Itus Networks Owners Forum General Discussion

Welcome all Itus Shield owners!

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
45 messages Options
123
WhiskyDevil
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

WhiskyDevil
Hello.  Glad to see there is a place for us and sorry to see the company go under.  I never got to hook up Shield and was about to today, when I discovered ITUS is no more.

Since I don't have the latest/last pushes from ITUS is there anything I should do when I install the unit?

Thanks.
Roadrunnere42
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

Roadrunnere42
Hi WhiskyDevil

When you power up the shield go into Status >>overview and see which firmware version your are  either on rc1 or 1.51 sp1.

Don't panic if your are RC1 we can get you sorted to firmware version 1.51 sp1, also the latest version gets nightly web filter and snort rules from the internet so these are always up-to-date.?

Are you running window or Linux .


WhiskyDevil
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

WhiskyDevil
Roadrunnere42 wrote
Hi WhiskyDevil

When you power up the shield go into Status >>overview and see which firmware version your are  either on rc1 or 1.51 sp1.

Don't panic if your are RC1 we can get you sorted to firmware version 1.51 sp1, also the latest version gets nightly web filter and snort rules from the internet so these are always up-to-date.?

Are you running window or Linux .
Thanks Roadrunner.  I will connect it up and check when I get back on Saturday.  I just ordered a Raspberry Pi2 but  my laptop is Windows.
StyxUT
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

StyxUT
In reply to this post by user8446
It turns out Snort provides a way to limit the size of the IPS log through its configuration file(s).  
Reference section 2.6.3.1 here: http://manual.snort.org/node21.html

If you edit the output line (which happens to be the first line) of /etc/snort/snort7.conf and and snort8.conf you can set a size limit at the end of the line.

E.g. output alert_fast: alert.fast 1M
user8446
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

user8446
Administrator
That's the bug. It's set for 1M but clearly goes over. Thanks for researching.
Running in bridge mode, 1.51 SP1 fw
Roadrunnere42
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

Roadrunnere42
Does anyone know how many Shields  ITUS produce and ship?
hans2
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

hans2
Roadrunnere42 wrote
Does anyone know how many Shields  ITUS produce and ship?
No idea. Packetinspector.org had about 500 users at one point of time.

I've put comments on kickstarter and on openwrt just in case.
No more: Shield Pro v1, Chaos Calmer, FW 1.51 SP1
user8446
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

user8446
Administrator
In reply to this post by Roadrunnere42
It looks like about 1,136 units we're sold through the Kickstarter campaign. I have no idea how many we're sold directly.
Running in bridge mode, 1.51 SP1 fw
Me_3594
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

Me_3594
CONTENTS DELETED
The author has deleted this message.
ebokey
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

ebokey
I am a Shield user as well.

Thanks for the new spot for updates.

rah
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

rah
In reply to this post by user8446
user8446 wrote
Ericsante,

Did you try clearing the IPS logs to see if your throughput increases? There is a known bug where throughput slows as the IPS logs grow. A workaround to clear the logs:

For the command line in the GUI:

cp /dev/null /tmp/snort/alert.fast (for bridge)
cp /dev/null /tmp/snort/alert (for router)
cp /dev/null/tmp/snort/alert2 (for router)

If you want to set it up as a cronjob use:

19 3 * * 0 > /tmp/snort/alert.fast (for bridge)
19 3 * * 0 > /tmp/snort/alert (for router)
10 3 * * 0 > /tmp/snort/alert2 (for router)

I have mine clear weekly at 3:19am as above right before my update script runs. Adjust for your own preference or needs.

(Thanks roadrunnere42 for the correction)
Hi :) Thank you for taking the time to start the forum :)

I found that a space is needed here otherwise the command ends in an error.

cp /dev/null /tmp/snort/alert.fast (for bridge)
cp /dev/null /tmp/snort/alert (for router)
cp /dev/null/tmp/snort/alert2 (for router)   <--------------missing space after     null

Thanks again

r
user8446
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

user8446
Administrator
This post was updated on .
Fixed. Thanks for the catch!
Running in bridge mode, 1.51 SP1 fw
vpkirk
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

vpkirk
In reply to this post by user8446
Can we just put this under Scheduled Tasks in the GUI?

19 3 * * 0 > /tmp/snort/alert (for router)
10 3 * * 0 > /tmp/snort/alert2 (for router)
hans2
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

hans2
vpkirk wrote
Can we just put this under Scheduled Tasks in the GUI?

19 3 * * 0 > /tmp/snort/alert (for router)
10 3 * * 0 > /tmp/snort/alert2 (for router)
yes you can. Here is what I have (bridge mode):

No more: Shield Pro v1, Chaos Calmer, FW 1.51 SP1
vpkirk
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

vpkirk
Thank you!
droberts9070
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

droberts9070
In reply to this post by user8446
Hi,
Thank you to all who have setup and contributed to this site!

What if my two devices have been offline since December and now they complain that the last update didn't complete.  I missed the update to disconnect from ITUS.  I have loaded and run a new update script (1.51-6) that I found here.  the device still complains about the last update not completing.  

Did I miss a step?

Thank you!
David
hans2
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

hans2
droberts9070 wrote
Hi,
Thank you to all who have setup and contributed to this site!

What if my two devices have been offline since December and now they complain that the last update didn't complete.  I missed the update to disconnect from ITUS.  I have loaded and run a new update script (1.51-6) that I found here.  the device still complains about the last update not completing.  

Did I miss a step?

Thank you!
David
1.51SP1 updates the overall script
fw_upgrade is the daily update schedule - replacing the original ITUS version. Once this is run (you can do it manually from CLI via sh /sbin/fw_upgrade) then your problem should go away.
No more: Shield Pro v1, Chaos Calmer, FW 1.51 SP1
chimchild
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

chimchild
In reply to this post by user8446
Thanks for setting up this forum, and posting a link on the kickstarter page.

Finally had time to pull my shield out of the box today (busy student 19 credit hours last couple semesters).

Sad to see Itus close shop :( I did find and read the PC magazine article.

Thanks for the articles and how to's  to update the firmware and hot fixes.

Sorry I'm not an engineer or coder.

Micah
Shield v1.51 SP1 + Hotfix Mar 9 Bridge mode
user8446
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

user8446
Administrator
Welcome!

As you can see, you can continue to have your Shield as an additional layer of protection on your network and it's much better than some of the biggest software networking distro's out there such as PFSense, IPFire, etc because they can't do snort inline.  
Running in bridge mode, 1.51 SP1 fw
hippieelmo
Reply | Threaded
Open this post in threaded view
|

Re: Welcome all Itus Shield owners!

hippieelmo
I have had my Shield disconnect for the last couple of months so I didn't get the last update to remove it from the Itus Network. I was searching the internet to see the latest news about Shield and found that Itus has gone out of business.

I'm planning on setting my Shield back up. What do I need to do? I'm not a big Linux person so I will need a little help.

Any info on why Itus Networks closed?


Thanks for your help.
123
Free forum by Nabble Edit this page