On Tue, Aug 21, 2018 at 11:21:01AM +0300, Mimiko wrote:
> Isn't zorp gone commercial only?
>
> On 19.08.2018 20:51, Dan Ritter wrote:
> > zorp is a proxying firewall with many look-inside features, but
> > is not arbitrarily deep.
>
zorp 6.0.10.0-2 is packaged for sid; early versions for wheezy
Hi.
Top posting is considered bad manners here.
On Tue, Aug 21, 2018 at 11:22:02AM +0300, Mimiko wrote:
> last update to OpenDPI was 6 years ago. Could it be used now without problems?
I sincerely doubt it. Hence my suggestion of nDPI.
Reco
last update to OpenDPI was 6 years ago. Could it be used now without problems?
On 19.08.2018 20:50, Reco wrote:
If software archeology is your thing, there's OpenDPI - [2] (sorry for
the GitHub link again).
Isn't zorp gone commercial only?
On 19.08.2018 20:51, Dan Ritter wrote:
zorp is a proxying firewall with many look-inside features, but
is not arbitrarily deep.
Well. You can't really open "decipher" ssl without changing certificate,
but you can exclude some sites from ssl bumping.
Eero
On Tue, Aug 21, 2018 at 9:31 AM Mimiko wrote:
> Thank you all for suggestions.
>
> Yes, I didn't tell my goal. First of course is to limit access to web
> sites and col
Thank you all for suggestions.
Yes, I didn't tell my goal. First of course is to limit access to web sites and collect statistics. Yes this could be done with squid and ssl_bump. I
hope this does not change certificate as internet-banking will not work. The problem for a quick implementation is
Hi.
On Sun, Aug 19, 2018 at 05:47:43PM -0400, Cindy-Sue Causey wrote:
> YES, I know. Overall, it still might not do the OP's job that's
> needed, but it used the SAME words I just read above in Reco's
> response.
That's true, I was brief. The main difference between, say, nDPI and
ngrep i
squid with ssl_bump
Eero
On Mon, Aug 20, 2018 at 12:48 AM Cindy-Sue Causey
wrote:
> On 8/19/18, Reco wrote:
> > Hi.
> >
> > On Sun, Aug 19, 2018 at 09:03:10PM +0300, Eero Volotinen wrote:
> >> snort
> >
> > Intrusion detection. Unsuitable for traffic shaping or filtering.
> >
> >> and su
On 8/19/18, Reco wrote:
> Hi.
>
> On Sun, Aug 19, 2018 at 09:03:10PM +0300, Eero Volotinen wrote:
>> snort
>
> Intrusion detection. Unsuitable for traffic shaping or filtering.
>
>> and suricata.
>
> Utilizes NFQUEUE. Friends do not let friends to copy network packets
> from kernelspace to u
Hi.
On Sun, Aug 19, 2018 at 09:03:10PM +0300, Eero Volotinen wrote:
> snort
Intrusion detection. Unsuitable for traffic shaping or filtering.
> and suricata.
Utilizes NFQUEUE. Friends do not let friends to copy network packets
from kernelspace to userspace and back.
Reco
snort and suricata.
Eero
su 19. elok. 2018 klo 20.52 Reco kirjoitti:
> Hi.
>
> On Sun, Aug 19, 2018 at 08:31:42PM +0300, Mimiko wrote:
> > Hello.
> >
> > Maybe this was answered. Is there a Deep Packet Inspection to use in
> Debian 9 for a firewall
On Sun, Aug 19, 2018 at 08:31:42PM +0300, Mimiko wrote:
> Hello.
>
> Maybe this was answered. Is there a Deep Packet Inspection to use in Debian 9
> for a firewall setup? Opensource and maybe in repository.
>
libndpi and ntopng are packaged, but no firewall built on that
is p
Hi.
On Sun, Aug 19, 2018 at 08:31:42PM +0300, Mimiko wrote:
> Hello.
>
> Maybe this was answered. Is there a Deep Packet Inspection to use in Debian 9
> for a firewall setup? Opensource and maybe in repository.
Once upon a time there was so called l7filter (main suite
Hello.
Maybe this was answered. Is there a Deep Packet Inspection to use in Debian 9
for a firewall setup? Opensource and maybe in repository.
Thank you.
14 matches
Mail list logo
