ikhithi yokuhambisa yokudala iindonga zomlilo , eyifolokhwe yeprojekthi ye-pfSense, eyenziwe ngenjongo yokwenza ukusabalalisa okuvulekileyo ngokupheleleyo okunokuthi kube nokusebenza kwezisombululo zorhwebo zokuthumela i-firewall kunye ne-network gateways. Ngokungafaniyo ne-pfSense, iprojekthi ibekwe njengengalawulwa yinkampani enye, iphuhliswe ngokuthatha inxaxheba ngokuthe ngqo koluntu kwaye inenkqubo yophuhliso ecacileyo ngokupheleleyo, kunye nokubonelela ngethuba lokusebenzisa nayiphi na intuthuko yayo kwiimveliso zomntu wesithathu, kuquka urhwebo. enye. Izicatshulwa zomthombo wamacandelo osasazo, kunye nezixhobo ezisetyenziselwa ukuhlanganisa, phantsi kwelayisensi ye-BSD. Iindibano ngendlela ye-LiveCD kunye nomfanekiso wenkqubo yokurekhoda kwi-Flash drives (280 MB).
Umxholo osisiseko wokusabalalisa usekelwe kwikhowudi , exhasa ifolokhwe elungelelanisiweyo ye-FreeBSD, edibanisa iindlela ezongezelelweyo zokhuseleko kunye nobuchule bokuchasana nokusetyenziswa kobuthathaka. Phakathi I-OPNsense inokwahlulwa nge-toolkit yendibano evuleke ngokupheleleyo, ukukwazi ukufaka ngendlela yeepakethe ngaphezulu kwe-FreeBSD eqhelekileyo, izixhobo zokulinganisa umthwalo, ujongano lwewebhu lokuququzelela unxibelelwano lomsebenzisi kwinethiwekhi (i-Captive portal), ubukho beendlela ukulandelela indawo yokunxibelelana (i-firewall esemthethweni esekelwe kwi-pf), ukubeka izithintelo kwi-bandwidth, ukucoca i-traffic, ukudala i-VPN esekelwe kwi-IPsec, i-OpenVPN kunye ne-PPTP, ukudibanisa ne-LDAP kunye ne-RADIUS, inkxaso ye-DDNS (Dynamic DNS), inkqubo yeengxelo ezibonakalayo kunye neegrafu. .
Ukongezelela, ukusabalalisa kunika izixhobo zokudala ukucwangciswa kokunyamezela kwephutha ngokusekelwe ekusebenziseni i-protocol ye-CARP kunye nokuvumela ukuba uqalise, ngaphezu kwe-firewall engundoqo, i-node yokulondoloza eya kulungelelaniswa ngokuzenzekelayo kwinqanaba lokucwangcisa kwaye iya kuthatha. umthwalo xa kwenzeka ukusilela kwendawo yokuqala. Umlawuli unikezwa ujongano lwangoku kunye olulula lokuqwalasela i-firewall, eyakhiwe kusetyenziswa i-Bootstrap web framework.
Kwinguqulelo entsha:
- Ukusebenza kojongano lwewebhu lokudibanisa abasebenzisi kwinethiwekhi engenazingcingo (i-Captive portal) iye yanda;
- IPsec ngoku ixhasa uqinisekiso lwesitshixo sikawonke-wonke;
- Yongeza ukukwazi ukwenza izatifikethi usebenzisa i-elliptic curve algorithms;
- Inkxaso eyongeziweyo yeVXLAN kunye nezixhobo zeLoopback;
- Ukuhlolwa kokusebenza kweFirmware kuye komelezwa;
- Kwimigaqo ebophelelwe kwi-interface yenethiwekhi, kunokwenzeka ukuseta ukubophezela kwisikhokelo seepakethi (ezingenayo / eziphumayo) kwaye usebenze kwimodi engapheliyo (umgaqo wokugqibela owanelisayo iimeko zibangelwa, kungekhona owokuqala);
- I-frontend yokungena ibhalwe ngokutsha kusetyenziswa isakhelo se-MVC kwaye ngoku ixhasa ulawulo lwe-API;
- Inguqulelo engagqibekanga yePython yi-3.7;
- Iinguqulelo zesoftware ezihlaziyiweyo, kuquka i-LibreSSL 3.0, i-OpenSSL 1.1.1, php 7.2.27, isc-dhcp 4.4.2, zabbix4-proxy 1.2 kunye ne-jQuery 3.4.1;
- Inkxaso eyongeziweyo ye-Google Backup API 2.4.
umthombo: opennet.ru