Building A Firewall And Intrusion Detection System Dased Network Security System Using Opnsense Tools

Abstract

Computer networks are a crucial element in the evolution of information technology, because all aspects in the realm of information technology require computer networks as a medium of communication between users of the technology. OPNSense will act as a link between the internet and the Ubuntu client, which will serve as a firewall and Detection Instruction System (IDS) provider. Implementing a Firewall and Intrusion Detection System (IDS) with OPNSense Tools can be an effective solution for server security and preventing unauthorised attacks. During scanning, DDOS testing, and sniffing, the system can record attack logs, send attack notifications, protect against attacks, and test URL filters on websites. According to the proposed system topology, Virtual OPNsense will connect to the internet via Virtual Kali Linux via a NAT Network adapter, Virtual OPNSense will forward data to the server via a configured Host Only Network network adapter, and the server will include a Web server service. In Virtual OPNSense, the Firewall, Intrusion Detection System, and Webfilter will all be configured. Firewalls and intrusion detection systems (IDS) will keep servers safe by preventing attacks and recording attack logs. Then Kali Linux will run port scanning and DDoS attacks. The results of the current study were concluded as a series of tests from Building Systems, Firewall, and IDS-Based Network Security. OPNSense Tools can prevent clients from accessing specific predetermined websites, monitor via the log file menu, and block DoS attacks, but it cannot record attack logs.