Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Necessity of Snort

    Scheduled Pinned Locked Moved pfSense Packages
    3 Posts 3 Posters 1.6k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • ?
      Guest
      last edited by

      Hi,

      I was just wondering if its necessary to install Snort or any kind of IDS/IPS on a basic home network when all traffic is blocked on the WAN port by default?  I'm not forwarding any ports and don't run any servers on my network.  It seems to me that something like Snort my be over kill if all traffic is already block by default.

      What do you guy think?

      Matt

      1 Reply Last reply Reply Quote 0
      • marcellocM
        marcelloc
        last edited by

        If you don't mind what is going on your network, you don't need it.

        In some cases, the ids/ips can help you identify virus traffic or someone on your network trying something nasty.

        The first step you did by closing all wan ports.

        att,
        Marcello Coutinho

        Treinamentos de Elite: http://sys-squad.com

        Help a community developer! ;D

        1 Reply Last reply Reply Quote 0
        • N
          Nachtfalke
          last edited by

          Closing all ports on the WAN site will help you to prevent someone to get access to your network from OUTSIDE your LAN.

          snort will work on your LAN side. it could detect if a virus or a trojan or a hacker who got access for example over wifi to your LAN network initiates traffic from LAN to WAN. In general you do not really need this in a home environment with less clients and if you know who has access to this/your network.

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.