am a solopreneur, so if the job is too big, I will outsource to a larger IT company I have contact with. Basically, it would be really helpful if people could recommend off the fly particular commercial security products and processes for encrypting data in a law firm environment. Thanks for any help you can give.
-
I'm trying to keep an application (game) from going online and launching steam. I looked up the process to do this but I'm either missing a step or just not getting it at all. My PC uses 64bit Win10. Thanks in advance! -
I'm trying to find a good firewall for a $100-200 range that can support a 300mbps network with at least 5 users. I've noticed multiple DoS ARP attacks and attempts to remotely access my network from different ips definitely over a VPN as I can't trace a good specific location of the ip only getting me to the middle of local towns locations that wouldn't make sense. I've even noticed other odd occurrences such as my wireless access point completely disconnecting randomly and things on my phone that I didnt do. Rather than spend money to trace the IP further I'd rather prevent the attacks altogether, plus I'd just like the added security. I appreciate any feedback I can get and if you can provide some specs of the firewalls or reasoning behind your choice that would also be appreciated. I've attached a picture of a section of the logs from my router. These only show a few of the ip addresses one of which 45.37.0.1 I was only able to track to the middle a town near where I live not an exact location and I tried a trace route and wasn't able to connect, the same goes for most of the other attacks that one just being the most common ip address hence my thinking that they are using a VPN. I have a NETGEAR WNDR4300 router I forget the modem I use but it is provided by Spectrum, a NETGEAR ProSafe GS108 Gigabit Switch, and a NETGEAR WN2500RP access point. Don't like the thought of my packets being stolen.
-
Hi, i am new around here. i have searched every where for a way to bypass "fortinet" firewall on my college wifi but to no avail. Is there a way to bypass fortinet securely which doesnt involve paying for expensive vpn service and will allow me to connect and play on steam? I will be happy to provide any details necessary. Thanks for ur help.
-
Ok, so I am looking to replace my current firewall (home built PFsense box) and I have narrowed down my choices to two. I am looking at either an SG-3100 or a USG Pro-4. I have some networking experience and I believe that either one can meet my network requirements, but I don't have any experience with the Unifi Security Gateways. I currently have Openvpn, Suricata and PIA setup on my pfsense box. I have a full gigabit connection to my apartment (its copper so I average like 600 mbps) I know that I can setup OpenVPN and PIA on a USG so I'm not worried about those services. I also have a Unifi 24port switch in my network. My questions is will I be taking a step back by moving over to a USG or will I get the same functionality out of the device. I don't have any problems with PFsense, but I'd like to have the control over my network like Unifi allows. Hopefully that all makes sense.
-
can someone help me out fam??please;) windows update error 0x80070424
-
soo.... it's one of those "me" topics again.. i'm looking for a firewall / router software that'll allow remote users to connect to a VPN, which will grant them access to the stuff i host on my server, as an alternative for port forwarding (and passwords, whitelists, and all the other garbage that brings..), sort of a DIY hamachi alternative that isnt terrible. in other words, i want something i can throw in a VM on my server, that does the following: - user needs to connect trough windows' built in VPN (NO exceptions here, end users are dum users) - all connected users need to be seperated (cannot ping each other, etc.) - this same VM needs a form of "port forwarding" where i can easily allow or disallow access to a certain port, on a certain IP address. - this all, ideally, fits in a VM with 1GB RAM or less. according to following (extremely professional) schematic: Things i dont care about - high secure VPN connections. all that's going over the VPN is essentially meant to be on a public network anyways. - enterprise features - heritage of sorts, where a piece of software is better because it has more history. Things i DO care about - ease of use, both for configuration, and for the end user. - as low resource usage as sensibly possible - keeping it to a single VM, mostly for resource usage, and number of hops, since latency is of notable concern. Things i've tried, and why they failed - PFsense: VPN configuration is horrible, even when following the guide to the letter. creating firewall rules ("port forwarding") - OPNsense: see above - IPFire: this web interface is actually worse than D-link.. - linux firewall: PLEASE SOMEONE FIND ME AN EASY TO USE INTERFACE FOR THIS.. I NEED THIS IN MY LIFE. So.. in short, i need a platform of sorts that runs in a virtual machine, has a VPN server that plays nice with windows' vpn client, and has an easy interface for firewall/portforward management. the latter being split into making rules, and enabling/disabling them.
-
On my wifi network I have sophos firewall installed. So the internet speed is limited by using the sophos. But there are some apps and websites like tictoc that work unrestricted at high speed. Any Speed test shows around 10mbps while tictoc works at 40-50 mbps. 1>I want to know the exact reason behind this. 2> Can I use this loophole to speed up rest of my downloads.
