Time based ACL (access control lists) features do not exist in BSD’s packet filter (PF). Having your network “shut down” at certain times (for instance, allow certain network ranges or specific IP addresses only during “business hours” or a specific time range), can be achieved with a simple PF table and a cronjob. First, let’s…
Category: OpenBSD
Install OpenBSD 6.0 on a Soekris net6501
Recently I bought a Soekris net6501 to build a home network in my new house.Things you need before you start: USB / mSSD drive to install OpenBSD on USB drive to boot from Serial cable for the initial installation First go to a mirror and download the amd64 OpenBSD install image, which ends on the…
OSSEC: building an OpenBSD package
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response. It runs on most operating systems, including Linux, MacOS, Solaris, HP-UX, AIX and OpenBSD. There is no OSSEC package available on the OSSEC website or in the OpenBSDs ports repositry,…