Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Snort on OpenVPN/DMZ Interfaces

    Scheduled Pinned Locked Moved General pfSense Questions
    1 Posts 1 Posters 939 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H
      Heli0s
      last edited by

      Hey all,

      I've installed pfSense on my ESXi box and everything is working great (knock on wood!). My current setup looks like this:

      [OpenVPN Server]<====>[Modem]<====>[pfSense]<====>[PC]

      The PC is connected to an OpenVPN server, with pfSense being the client. I've setup Snort on the WAN interface, but my question is would I also need to setup Snort on the OpenVPN interface as well to make sure that my network is protected? While the server is trusted, I'd rather be safe than sorry (in case it gets compromised since I have no control over it).

      Also, do I need to enable Snort on the DMZ interface? Or is enabling it on the the WAN interface is a "catch all" system?

      1 Reply Last reply Reply Quote 0
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.