Enterprise style Central Management Interface - {Now $1900}
-
He is responding to a message I sent him to see if he might be interested in joining in on the bounty.
Now it makes more sense. Thanks for clarifying.
-
Heiko is a great supporter of the project, this was really just some translation problem here. I already know him for a long time.
-
Sorry, Sorry, for misunderstanding my posting , it is not an offense from me. I have great respect to all of the folks here that supports pfsense.
As a matter of course i wish that this bounty will do successfully…....But for me, at the moment i will not contribute money to this bounty so for this Thread I´m sitting on the sidelines.....
Once more, sorry for misunderstanding.
Good luck, I wish you success!
Greetings
Heiko -
I had started something like this in .NET, windows based interface. With failover notification, automatic backups with SQL storage, SSO to every pfsense.
My wish was to rebuild the object model of pfsense configuration into .NET and then manage to build configuration files (rules, alias…) then send them to each box.
The best (I suppose) would be to use XML-RPC calls to every box but I have not yet tested it.SSO was easy to make with form based developpement, do not know how to handle it with web development...forged POST as link perhaps...
Was also thinking about using mod_proxy/mod_rewrite of Apache to "reverse proxyfie" acces to each box, using some wget scripts to centralize graphs....many ideas... who wants to talk about it :-p IRC ?I going to (re)work on this soon, I will think about it for real ;-)
-
Has also thinking about using mod_proxy/mod_rewrite of Apache to "reverse proxyfie" acces to each box, using some wget scripts to centralize graphs….many ideas... who wants to talk about it :-p IRC ?
take a look at syweb/symon/symux it does that for you.
-
Any solution which would be used should only use open source software. Going to a proprietory paid solution ie..SQL would turn away many people from using and or joining into this solution. If you are talking about an open source for of SQL like mySql then I stand corrected.
Thanks,
Mark
-
I am also scratching my head at why there has not been more interest in this bounty. I would think there are more than just one or two people who have pfsense deployed in multiple locations or use them as a managed service to multiple customers. Maybe people are using other third party solutions which allow them to do this. In any case I think this would be very beneficial and open this product up to a more enterprise type enviroment because having to manage each one seperately or getting detailed status information or reporting from each one would be time consuming. Just me 2 cents…......
Mark
-
I'm adding a requirement to the amount I committed to in this bounty.
Requirement:
Central Management needs to be developed in PHP.Why:
1. PFSense's web interface is written in PHP.
2. PHP is Multi-platform capable on nearly every OS imaginable.
3. It would require a smaller learning curve for development if it did not require knowledge of two languages to handle modifications to PFSense and the Central Mangement.
4. I want to reduce my dependency on Microsoft.I'm not opposed to there being a .Net option. I also applaud your effort in building it. I just don't want it to be the only option.
P.S. I know several languages including both PHP and C#.
-
I had started something like this in .NET, windows based interface….
Alright Juve, time to take down that BSD avatar :)
-
Like I said "I had started"… which means I stopped it (more than one year ago).
;D
I was thinking about MySQL + PHP/and/or Mono (I like C#). I see two sides, the frontend wich would be in PHP (easy to code and fast), and the backend which would be more sophisticated with multithreading capabilities, plugin (monitoring sensors/actions) interface with hot loading/unloading using relfexion, storage using MySQL, configuration using XML.Link between front and back using webservice (SOAP) in order to split roles...
Scott, I was asked to do it windows based ;-)
;) -
Anyway all that staff for such thing is overkill/overengineer. Using mysql/SOAP/and all that staff seems too much for a thing that has already been done in php.
-
Yes but when you have to manage 100+ pfsense boxes you have to have something you can rely on… modularity, scalability and so on.
So, If I have to do something, I will start to think about the "ideal" design. -
Hi Juve,
So are you saying this might be a bounty you would take on? Honestly I am unfamiliar with the scope of a project like this is and if it would be an easy thing to do or a very difficult. I don't understand the underlying aspects of pfsense. Not a programmer. 100+ pfsense boxes? That is alot.
Mark
-
It is something I would like to do, but I'm afraid I can't get enough time to make it good (I'm already busy at 110%, you know what it is, in IT services you have to do twice the job you are asked to.. for the samed price of course).
I don't want to tell you I'm going to make it and then let you wait for 10 months… this is a disrespect. I'm not either looking for money, I if do it will be for free and for the community, money should go to pfsense coders like scott,hoba,cmd etc.
I have already 30+ boxes to manage and plan to have some more ;-). That 's why I'm replying here, which is perhaps a mistake and should go onto General discussion thread since I'm note willing to take on that bounty "as" a bounty.
I'll try to get on IRC soon to discuss about that kind of central management area, and then perhaps make a team to build something "useful" ;) -
Here is a neat example from watchguard. http://www.watchguard.com/products/wsm.asp At least it is a visual of what I am looking for.
Except their product is $6000 just to manage 50 clients…not too mention the cost of the box needed!
-
http://www.astaro.com/our_products/astaro_command_center might be worth a look as well. There is a livedemo on their site as well.
-
Ok guys, Im a pfSense developer. Ive been looking into this feasibility while also working on a similiar concept. Ive got time to invest so can we compile a list of specific features youd like so I can review everyones needs.
-
Hi Hoba,
That product looks like a replacement for pfSense. Not something which would let me manage multiple units from one location.
Hi Dingo,
Great to hear that!!!! I have to go to work but I will respond in a little while. Thank you for taking interest in this bounty.
Mark
-
That product looks like a replacement for pfSense. Not something which would let me manage multiple units from one location.
Astaro is a linux based firewalldistribution, that's right but they offer a commandcenter that you can control multiple astaro units with. I didn't say switch to astaro, I just said if something like that has to be developed for pfSense it can't hurt to have a look at similiar existing products. It's the same like the watchguard controlcenter that was psoted here. Watchguard is a replacement for pfSense as well.
-
Hi Hoba,
ok…so you meant as an example. Thanks for the suggestion. I appreciate any help. Sorry for the misunderstanding.