I’m currently playing around with routers & their software as my ISP’s router simply sucks for my network. I want to make a router out of some old home-server. It’s a dual core 2 duo with 2 GB RAM. Should be more than enough. So I read a lot of reviews and articles about different products and in the end tried pfSense & untangle. They offer A LOT of security features and the design of pfSense somehow reminded me at Comodo. As both didn’t really work well I wished Comodo had made such a product already.
First of all it could work together with Comodo Internet Security:
Instead of having to use a VPN/SSH tunnel to encrypt my traffic from my computer to the router (to prevent sniffing) a Comodo-router & CIS on a computer could use some kind of Comodo encryption? E.g. CIS will encrypt all browser/mail/messenger traffic and only Comodo-router would know how to decrypt it. So anything between my computer and the router wouldn’t know what to do with the data.
Comodo AV in the router:
untangle uses Kaspersky, pfSense uses ClamAV… When someone is downloading data it will first go through the router. At this point the data is already getting scanned by the router AV software. Comodo-router could use the Comodo AV for this. Additionally this could work together with CIS again: If the Comodo-router found a threat while downloading, forward a message to the User who downloaded it and ask him if he wants to receive the downloaded file or if the Comodo-router should simply block/delete it.
ComodoDNS in the Comodo-router to block ads & malware sites:
Implement ComodoDNS into the Comodo-router or just some kind of “hosts” file. The Comodo-router will automatically block ads & malwaresites based on the ComodoDNS database. And again CIS users could profit here: Let them know if the Comodo-router is blocking something. (Okay this information might be useless as the use of ComodoDNS on the computer would already display a block-warning… and for blocked ads no one really needs a popup for).
pfSense & untangle offered a lot more options ofc. Snort for packet filtering, creating of VPN’s, torrent stuff, update caching (here CIS users could profit again: As soon as a CIS update is out, the Comodo-router will download and save it. When a user wants to update CIS he will download it from the Comodo-router instead of comodo.com), etc
Especially the traffic encryption is something I would really love to have. Right now I use a SSH-tunnel to my dedicated server in France. The download speed isn’t that bad (5mbit/s-8mbit/s) but far away from the possible 20mbit/s.
Any chances to see such a product from Comodo? As far as I understand pfSense & untangle they are just some FreeBSD distributations that have standard drivers and work on pretty much any computer.