Skip to content

a-mongeon/NanoShield

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

32 Commits
.gitignore
.gitignore
 
 
32_switchd
32_switchd
 
 
README.md
README.md
 
 
appliance_amd64.nano
appliance_amd64.nano
 
 
kernel.conf
kernel.conf
 
 

Repository files navigation

NanoShield

This project aims to provide a customized NanoBSD image for Stormshield and Netasq appliances, in order to recycle old appliances.

Please note that, for now, only the appliances Netasq U70S and Stormshield SN300 are tested and valided.

Despite that original firmwares provided by Stormshield are builded for i386 architecture, the embedded CPU is a x64 CPU. Therefore, based amd64 NanoBSD images works on these appliances.

How to build the image file ?

Prerequisites:

  • Having a FreeBSD operating system running somewhere (virtual machine, old computer, ...)
  • And of course, having an appliance (U70S or SN300)

1. Download the sources

First of all, we'll need to download the sources of FreeBSD :

# fetch ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/12.2-RELEASE/src.txz

And extract it :

# tar -C / -xzvf src.txz

2. Download the required packages

# mkdir /usr/src/packages

# pkg fetch -o /root/packages/ -d pkg isc-dhcp44-server

3. Download the config file

4. Launch the build

5. Verify the image

6. Copy the image

Still a lot to do...

  • Set-up VGA and Serial
  • Set-up correctly the interfaces at startup
  • Mount the SD Card automaticly at startup
  • Provide the DHCP server package
  • Config the Firewall (IPFW) and enable related functions (natd, packet forwarding)
  • Test the image on small appliances like U30S/SN200
  • Provide the IPS/IDS Snort package as built-in
  • Write the documentation...

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages