On the ASUS rt-ac66u, you can do it by first enabling telnet using the web interface (Administration > System > Enable telnet): This is done using 2 commands to iptables. Once NxFilter is set up and running correctly, set your router to hand out the NxFilter IP address as a DNS server, from LAN > DHCP Server > DNS Server: Step 3: Configure your router to mirror all traffic to your new NSM You’ll know it’s working properly when you point one of the other machines on your network to use it as a DNS server and name resolution works properly. Security Onion is based off Ubuntu, so you can use the Linux installation instructions for NxFilter.Īgain, NxFilter has some excellent documentation, so I won’t repeat it here. Step 2: Install and configure NxFilter on the same machine Again, I won’t repeat those instructions because Doug Burks already did a great job here.ĭon’t forget to follow the instructions for setup, in that same link above. If you’re installing onto a physical machine, burn the ISO, boot to Live CD, and install. If you’re installing to a VM on Virtualbox, Doug Burks has an excellent howto here. Step 1: Install and configure Security Onion on your spare (virtual) machine Once you have all the tools, proceed as follows. This machine should be connected via Ethernet to your router for optimum results.
I’m using an ASUS rt-ac66u with the stock software.)
Note 1: The tutorial assumes you have basic computer and networking knowledge and doesn’t go over every configuration detail. DIY Home Network Security with NxFilter and Security OnionĪs the title suggests, let’s go through how to set up a DIY home NSM (network security monitoring) solution on the cheap (read: free).
0 kommentar(er)
