Need suggestions for WAF features and http traffic rules
Posted: Sat Feb 06, 2021 9:08 pm
I need a way to filter / see / block evil bots, I need to setup rules based on user agent, referrer, maybe geoip, etc. Having a referse proxy / cache server would be a plus. Basically most features that CloudFlare offers.
I think Mikrotik's features related to this are limited, no ? Mikrotik can ban individual IPs manually, it has a referse proxy / cache server, DNS cache is also nice, but other than that it looks like I need something else for the above needs.
Can someone recommend a setup for this ? I think what I need is a WAF like PfSense, OpnSense, Sophos. But is it possible to just have one of these and also do Mikrotik's job ?
I was thinking to create a fast desktop PC with more eth ports and use it instead of Mikrotik too.
Is that a bad ideea ? Is it more common to just separate these two (Mikrotik routing and WAF) so that they each have dedicated resources ?
It is harder to learn two different systems, that is also a reason to just build / use one.
I think Mikrotik's features related to this are limited, no ? Mikrotik can ban individual IPs manually, it has a referse proxy / cache server, DNS cache is also nice, but other than that it looks like I need something else for the above needs.
Can someone recommend a setup for this ? I think what I need is a WAF like PfSense, OpnSense, Sophos. But is it possible to just have one of these and also do Mikrotik's job ?
I was thinking to create a fast desktop PC with more eth ports and use it instead of Mikrotik too.
Is that a bad ideea ? Is it more common to just separate these two (Mikrotik routing and WAF) so that they each have dedicated resources ?
It is harder to learn two different systems, that is also a reason to just build / use one.