Language Selection

English French German Italian Portuguese Spanish

IPFire Linux-Based Hardened Firewall Gets New Intrusion Prevention System

Filed under
Linux
OSS

The most exciting thing about the IPFire 2.23 Core Update 131 release is that is ships with a new Intrusion Prevention System (IPS) that deeply inspects packets and prevents threats, thus making your networks more secure. IPFire previously used Snort as default Intrusion Detection System (IDS), but now it's been replaced with Suricata.

"This new system has many advantages over the old one in terms of performance, security and it simply put - more modern. We would like to thank the team at Suricata on which it is based for their hard work and for creating such an important tool that is now working inside of IPFire," explains developer Michael Tremer in the release announcement.

Read more

Also: IPFire 2.23 - Core Update 131 released

IPFire 2.23 - Core Update 131 Has a New Intrusion Prevention

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Android Leftovers

Intel Tries Again To Auto Enable GuC/HuC Functionality For Their Linux Graphics Driver

Intel previously tried auto-enabling GuC and HuC functionality within their Linux kernel graphics driver but ended up reverting the support since the driver didn't gracefully handle the scenarios of missing/corrupt firmware files. The driver should now be more robust in such situations so they will try again for turning on the automatic behavior, possibly for the upcoming Linux 5.4 cycle. Intel GuC and HuC have been around since Skylake and used for graphics workload scheduling, some power management bits, and for select media capabilities. For newer hardware is also being used as part of HEVC/H.265 handling. Read more

today's howtos

KDE Frameworks 5.61, Applications 19.08 in FreeBSD

Recent releases were KDE Frameworks 5.61 and KDE Applications 19.08. These have both landed in the official FreeBSD ports tree, after Tobias did most of the work and I pushed the big red button. Your FreeBSD machine will need to be following current ports – not the quarterly release branches, since we don’t backport to those. All the modern bits have arrived, maintaining the KDE-FreeBSD team’s commitment to up-to-date software for the FreeBSD desktop. The one thing we’re currently lagging on is Qt 5.13. There’s a FreeBSD problem report tracking that update. Read more