Finally ditched my ISP’s router and installed my own opnsense firewall with my own Access Point. I have crowdsec running on opnsense to block attacks + adguard to block ads and malicious domains. My network is segmented between my homelab that is exposed and my AP.
Finally feels quite safe in my network 😅
Crowdsec is a pretty good package. It does blocking, but is geared more to being an IDS. Opnsense supports Suricata which is a more aggressive, and all encompassing IDS/IPS. I don’t think opnsense supports it’s cousin Snort.
I considered suricata but for now I think crowdsec works well enough, I’ll see later if I think suricata could be more useful
Cool, cool. I was just throwing it out there if you hadn’t considered it. It’s quite a powerful package.