F5F Stay Refreshed Power Users Networks BitdefenderBOX seems unnecessary.

BitdefenderBOX seems unnecessary.

BitdefenderBOX seems unnecessary.

S
Soul_Bound
Junior Member
Find
19
07-30-2016, 08:22 PM
#1
This appears to be a server connected via WiFi, possibly designed to manage network traffic. It could function as a DNS filter, firewall, or proxy, directing all data through its services. The idea of turning it into PC software makes sense, and there are enterprise solutions available. If you need robust security without disrupting operations, open-source options might suit your needs. Your home setup with a 12C server is solid for running Linux VMs, and you're right to consider alternatives that won’t cause downtime during updates.
Reply
Reply
S
Soul_Bound
07-30-2016, 08:22 PM #1

This appears to be a server connected via WiFi, possibly designed to manage network traffic. It could function as a DNS filter, firewall, or proxy, directing all data through its services. The idea of turning it into PC software makes sense, and there are enterprise solutions available. If you need robust security without disrupting operations, open-source options might suit your needs. Your home setup with a 12C server is solid for running Linux VMs, and you're right to consider alternatives that won’t cause downtime during updates.

Reply
Reply
L
LunaDoll
Member
Find
193
07-31-2016, 11:21 PM
#2
It’s not simple, but it isn’t suitable for every scenario. I own one at my residence and another at my grandmother’s home. It functions as a home router with built-in Wi-Fi (802.11ac Wave 2). What stands out is its single LAN port—this limits its use compared to other routers. You can configure it as the sole connection besides your modem (as I do at my grandmother’s place) or turn off internal Wi-Fi and connect peripherals via the LAN port (which is how I set it up at home). Network traffic passes through this device through several checks: malicious DNS filtering, IP reputation verification, and basic IPS aimed at protecting IoT devices.

The Box subscription ($99 per year after the initial year) grants an “unlimited” license for BitDefender on computers and mobile devices. Alerts from these devices appear together with those from the software itself in a single dashboard. Some alerts I’ve seen include attempts to install malware, access infected websites, and a LAN device that seemed compromised and tried to attack the network (it did).

You can also receive notifications when new devices connect. In enterprise settings, similar functionality is offered by products like Untangle, WatchGuard, Sophos, or Fortinet—often called Next-Gen Firewalls (NGFW) or Unified Threat Management (UTM). These solutions are significantly more expensive.

Alternative options include running Snort or Suricata on PFSense or OPNSense, paired with PFBlocker or PiHole for DNS filtering. This approach relies on open-source tools and requires trusting community-maintained lists, which may lag in updates and produce more false positives that you’ll need to handle manually.

If you prefer not to run the network through a server (which demands reboots), you can deploy Snort or Suricata in IDS mode. This means they log all traffic and detect threats without blocking them. To do this, you’ll need a managed switch and enable port mirroring from your router’s LAN port to a server or VM port.

Using the router’s native built-in Wi-Fi isn’t an option if you want traffic inspected.
Reply
Reply
L
LunaDoll
07-31-2016, 11:21 PM #2

It’s not simple, but it isn’t suitable for every scenario. I own one at my residence and another at my grandmother’s home. It functions as a home router with built-in Wi-Fi (802.11ac Wave 2). What stands out is its single LAN port—this limits its use compared to other routers. You can configure it as the sole connection besides your modem (as I do at my grandmother’s place) or turn off internal Wi-Fi and connect peripherals via the LAN port (which is how I set it up at home). Network traffic passes through this device through several checks: malicious DNS filtering, IP reputation verification, and basic IPS aimed at protecting IoT devices.

The Box subscription ($99 per year after the initial year) grants an “unlimited” license for BitDefender on computers and mobile devices. Alerts from these devices appear together with those from the software itself in a single dashboard. Some alerts I’ve seen include attempts to install malware, access infected websites, and a LAN device that seemed compromised and tried to attack the network (it did).

You can also receive notifications when new devices connect. In enterprise settings, similar functionality is offered by products like Untangle, WatchGuard, Sophos, or Fortinet—often called Next-Gen Firewalls (NGFW) or Unified Threat Management (UTM). These solutions are significantly more expensive.

Alternative options include running Snort or Suricata on PFSense or OPNSense, paired with PFBlocker or PiHole for DNS filtering. This approach relies on open-source tools and requires trusting community-maintained lists, which may lag in updates and produce more false positives that you’ll need to handle manually.

If you prefer not to run the network through a server (which demands reboots), you can deploy Snort or Suricata in IDS mode. This means they log all traffic and detect threats without blocking them. To do this, you’ll need a managed switch and enable port mirroring from your router’s LAN port to a server or VM port.

Using the router’s native built-in Wi-Fi isn’t an option if you want traffic inspected.

Reply
Reply