1. Create an image to be written to SD Card for testing
2. Test, Test, Test without affecting the EMMC, i.e. a reboot will take the device back to normal.
3. Document everything
Longer Term Roadmap
* Create an image for EMMC once stable enough to replace ITUS image
* Automatic Builds and testing CI
* try and separate configuration files from base to easy to move to new base images
* Update base OS whenever Cavium releases a new version
* Might look at getting a Turris image as it will be better supported by a team of devs working on the project.
* Look at alternatives like NanoBSD as OS as an option
1. When creating an image I will have to use fixed partitions (unless someone knows how to autoresize?) so what size SD Card should I make it for?
2. Do you want plain Vanilla images with no packages, which you can then add what you want or a default base for a start? or should it include packages by default.
IPS = Suricata or Snort (my personal preference is Suri so I will be using that)
VPN = OpenVPN
FW = IPTables
AV = ClamAV
3. I will be using GitLab (better than GitHub or BitBucket imo) to host all scripts, package files etc, this will be publically read only, and people can send merge requests for patches. Anyone have issues with this approach?
1. 4GB should be fine as that's what's on the box now
2. We should stick with Snort as a base package. Itus dropped Suri because they we're only getting ~50mbps using both cores and getting double that with Snort on 1 core. We would also loose over a year of modifications and bugfixes and the custom LuCI interface for it. Suri also isn't in the official OpenWRT repo and Snort is.
3. GitLab is fine
Basically, the updated OS from Cavium with the work and hotfixes already done and still being worked on by the community would bring the box to a whole new level.