I have confirmed that the latest Sophos Firewall SFOS version 20.0.0 GA-Build222 is using open source Snort as its Intrusion Prevention System (IPS)

Subject: I have confirmed that the latest Sophos Firewall SFOS version 20.0.0 GA-Build222 is using open source Snort as its Intrusion Prevention System (IPS)


Good day from Singapore,


I have started installing Sophos Firewall SFOS version 20.0.0 GA-Build222 on my Intel Celeron J3160 (4 GB DDR3L RAM + 64 GB SSD) on 16 Nov 2023 Thursday at 11.00 PM. Initially I had wanted to install Sophos Firewall on my newest Intel Celeron J4125 (8 GB DDR4 + 64 GB SSD) but the Linux Kernel version 4.14.302 wasn't able to detect Intel Ethernet Controller I225-V 2.5 GbE network interface cards. To workaround the problem, I had to install pfSense firewall version 2.7.0 on my Intel Celeron J4125 firewall appliance and then install Sophos Firewall on my Intel Celeron J3160 firewall appliance. Both pfSense and Sophos Firewall use open source Snort as its Intrusion Prevention System (IPS).


When I was installing Sophos Firewall on my Intel Celeron J3160 firewall appliance, I opened up the terminal and traversed the Linux filesystem. I saw the directory snort inside the /etc/ directory. This confirmed that the latest version of Sophos Firewall is indeed using open source Snort as its Intrusion Prevention System (IPS).


Regarding my Sophos Firewall, I have only performed a Basic Setup/Configuration at the moment. But I have also turned on IPS and ensured that Admin Services (HTTPS and SSH) are restricted to the LAN zone only. Further exploration of the (1) network interfaces and (2) firewall policies/rules inside Sophos Firewall will be done later when I have more time.


It is good to know that major firewall vendors like Sophos and pfSense (netgate) are using open source Snort as its Intrusion Prevention System (IPS). This goes to show that Snort is a rock solid and top notch IPS which is well supported by the world's networking leader Cisco. 


I am still unable to determine if Fortigate firewalls are using Snort as its IPS because Fortinet has extensively modified the Linux operating system for its FortiOS.


I have finished installing Sophos Firewall (Basic Setup and Configuration only) on my Intel Celeron J3160 firewall appliance on 17 Nov 2023 Friday at 1.00 AM. I have managed to sleep at about 2.00 AM and woke up in the morning at about 7.00 AM on 17 Nov 2023 Friday.


I do notice that my Sophos Firewall is a bit slow and lags. Perhaps it is because my Intel Celeron J3160 firewall appliance only has 4 GB of RAM. I will need to increase the amount of memory in the future.


Fortigate, pfSense and Sophos firewalls support SNMP.


Regards,


Mr. Turritopsis Dohrnii Teo En Ming

Targeted Individual in Singapore

Blogs:

https://tdtemcerts.blogspot.com

https://tdtemcerts.wordpress.com

GIMP also stands for Government-Induced Medical Problems.





REFERENCES

==============


[1] https://sourceforge.net/p/net-snmp/mailman/message/53245312/


[2] https://www.mail-archive.com/net-snmp-users@lists.sourceforge.net/msg33462.html


[3] https://marc.info/?l=net-snmp-users&m=170042962721047&w=2


[4] https://lists.freebsd.org/archives/freebsd-chat/2023-November/000037.html


[5] https://www.mail-archive.com/freebsd-chat@freebsd.org/msg04120.html


[6] https://marc.info/?l=freebsd-chat&m=170043125623720&w=2


Comments

Post a Comment

Popular posts from this blog

How the Singapore Government cheated my family of a HDB flat (Draft 22 Aug 2023)

Subject: How the Singapore Government cheated my family of a HDB flat (Draft 22 Aug 2023) It is a Well-Known Fact that government(s) invented mental illness to punish and torture people (and their families) who criticise the government or say bad things about the government. The Singapore Government rewarded my mother with a mental illness (schizophrenia). By leveraging mind control technology, the Singapore Government is able to make my mother hear voices in her head and trick her into believing that her neighbors are scolding her and targeting her everyday. Yes, the Singapore Government resorted to using this trickery. My mother firmly believes that her neighbors are scolding her and targeting her everyday. So we sold off our 1st HDB flat at Bedok North Street 3 and purchased another HDB flat at Yishun without careful consideration, planning and advice. When we moved to the HDB flat at Yishun, my mother still firmly believes that her neighbors are scolding her and targeting her every
Read more

[DRAFT 26 SEP 2022] HDB refuses to reduce monthly rental fees of my rental flat despite many appeals

Subject: [DRAFT 26 SEP 2022] HDB refuses to reduce monthly rental fees of my rental flat despite many appeals DRAFT 26 SEP 2022 FOR IMMEDIATE RELEASE My name is Mr. Turritopsis Dohrnii Teo En Ming. I am 44 years old. I am a Targeted Individual (TI) living in Singapore. A Targeted Individual is a person who is persecuted, targeted, marked and blacklisted by the government. After graduation from the National University of Singapore in Dec 2006, I started working in Defense Science and Technology Agency (DSTA) as an IT Engineer. But I offended Singapore Minister Mentor Lee Kuan Yew in the year 2007. When I was having a private conversation with my manager Mr. Loh Choon Fah in his office, I said: "When Lee Kuan Yew is gone, Singapore would be more democratic.". This is how I offended Singapore strongman Lee Kuan Yew. Within a few months, I started hearing threatening and menacing voices from the Singapore government. Hearing voices is also known as schizophrenia (mental illness).
Read more