Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    What methods and tools to use for Pfsense Security Monitoring & Analysis?

    Scheduled Pinned Locked Moved General pfSense Questions
    3 Posts 3 Posters 2.8k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      Clear-Pixel
      last edited by

      What methods and tools to use for Pfsense Security Monitoring & Analysis?

      Looking to take it to the next level….

      Here is a video I ran across discussing basic entry level network defense with Security Onion.
      Youtube Video

      Wonder how easy it would be to install the same tools or at less the most important ones within a custom Kali Linux build? http://www.kali.org/

      Are there better solutions and methods available that would be more productive/better?

      Please Post the methods, tools and technics you utilize.

      HP EliteBook 2530p Laptop - Core2 Duo SL9600 @ 2.13Ghz - 4 GB Ram -128GB SSD
      Atheros Mini PCI-E as Access Point (AR5BXB63H/AR5007EG/AR2425)
      Single Ethernet Port - VLAN
      Cisco SG300 10-port Gigabit Managed Switch
      Cisco DPC3008 Cable Modem  30/4 Mbps
      Pfsense 2.1-RELEASE (amd64)
      –------------------------------------------------------------
      Total Network Power Consumption - 29 Watts

      1 Reply Last reply Reply Quote 0
      • T
        tim.mcmanus
        last edited by

        I vulnerability test my LAN/WAN with Tenable's Nessus.

        1 Reply Last reply Reply Quote 0
        • jimpJ
          jimp Rebel Alliance Developer Netgate
          last edited by

          Not specific to pfSense really, but Kali Linux does have plenty of tools built-in for scanning and testing such as OpenVAS. While not as accurate or detailed as Nessus, OpenVAS has similar functionality and is free, compared to $1500/yr for a Nessus feed subscription.

          It all depends on what your budget is, which is the better fit.

          The advantage of a distribution like Security Onion is that it's already put together and ready to use. Sure, you could take the same functions and build them into another Linux distro, but why reinvent the wheel? Why not just use both Security Onion and Kali in separate VMs?

          Kali is designed with pen testing in mind, and its default setup/layout is geared toward that. Security Onion is designed for persistent monitoring/logging/etc. They both have their strengths, and trying to make one thing do both would probably end up with lackluster results.

          Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

          Need help fast? Netgate Global Support!

          Do not Chat/PM for help!

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.