Packages wishlist?
-
I think this is the correct place to post this…
I have a (great) idea for a package... I'd do it my self, but I don't know how and I don't have the time right now to figure it out. I think it would very helpful and lots of people would use it... to be honest, I can't believe someone didn't already make it!
We have SSL, IPSec and PPTP VPN access, but what I haven't seen is something like SSL-Explorer (http://sourceforge.net/projects/sslexplorer/) where you can give access to applications and network shares over a Java based SSL web application allowing to keep your server secure. I realize that Barracuda bought out 3sp/SSL-Explorer, but there have been several branches of it like Adito or OpenVPN ALS (http://sourceforge.net/projects/openvpn-als/). I've used SSL-Explorer a little and found it very easy to use from both the admin and end-user sides. It's cross platform compatible and should load on any OS. Having a package like this would also help compete against several vendors out there... I know SonicWALL's SSLVPN has somewhat similar features in that you can publish some types of applications as well as shared folder.
All this being said, anyone interested in making a package out of this? I don't have any funds to put toward this at this time, but I'm willing to help out where I can if someone else thinks this would be useful.
-Jay
-
openvpn-als requires to run Java on the server side, which is a very high requirement to ask of a firewall. It would not be a small undertaking by any means, but someone might do it for a bounty.
-
After reading into ALS more, it doesn't sound like that great of an idea since of all the current issues and lack of support…
Another open source project that looks good is Bro Intrusion. It seems to be pretty popular, is there no interest in making that a package?
-
There is, since Bro IDS is BSD licensed it's much better for inclusion since we're a BSD licensed project.
That may happen in the near future, actually, but I'm not sure of the timeline.
-
I see quite a few people wish to modify the error pages provided by HAVP and squid, is it possible to create a package that does this automatically, where the user uploads the file they want to use and specify what its replacing? How difficult would it be?
On 1.2.3-RELEASE & possibly earlier, I started using pfSense with that version, you can go to Diagnostics | Edit File & edit files on the server. Also if you have enabled SSH on the pfSense box you can ssh in & modify files directly on the server.
-
yea but what about squid?
mostly interested in squid since I havent figured that one out yet -
yea but what about squid?
mostly interested in squid since I havent figured that one out yetyou can edit the squid error pages, too, they're under:
/usr/local/etc/squid/errors/English (Or whatever other language you want) -
yea but what about squid?
mostly interested in squid since I havent figured that one out yetI forgot to mention that you can also use Diagnostics | Execute command to edit files in your pfSense install.
-
I would like to see a mail proxy package that would accept all incoming e-mail and scan it for spam, viruses, and grey list it. After it completes the following task, it would then release it to an internal mail server.
Something like the spamD package that dropped off the grid.
These days having proxy filtering I believe is a must have at the gateway level.
-
I would like to see a mail proxy package that would accept all incoming e-mail and scan it for spam, viruses, and grey list it. After it completes the following task, it would then release it to an internal mail server.
Something like the spamD package that dropped off the grid.
These days having proxy filtering I believe is a must have at the gateway level.
A bounty was proposed for proxsmtp, which can do much of this, but the money was withdrawn before any progress could be made.
-
I'm surprised no one has mentioned Hatchet for log analyzing and visualization.
http://www.dixongroup.net/hatchet/
It runs via Perl and uses regex to create a nice interface for viewing logs as well as using SQLite to store the logs in a database for viewing whenever you may need them.
-
UNBOUND DNS, please … :)
-
Some of you may not like this one, but it would be really cool to have a ventrillo server package. It's not super intensive and would run just fine on the 6 year old box that runs pfsense.
-
Some of you may not like this one, but it would be really cool to have a ventrillo server package. It's not super intensive and would run just fine on the 6 year old box that runs pfsense.
Bad, bad, very bad idea.
-
But why!? lol
-
Just install VmWare and run the two things on the same physical box. Its a really bad idea to run some fucked up open like a hole in the ground software like Ventrillo in the same environment as your frontend FW.
Thats why hackers and spammers are having an easy time spreading their shit around the globe….
-
Yes I know. Wishful thinking.
-
XenTools
-
-
1. FusionPBX package
2. SSH tunnel management
3. SSH Key management (partly done via user key management)
4. SSH tunnel client GUI (SSHD is running ok but GUI missing totally)