Jonathan Williams
Follow

@R3dH00d Not at all. Border router is a Ubiquiti ER-POE with the only purpose of running NAT. Subsequently: OpenBSD routers in a failover configuration (will also be running OpenVPN, but not yet); Ubiquiti switchgear (all up to date). Network segmented on VLANs, with all management functions on their own VLAN. Also, a Security Onion IDS on the main egress.

· 1· 0· 1
Jonathan Williams  

@R3dH00d Among the things I'm thinking about doing: running host intrusion on all computers (right now, all user machines are Windows machines running Malwarebytes and Windows Defender); tuning Security Onion rules further (the professional Emerging Threats database is too expensive, though); maybe taking management off of a VLAN and running it truly out-of-band with a separate internet connection

1
Jonathan Williams  

@R3dH00d I'm unsure as to whether other IDS databases (such as Snort rules) can be used with Suricata in Security Onion

0
Sign in to participate in the conversation

CounterSocial is the first Social Network Platform to take a zero-tolerance stance to hostile nations, bot accounts and trolls who are weaponizing OUR social media platforms and freedoms to engage in influence operations against us. And we're here to counter it.

Resources

Developers

What is CounterSocial?

Created by potrace 1.15, written by Peter Selinger 2001-2017

counter.social

More…