{"id":193,"date":"2016-01-12T14:56:08","date_gmt":"2016-01-12T21:56:08","guid":{"rendered":"http:\/\/wiki.lillerant.com\/?p=193"},"modified":"2016-02-01T12:06:54","modified_gmt":"2016-02-01T19:06:54","slug":"unified-threat-management-utm-for-the-home","status":"publish","type":"post","link":"http:\/\/wiki.lillerant.com\/?p=193","title":{"rendered":"Unified Threat Management (UTM) for the home"},"content":{"rendered":"<p>Overkill?\u00a0 Probably, but overkill is my middle name (actually, it&#8217;s <em>Max<\/em>).<\/p>\n<p><!--more--><\/p>\n<p>More uses for outdated shit-boxes?\u00a0 Count me in!<\/p>\n<p>I used to roll <a href=\"https:\/\/www.pfsense.org\/download\/\" target=\"_blank\">pfSense <\/a>at home, but due to my lack of BSD awesomeness it had some hiccups, and as we all know&#8211;internet hiccups are pretty low on <a href=\"https:\/\/en.wikipedia.org\/wiki\/Wife_acceptance_factor\" target=\"_blank\">WAF<\/a>.<\/p>\n<p><img loading=\"lazy\" class=\"aligncenter size-full wp-image-195\" src=\"http:\/\/wiki.lillerant.com\/wp-content\/uploads\/2016\/01\/unimpressed-cat-3.jpg\" alt=\"unimpressed-cat\" width=\"433\" height=\"218\" srcset=\"http:\/\/wiki.lillerant.com\/wp-content\/uploads\/2016\/01\/unimpressed-cat-3.jpg 433w, http:\/\/wiki.lillerant.com\/wp-content\/uploads\/2016\/01\/unimpressed-cat-3-300x151.jpg 300w\" sizes=\"(max-width: 433px) 100vw, 433px\" \/><\/p>\n<p>So I had a spare <a href=\"http:\/\/ark.intel.com\/products\/29765\/Intel-Core2-Quad-Processor-Q6600-8M-Cache-2_40-GHz-1066-MHz-FSB\" target=\"_blank\">Q6600<\/a> begging to be put to use and I thought &#8220;<em>hey, I&#8217;m a glutton for punishment&#8211;let&#8217;s take another crack at this.<\/em>&#8221;<\/p>\n<p>I consulted Reddit and it seems that <a href=\"https:\/\/www.sophos.com\/en-us\/products\/free-tools\/sophos-utm-home-edition.aspx\" target=\"_blank\">Sophos UTM 9 Home edition<\/a> is absolutely adored.<\/p>\n<p>Reddit Thread:<a class=\"title may-blank \" tabindex=\"1\" href=\"https:\/\/www.reddit.com\/r\/homelab\/comments\/36avij\/pfsense_ipfire_or_sophos_utm_home_edition\/\"> Pfsense, ipfire or sophos utm home edition<\/a><\/p>\n<p>Here are some links to get going:<\/p>\n<p><a href=\"http:\/\/techbast.com\/2015\/03\/perform-a-basic-configuration-sophos-utm-in-12-simple-steps.html\" target=\"_blank\">Perform a basic configuration Sophos UTM in 12 simple steps<\/a><\/p>\n<p><a href=\"https:\/\/www.sophos.com\/en-us\/support\/knowledgebase\/115147.aspx\" target=\"_blank\">DHCP Config<\/a><\/p>\n<p><a href=\"https:\/\/community.sophos.com\/products\/unified-threat-management\/f\/51\/t\/22429\" target=\"_blank\">UTM Tweaking Guide 2.0<\/a><\/p>\n<p><a href=\"https:\/\/community.sophos.com\/products\/unified-threat-management\/f\/55\/t\/45070\" target=\"_blank\">Master List of Web Exceptions<\/a> (hey Sophos, nice forum migration)<\/p>\n<p>Update 01: Armed with nothing but the above, some resolve and a mere <em>4 hours of my time<\/em> I&#8217;ve managed to migrate my home network off a <a href=\"http:\/\/tomatousb.org\/\" target=\"_blank\">Tomato-based<\/a> router to this feature-packed beast.\u00a0 Even have it playing nicely with my <a href=\"http:\/\/pi-hole.net\/\" target=\"_blank\">internal DNS server<\/a>!<\/p>\n<p>Update 02: Default blocking of .exe files really messes with the installation of Avira Anti-virus, as it attempts to download and execute an .exe without any notification it is doing so.\u00a0 Had to create an exception to complete installation.\u00a0 Learned to read logs to figure that one out.<\/p>\n<p>Update 03: The recent Pi-Hole updates are seemingly too aggressive as Hotmail stopped working.\u00a0 Need some tweaks&#8230;<\/p>\n<p>Update 04: OK, <em>now<\/em> things are serious.\u00a0 Daddy can&#8217;t play his games and keeps getting disconnected mid-match.\u00a0 That ain&#8217;t gonna fly.\u00a0 Sniffed all the addresses that Origin seems to use and whitelisted them.\u00a0 Didn&#8217;t fix it.\u00a0 Then I added my gaming PC to the <a href=\"https:\/\/www.reddit.com\/r\/sophos\/comments\/3qmgrg\/sophos_utm_web_filter_breaks_xbox_one_xbox_live\/\" target=\"_blank\">transparent mode skiplist<\/a>.\u00a0 Seems to have helped?<\/p>\n<p class=\"name\">\n","protected":false},"excerpt":{"rendered":"<p>Overkill?\u00a0 Probably, but overkill is my middle name (actually, it&#8217;s Max).<\/p>\n","protected":false},"author":1,"featured_media":203,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[1],"tags":[],"_links":{"self":[{"href":"http:\/\/wiki.lillerant.com\/index.php?rest_route=\/wp\/v2\/posts\/193"}],"collection":[{"href":"http:\/\/wiki.lillerant.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/wiki.lillerant.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/wiki.lillerant.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/wiki.lillerant.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=193"}],"version-history":[{"count":10,"href":"http:\/\/wiki.lillerant.com\/index.php?rest_route=\/wp\/v2\/posts\/193\/revisions"}],"predecessor-version":[{"id":226,"href":"http:\/\/wiki.lillerant.com\/index.php?rest_route=\/wp\/v2\/posts\/193\/revisions\/226"}],"wp:featuredmedia":[{"embeddable":true,"href":"http:\/\/wiki.lillerant.com\/index.php?rest_route=\/wp\/v2\/media\/203"}],"wp:attachment":[{"href":"http:\/\/wiki.lillerant.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=193"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/wiki.lillerant.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=193"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/wiki.lillerant.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=193"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}