Kev tso tawm ntawm cov khoom siv faib rau kev tsim firewalls OPNsense 21.7 tau tshwm sim, uas yog ib ceg ntawm pfSense qhov project, tsim nrog lub hom phiaj ntawm kev tsim cov khoom siv qhib tag nrho uas tuaj yeem muaj kev ua haujlwm ntawm qib kev lag luam daws teeb meem rau kev xa cov firewalls thiab network gateways. . Tsis zoo li pfSense, qhov project yog positioned raws li tsis tswj los ntawm ib lub tuam txhab, tsim nrog kev koom tes ncaj qha ntawm lub zej zog thiab muaj ib tug tag nrho cov pob tshab txheej txheem kev loj hlob, nrog rau muab lub sij hawm rau siv ib yam ntawm nws txoj kev loj hlob nyob rau hauv peb cov khoom, nrog rau kev lag luam. cov. Cov cai ntawm cov khoom faib, nrog rau cov cuab yeej siv los ua ke, raug faib raws li BSD daim ntawv tso cai. Cov rooj sib txoos tau npaj nyob rau hauv daim ntawv ntawm LiveCD thiab cov duab kaw rau hauv Flash drives (422 MB).
Cov ntsiab lus tseem ceeb ntawm kev faib khoom yog ua raws li HardenedBSD code, uas txhawb nqa cov nkhaus synchronized ntawm FreeBSD, uas sib txuas ntxiv cov txheej txheem tiv thaiv thiab cov tswv yim los tawm tsam kev siv cov kev tsis zoo. Ntawm cov yam ntxwv ntawm OPNsense yog cov cuab yeej qhib tag nrho, lub peev xwm los nruab rau hauv daim ntawv ntawm cov pob khoom nyob rau sab saum toj ntawm FreeBSD li niaj zaus, thauj khoom ntsuas cov cuab yeej, lub web interface rau kev teeb tsa cov neeg siv kev sib txuas rau lub network (Captive portal), muaj cov txheej txheem. rau kev taug qab cov kev sib txuas hauv xeev (xeev firewall raws li pf), teeb tsa bandwidth txwv, kev lim tsheb khiav, tsim ib lub VPN raws li IPsec, OpenVPN thiab PPTP, kev koom ua ke nrog LDAP thiab RADIUS, kev txhawb nqa rau DDNS (Dynamic DNS), ib qho kev qhia pom thiab daim duab.
Kev faib tawm muab cov cuab yeej tsim cov teeb tsa tsis raug cai raws li kev siv CARP raws tu qauv thiab tso cai rau koj tso tawm, ntxiv rau qhov tseem ceeb ntawm qhov hluav taws xob, ib qho chaw thaub qab uas yuav tau txais synchronized ntawm theem teeb tsa thiab yuav siv sij hawm dhau qhov kev thauj khoom hauv qhov tshwm sim ntawm qhov ua tsis tiav ntawm lub hauv paus node. Tus thawj tswj hwm tau muab qhov niaj hnub thiab yooj yim interface rau kev teeb tsa lub firewall, tsim siv lub vev xaib Bootstrap.
Ntawm cov kev hloov pauv:
- Kev faib tawm yog raws li kev txhim kho ntawm HardenedBSD 12.1. Qhov kev tso tawm tom ntej, 22.1, npaj yuav tsiv mus rau FreeBSD 13.
- Ib tug tshiab installer tau thov uas muab built-in kev txhawb nqa rau installation ntawm partitions nrog ZFS cov ntaub ntawv system thiab tsim nyog rau kev ua hauj lwm nyob rau hauv virtual machines uas siv UEFI.
- Lub interface rau hloov kho firmware tau redesigned.
- Nyob rau hauv lub cav uas muaj kev cuam tshuam txog kev lim dej, nws tau ua kom ntseeg tau tias cov txheej txheem kev cai tam sim no raug tso tawm kom tsis txhob muaj kev txhais lus tsis raug tom qab hloov cov txheej txheem.
- Hauv cov qauv uas tso cai rau koj los koom nrog cov txheej txheem ntawm tes hauj lwm, cov tswv thiab cov chaw nres nkoj nrog lub cim tshwj xeeb hauv cov cai ntawm firewall (aliases), muaj peev xwm hais meej me ntsis qhov ncauj qhov ntswg (wildcard mask) hauv network qhov ncauj qhov ntswg tau ntxiv.
Tau qhov twg los: opennet.ru