Thanks! I actually got company to give me a Cisco 5506-x (replacement for the 5505) ASA with Firepower+AMP for home use/lab work but yes I pay yearly through company for SMARTnet. That is why I dual Firewall with open-source pfsense and SNORT (which Firepower is basically SNORT anyway).Wow, that's a nice home lab you have there.
Just curious, do you need to pay for subscription for your Cisco Firepower?
Just because you're paranoid doesn't mean they're not out to get you! lol, I know it looks like overkill but I do a lot of Security work professionally and for fun so safety first!Your config reminds me of something like a space shield
Seriously, nice setup you got there, thanks for sharing
Hehe.Very nice setup. I would remember to use a VPN while testing malware samples, but I'm pretty sure you are aware of that
Sophos Enterprise, our contract lets us have a home office use license called Standalone. The new Sophos Home Beta is garbage!Is that Sophos Home or another product?
Pfsense is literally much simpler as you don't need a CnC Console like I have to have for Firepower running in VMWare ESXi (you can use ASA's built in ASDM to manage but it uses freaking JAVA!!!!Probably won't be getting any of those for myself, too high a cost for me.
Guess a pfSense would be sufficient for me.
Thanks, I believe in DiD for sure! People don't even understand how much pain a simple IPS can save you by blocking known bad rep IP's especially Tor Exit Nodes.I like ur config that's what I call prevention security service.
block everything before they reach ur PC
but very expensive i think:/
Older pfSense was a little tricky but it's pretty great now as you just enable the SNORT plug in and get yourself an Oink Code.I think with that firewall and snort u don't even need vs or Sophos as real-time protection.
i tried to install snort but it's hard for me couldn't do it lol
Totally free, it's the awesome!thnx for the info
but pfsense isn't free like snort right?