Create your own router/firewall/content filtering/protection for free

[alex1002]

Anyone done this?

-Need Firewall
_need a way to block spam/viruses
-block bittorrent
-block p2p

 

[cactus]

Untangle would be what I would first look into. pfSense can do p2p with Snort, but spam filtering is going to be more difficult. Is this for home or for an SMB?

 

[alex1002]

SMB>>>Small Business

 

[mrkrad]

cisco bought snort (sourcefire) - I suspect there will be a closure of (anything free) coming..

 

[bwillcox]

If a real SMB with less than 50 IPs behind the firewall, you could probably load Sophos UTM home edition on your own hardware which would do most of what you want.

Otherwise pfsense, smoothwall or ipcop are probably the best you can do.

-b

 

[cactus]

cisco bought snort (sourcefire) - I suspect there will be a closure of (anything free) coming..

Also means ClamAV. We can hope cisco wont pull an oracle right?

 

[mrkrad]

Another nessus

 

[cactus]

SMB>>>Small Business

p2p and Bittorrent mitigation might be better accomplished with watching bandwidth logs and client side restrictions. Untangle and Sophos free editions look to fulfill the rest of your requirements with nice UI management.

 

[nitrobass24]

I recommend Sophos. I use it to do everything you mentioned in my network, plus i like its reverse proxy & WAF features. Its a lot better than forwarding port 80 and 443 into my network.

 

[alex1002]

I recommend Sophos. I use it to do everything you mentioned in my network, plus i like its reverse proxy & WAF features. Its a lot better than forwarding port 80 and 443 into my network.

Can you be more specific please. Sophos

 

[Aluminum]

cisco bought snort (sourcefire) - I suspect there will be a closure of (anything free) coming..

Snort is toast, get your butter and jam

IMHO Bro will take its place

 

[nitrobass24]

Can you be more specific please. Sophos

Which part would you like me to be more specific on? Not sure what you want to know more about?

 

[alex1002]

what version of Sophos?

 

[nitrobass24]

Sophos UTM v9....formerly Astaro

 

[Zuhkov]

Another vote for Sophos UTM (previously ASG)

 

[Mike]

Also means ClamAV. We can hope cisco wont pull an oracle right?

I don't see the problem... In a few years we will have forgotten what mysql was.
Also, it takes more than an open source project or two to (re)gain some footprint in the WAF and proxy business, no?

 

[alex1002]

Sophos UTM v9 I believe this is a paid product?

 

[nitrobass24]

Sophos UTM v9 I believe this is a paid product?

They have a free version for home use that has all of the features and is limited to 50 internal IPs.
There is also a free SMB version that has unlimited IPs but does not have all of the UTM features enabled.

 

[alex1002]

How much is it to go above 50ips? And how does it count IPs?