snort/suricata
-
I added the OPT1(webserver) interface to my pfsense, and used snort/suricata to secure the webserver, and the OPT2 attacker.
The problem I'm having is that when I do a DDOS attack on the webserver what happens is that it's not the webserver that can't be accessed, but the web from the pfsense that can't be accessed.
My firewall settings, only add portforward for the webserver so that it can be accessed by clients, and add simple rules so that clients can connect to each other.