I haven't played with many GUI tools other than FlowBAT, which is very new,
but I have been using SiLK at scale for some time now, and it's been very
stable.
Since we run securityonion, I've been using these instructions for
installing SiLK/Yaf and configuring rwflowpack:
http://www.appliednsm.com
OpenVPN doesn't come with Windows, so you would need to install client
software for your clients, and then export a profile. Setup in pfSense is
easy and the client export is easy, but not all software clients are free.
You would likely need create each OpenVPN user and touch each laptop or
other
I've been using the Supermicro Atom Boards, specifically the D510 here:
http://www.supermicro.com/products/motherboard/ATOM/ICH9/X7SPA.cfm?typ=H
My first Atom 330 was a disaster because of the RealTek NICs, but the
Supermicro above has two Intel NICs that have no issues running jumbo
frames.
For
I've been having limited success with a the Aventra smart card and
pfSense's OpenVPN. I've had success using OpenSC libraries and OpenSSL to
get the key and certificate onto the token. Client experience on Windows XP
and Vista's dicey and requires frequent virtual NIC resets. In Windows 7,
it's bee
I'm assuming your VOIP is using SIP and generally uses ports 5060 and 5061.
Registration and call control goes over those ports. If your range of RTP
ports is blocked (usually a wide range of ports like 1-2) then you
will not hear any voice. I believe pfSense 2.1 has all ports blocked on
ip