Collaborate Disseminate
I’m kind of new to networking. Suppose that all my VLANs have access to the web server and authoritative DNS server but only VLAN 40 has access to the Internet while VLANs 10, 20 and 30 do not have access to the outside Internet. Will this… Continue reading DNS – DMZ or Internal Zone & Firewall Clarifications [migrated]
I’m working on a very limited client (based on Poky from the Yocto Project), on which I want to redirect all http/https requests to my other machine on the same network. I have nftables available on the target and verified this, by success… Continue reading Redirect all outgoing http and https requests to Burp using nftables
Various tools, such as WAFW00F, can be used to detect the presence, and often even the type, of WAF deployed on a website.
And according to this article:
[WAF fingerprinting] works by analysing the responses received from a target web app… Continue reading Is WAF fingerprinting a security threat, and can it be obfuscated?
In our organization, we use a GCP setup with Kubernetes. We generate tons of firewall logs as we provide a digital service that generates a high volume of requests from our users. Storing all these logs is quite costly, especially when you… Continue reading Logging Strategy (high costs for storing all logs)
If a firewall is a layer 3 thing, if I set up a firewall on an end point/host, how can it block traffic between hosts on the same VLAN/subnet?
I’m thinking about this in the context of micro-segmentation whereby each host has a firewall in… Continue reading How does a firewall on a node prevent layer 2 traffic?
so im kind of a beginner and i always hear that when i request data from a server only then the server is allowed to send me data, else it would be a security hole to allow a server to send me data without requesting it and i guess this is… Continue reading Enabling App Notification, Not Secure?
Consider the following cases.
A vps running a selfhosted service which is listening on port 1234.
Case 1: There is firewall configured that blocks all incoming connections by default. Now port 1234 has to be explicitly opened in the firewa… Continue reading Is firewall needed when a VPS is used to run a single service?
I understand that corporate companies can/do decrypt employee SSL/HTTPs traffic because the company owned device has a company owned SSL certifiate.
I thought the first certificate would encrypt the data and only the last one could decrypt… Continue reading How exactly do corporate companies decrypt employee SSL/HTTPS traffic on company owned corporate devices? [duplicate]
What do palo alto security profile actually do ?
How does it make a difference from normal security rule? Is it just marketing BS, so that you will need to buy more license ?
To me, it just feel like another port based security rule, maybe… Continue reading What do palo alto security profile do? [closed]
I want to integrate ModSecurity into the WAF to ensure I’m protected with OWASP Top 10 security mitigations. I’d appreciate your guidance if there are any specific configurations you recommend for enhanced security.
Continue reading How to include the coreruleset rules in OPNsense firewall WAF (Nginx)