Mushure memwedzi mitanhatu yekuvandudza, Vagadziri veOPNsense vakazivisa kuburitswa kweiyo yekugovera kit yekugadzira OPNsense 19.1 firewalls.
OPNsense ibazi reiyo pfSense chirongwa, yakagadzirirwa kugadzira kugoverwa kwakasununguka zvachose kunogona kuve nekushanda kwemhinduro dzekutengesa kuendesa kweye firewalls uye network magedhi.
OPNsense main maficha
Kusiyana pfSense, chirongwa ichi chakaiswa nekuda kwekusadzorwa nekambani, kana zvisiri izvo kukura kwayo kunoitwa pamwe nekutora chikamu chaiko kwenharaunda.
Nayo kune yakajeka nzira yekusimudzira, mukuwedzera pakupa mukana wekushandisa chero zvayakagadzira mune yechitatu-bato zvigadzirwa, kusanganisira vezvokutengeserana.
Naizvozvo sosi yekuparadzirwa kwekodhi, pamwe nezvikamu, pamwe nemidziyo inoshandiswa kuvaka iyi sisitimu kana kuiwedzera inotongwa zvakananga pasi pezenisi reBSD.
OPNsense kugona kunosanganisira yakazara yakavhurika yekuunganidza maturusi, kugona kuisa mapakeji paFreeBSD, mutoro kuenzanisa, webhu-based interface kuronga vashandisi kuti vabatanidze kunetiweki.
Kune rimwe divi, se anowana kuvepo kwemaitiro ekutarisa mamiriro ehukama (pf-based stateful firewall) bandwidth, traffic kusefa, kugadzirwa kweVPN kunoenderana IPsec, OpenVPN uye PPTP, kusangana neLDAP neRADIUS, rutsigiro rweDDNS (simba DNS), inoonekwa uye yakajeka graphic system.
Uye zvakare, iyo yekuparadzira kit inopa nzira yekugadzira kukanganisa kushivirira kumisikidza kunoenderana nekushandiswa kweiyo CARP protocol.
Izvi zvinobvumira spare node kuti imhanye mukuwedzera kune iyo huru firewall, iyo inozozvimiririra otomatiki padanho rekumisikidza uye inotora mutoro mune chiitiko chekutanga node kutadza.
Mutungamiri anopihwa yemazuva ano uye yakapusa interface yekumisira firewall, Yakavakwa neBootstrap webhu fomati.
Nezve iyo nyowani vhezheni yeOPNsense 19.1
Sezvambotaurwa pakutanga munguva pfupi yapfuura Uku kuburitswa kutsva kwakaburitswa uye shanduko kuHardenedBSD 11.2 yakaitwa.
Zvakare iyo FreeBSD 11.2 forogo, iyo inosanganisa yekuwedzera nzira dzekudzivirira uye matekiniki ekurwisa njodzi dzekushandisa nzira dzekushandisa.
Neiyi vhezheni itsva tinogona kushandisa iko kugona kushandisa maviri-chinhu chokwadi zvinoenderana nemubatanidzwa wechokwadi kuburikidza neyekunze LDAP server uye yemuno TOTP imwe-nguva password password.
Chimwe chinhu chakavakirwa-mukati ndeye API yekugadzirisa aliases mumitemo yemoto (inobvumidza kushandisa akasiyana panzvimbo yemahosi, chiteshi manhamba uye subnets) pamwe neAPI kutumira kunze OpenVPN mutengi base.
Bandwidth throttling mode yakavakirwa paPIE algorithm (RFC-8033) uye kugona kuteedzera NAT mitemo inotsigirwawo.
Tsigiro yeWPAD / PAC uye yakakosha yekubatanidza proxy yakawedzerwa kune proxy yewebhu iyo, pamwe nekukwanisa kuburitsa zvitupa zveP12 nemapassword-akatsanangurwa nemushandisi.
Pane zvimwe zvinhu zvinogona kuwanikwa mukuburitswa uku ndezvi:
- Plugin yeET Pro telemetry mitemo.
- Kuwedzerwa kweDpinger kuongorora kuwanikwa kwegedhi
- Yakawedzerwa IPv6 DUID rutsigiro.
- Tsigira Dnsmasq DNSSEC.
- Software inogadziridza: LibreSSL 2.7, Unbound 1.8, Suricata 4.1, Phalcon 3.4, Perl 5.28.
- Yakagadziridza mafaira ekushandura mafaira kuRussia.
- Iyo yakasarudzika UI dhizaini theme inopa inowira padivi menyu.
- Yakagadziriswa backup ekunze plugins, Bind, Nginx, Ntopng, VnStat, uye Dnscrypt-proxy.
Dhawunorodha vhezheni itsva ye OPNsense 19.1
Si unoda here kuwana iyi nyowani vhezheni solamente Iwe unofanirwa kuenda kune yayo yepamutemo webhusaiti uye muchikamu chekutora unogona kuwana chinongedzo chekutora iyi vhezheni itsva.
Magungano akagadzirirwa muchimiro cheLiveCD uye nehurongwa hwemifananidzo yekunyorera kuFlash drives, saizi yemufananidzo ingangoita 265MB.