-
So to begin lets assume I'm a networking dummy, so any follow-on advice please break it down "Barney Style". I built a mini-itx pc inside a Velka 3. Installed Pfsense. Used some beginner Youtube videos and online guides. I also used PIA's pfsense guide to get a VPN up an running. However one problem: When the server drops out I'm left without internet and this really sucks during online game play. So what I'm getting at is I need help setting up my pfsense so that it has failover to other PIA servers. fyi: I tried using a rough guide that used vpn interfaces and gateway groups. I think I probably over complicated the firewall rules and NAT. Please help!
-
Hello, I'm in need of setting up my USB wireless interface for my pfsense running in Virtual box and so far I have tried the usual way of bridging the adapter to the VM. This however gets detected as a wired interface by pfsense and i dont want it that way. I need it as a wireless interface. So far I have tried adding the interface as a USB device, but it doesnt get detected by pfsense when i tried to assign it. What other options do I have to achieve my need? Im also open to trying out different VM software if it has the necessary features to do this. Thanks.
-
Hey guys. We are trying to chose a firewall for an office. We have unifi cameras, aps, controller, and switches. I believe we should get a unifi security gateway setup for $300~ and we should be good to go. My manager wants to get a Barracuda F280 firewall with monthly service. This will be around $5,000 to setup and then something like $500 dollars to $2000 dollars a month in subscription fees. Can anyone advise? We have a 500 mbps isp and less then 50 people in the office. We don't use VPN at all everything is cloud based. Does it make sense to do the F280 over the Security Gateway? I do have a VM server and a dell sonic wall too if someone wants to advice something different. Thanks very much.
-
Over the last couple of weeks I've been setting up a LOT of new iMacs for my work. One thing I've noticed among all of them is that the firewall is off by default and has to be turned on. Then I was tweaking my own settings on my laptop and noticed that my firewall was off despite having turned it on years ago with a "set it and forget it" type mentality, knowing that it'd be on unless something turned it off or I purposefully did that. Is this just a fluke? Sure if your network is protected at least you have some manner of security but it just seems silly to have to turn something on when even Windows has theirs on automatically. (And even screams at you when it's off) The question for me remains, why would Apple have a key security feature on their hardware, off, right out of the box?
-
Hey allI have a issue with my firewall on my USGI have two vlans setup, Vlan 10 and 40I have a PC on vlan 10 and a server on vlan 40I have a rule setup to stop cross talk between the vlans, which works fine.I then went to set a rule to allow ssh and http between the PC and the server.First I found that I had to set a rule for both directions, PC->Server and then a reply back from Server -> PCSo I created a group with both the server and the PC's IP addresses and set a single rule from group to groupRather than having two rules for each direction.This worked fine.I then went to add a port group to the rule to limit it to just ssh (22), and applied it to the firewall.Broken.If I allow any traffic it works fine, but the moment I add a port restrction it breaks.Screenshots attached for reference.
-
i already have pfsense up and running i have a metered network of 10GB per month so i made a firewall rule that slows down downloads of all things. i am wanting to add Google Docs to and rule before that rule so that it is not slowed down. as my brother needs it for school work and not fun, and as it doesn't default to loading at a large size (youtube) in doing my looking it up. 'docs.google.com' is not allowed as it wants an ip address. so i pinged the docs.google.com server and got the ip address "216.58.217.46" great now if i ping 'youtube.com' also a google service it goes to "216.58.217.46" the same F^&* address. so if i want to allows docs.google.com via an ip address rule it would also un-limit youtube as well. (the main reason i created the rule) is there an other way?
-
What operating system would you choose for Snort? I have Windows licenses but I'm wondering what would be the best and most secure/durable OS to install Snort on top of. Thanks
-
I got a brand new computer, and when I try to open "virus defender settings" and such, on Windows 10, it won't open, and my cursor starts flickering with a loading circle next to it that won't stop. It goes away when I restart the computer, and comes back if I try opening it again. Any help please!
-
My wife has a small shop that she runs, and she will be adding a POS (Point of Sale) that requires it to be on a separate network. I realize there are probably a few different ways to do this, some being very expensive. Since it's just a small store with only the POS and one other PC, and maybe some cameras later, what's the more practical and affordable way to go about this? I thought about the Sonicwall TZ500, but $1300 to just separate the network seems a bit much. There has to be a more cost effective solution for a basic setup like hers that still complies with required polices. Any suggestions?
