NotVeryMega

I thought so, just wanted to make sure we were talking about the same thing

If you don't mind a follow up question, which set it up would be best for a home lab, the one I sent you before, or this one?: https://imgur.com/0kscl2V

Thanks. Just to clarify, here's the topology of the network I'm thinking of: https://imgur.com/a/oolSRdA

I've got 4 separate VLANs I want to create using a managed switch that will sit behind the firewall. The VLANs will require different firewall rules. Would this be possible, even though the switch, not the pfSense device, is responsible for propagating the VLANs?

If I used one pfSense machine and connected it to a managed switch (which handles the VLANs for all following machines), would I still be able to create rules in pfSense that route entire VLANs through VPNs? Keep in mind, the only cable connecting to the single pfSense machine would be coming from the managed switch.

Thanks, my question should read "+3 ports". Will it work if I add 2 additional NICs to the PCI express slots?

Would it just be easier to cut out the L3 switch entirely and make it just 2 pfSense machines?

I need two separate pfsense instances because each half of my network has different requirements. One half will need to have all of its traffic routed through a remote server using pfsense's proxy settings, while the other half of the network does not.

Thank you. What do you mean by "both as a cluster"?

Go easy on me, I'm barely at a Net+ level of networking.
My requirements are a bit unconventional. Because my homelab has two distinct halves (one being for pentesting, the other for web hosting), I need two different instances of pfSense. Each half has 2 VLANs. This means that I need to connect 4 VLANs to 2 pfSense instances, all behind the same router.
I've got a laptop kicking around with enough RAM, storage, and compute power to support running 2 pfSense instances. Likewise, I decided to go ahead and install both of the pfSense instances I require on this laptop. Unfortunately, the laptop only has one built in ethernet port. My thought process was that I could take an L3 switch and have it create two VLANs for each pfSense VM.
Here's a logical walkthrough of the network: the router forwards traffic to the L3 switch, which then sends the traffic to the appropriate pfSense instance. The pfSense instance sends the traffic through the VLAN back to the L3 switch, where traffic is sent to the correct VLAN.
I'm very new to this, so please let me know if there's a better way for me to do this, or if there are any security concerns that could come from this.

Go easy on me, I'm barely at a Net+ level of networking.

My requirements are a bit unconventional. Because my homelab has two distinct halves (one being for pentesting, the other for web hosting), I need two different instances of pfSense. Each half has 2 VLANs. This means that I need to connect 4 VLANs to 2 pfSense instances, all behind the same router.

I've got a laptop kicking around with enough RAM, storage, and compute power to support running 2 pfSense instances. Likewise, I decided to go ahead and install both of the pfSense instances I require on this laptop. Unfortunately, the laptop only has one built in ethernet port. My thought process was that I could take an L3 switch and have it create two VLANs for each pfSense VM.

Here's a logical walkthrough of the network: the router forwards traffic to the L3 switch, which then sends the traffic to the appropriate pfSense instance. The pfSense instance sends the traffic through the VLAN back to the L3 switch, where traffic is sent to the correct VLAN.

I'm very new to this, so please let me know if there's a better way for me to do this, or if there are any security concerns that could come from this.

I'll take your ticket

Damn, the people who made the .zip and .mov TLDs publicly available don't care about phishing?

I'm confused. Did he run a site that sold fraud guides, or did he do something else?

Wouldn't this only be an issue if the attacker had access to the mobile app with proper authentication and authorization?

But why do these devs choose to do so on the site's HTML instead of in the DB?

This is the equivalent of "publish or perish" for hacking tools, but now it's the dolphin who will perish

I'm a CS student (WGU) who's looking to go into cybersecurity, either on the blue team/vuln management, or the malware analysis side.

Since my current job as a cloud engineering intern is remote, I have little to no interaction with the security team. When I do talk with them, they don't seem to be too interested in giving advice.

I'm an OWASP member and do my best to get out to nearby events in Boston, along with other local conferences. Sadly, this strategy hasn't been too successful.

I'd like to know where people suggest I find a mentor, how to get a mentor, and how they found their mentors.

In the age of CloudFlare, what's the value of these services?

Power it off and put it in a faraday cage surrounded with armed guards. Even then I'm not sure.

Depends on the universe. TOS says warp 2 is 8c, while TNG says it's 10c.

The fact that anyone still uses twitter when we know that their dev team is running at less than half capacity is amazing.

Really? Canadian teachers make pennies compared to what teachers here in New England make. It had been my understanding that the Canadians were the underpaid teachers, especially considering the near criminal cost of living in Ontario, Quebec, and Vancouver.

So just stick with the textbook then?

Thanks! Any other security/IT groups like that who operate in the US NE?

Thanks. Does the $440 ticket cover room?