4. Snort on OpenVPN/DMZ Interfaces

Snort on OpenVPN/DMZ Interfaces

  • H

    Hey all,

    I've installed pfSense on my ESXi box and everything is working great (knock on wood!). My current setup looks like this:

    [OpenVPN Server]<====>[Modem]<====>[pfSense]<====>[PC]

    The PC is connected to an OpenVPN server, with pfSense being the client. I've setup Snort on the WAN interface, but my question is would I also need to setup Snort on the OpenVPN interface as well to make sure that my network is protected? While the server is trusted, I'd rather be safe than sorry (in case it gets compromised since I have no control over it).

    Also, do I need to enable Snort on the DMZ interface? Or is enabling it on the the WAN interface is a "catch all" system?

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy