Richard,
One thing to take a look at would be Security Onion. I use this in concert
with my other security gear as a means by which to analyze all traffic coming
in\out of my network. That analysis drives several follow-on activities such
as Snort tuning, forensics, etc.
Re: wifi, check out
Richard,
I agree with Eero, VLANs are real security. It will require time and
effort and maybe some additional equipment. If it helps you sleep at night,
it's worth it. You might start with just IP groupings and rules though.
I have an admin network that only has a couple of
Well. You should use VLANs to segment IoT devices into different network.
Anyway... some commercial vendor might provide a bit better protection ;)
You can replace you apple timemachine with unifi aps.
https://www.ubnt.com/unifi/unifi-ap/
Eero
On Sun, May 13, 2018 at 10:44 PM Richard A. Relph
Hi,
I’ve been using a SG-2440 for a couple of years now, but only as a
well-maintained basic NAT router. I know I’m not using all the capabilities the
box offers.
I’m increasingly concerned about ‘infected’ IoT devices inside my firewall.
I don’t have any specific concerns. But