OPNsense beginner to professional protect networks and build next-generation firewalls easily with OPNsense
Work with one of the most efficient open-source FreeBSD-based firewall and routing solutions to secure your network with ease Key Features Learn end-to-end OPNsense firewall implementation and management Defend against attacks by leveraging third-party plugins such as Nginx and Sensei Grasp hands-on...
| Otros Autores: | |
|---|---|
| Formato: | Libro electrónico |
| Idioma: | Inglés |
| Publicado: |
Birmingham, England ; Mumbai :
Packt
2022.
|
| Materias: | |
| Ver en Biblioteca Universitat Ramon Llull: | https://discovery.url.edu/permalink/34CSUC_URL/1im36ta/alma991009669523206719 |
Tabla de Contenidos:
- Cover
- Title Page
- Copyright and Credits
- Dedication
- Contributors
- Table of Contents
- Preface
- Section 1: Initial Configuration
- Chapter 1: An OPNsense Overview
- About the OPNsense project
- Project history
- A new project with a lot of improvements on old code
- Rock-solid FreeBSD
- HardenedBSD
- FreeBSD
- Why OPNsense?
- My personal experience
- Features and common deployments
- Core features
- Common deployments
- Where to get help?
- Some facts
- Summary
- Chapter 2: Installing OPNsense
- Technical requirements
- Versions and requirements
- Versioning
- Hardware
- Downloading and installing OPNsense
- Configuring VirtualBox to install OPNsense
- Mounting the OPNsense ISO file
- Installing OPNsense
- Unmounting the ISO installation file
- Setting up a LAN network
- Configuring network interfaces
- Updating firmware
- Checking for system updates in WebGUI
- Checking system updates using the CLI
- Installing plugins
- Advanced
- Accessing the CLI through SSH
- FreeBSD packages
- PKG basic operations
- Summary
- Chapter 3: Configuring an OPNsense Network
- Technical requirements
- Hardware considerations
- FreeBSD NIC names
- The ifconfig command
- Basic network configuration
- WebGUI
- network interface configuration
- Assigning network interfaces
- Overview of the network interface
- Types of interfaces
- Bridge
- GIF
- GRE
- LAGG
- Loopback
- VLAN
- VXLAN
- Proposed exercise
- creating another type of network interface
- Exploring virtual IPs
- IP alias
- CARP
- Proxy ARP
- Proposed exercise
- creating a virtual IP address
- Network diagnostics and troubleshooting
- True story
- how to use ARP Table diagnostics
- Common issue
- local network hosts can't open websites
- Summary
- Chapter 4: System Configuration
- Technical requirements
- Managing users and groups
- Creating users and groups
- External authentication
- Certificates
- a brief introduction
- General settings
- The administration page
- The General page
- About OPNsense logging
- Advanced settings
- Cryptography settings
- Configuration backup
- Summary
- Section 2: Securing the Network
- Chapter 5: Firewall
- Technical requirements
- Understanding firewalling concepts
- A stateful firewall
- The Packet Filter
- Firewall aliases
- Importing and exporting aliases
- The firewall rules
- The rule processing order
- Rule actions
- Firewall settings
- Diagnostics and troubleshooting
- Troubleshooting
- Summary
- Chapter 6: Network Address Translation (NAT)
- Technical requirements
- NAT concepts
- Port forwarding
- Caveats
- Creating a port forwarding rule
- Outbound NAT
- NAT outbound modes
- Adding an outbound NAT rule
- One-to-one NAT
- Adding a one-to-one NAT rule
- Summary
- Chapter 7: Traffic Shaping
- Technical requirements
- Introduction to traffic shaping
- dummynet and ipfw
- a brief introduction
- Possible scenarios
