Complete security posture review, Infrastructure as Code with the API and Ansible, auditing framework based on ISO 27001 and ENS, and comparison with VyOS and OpenWrt to decide the future of your network.
Native encrypted backups, Zenarmor, VLANs for network segmentation into zones, and hardening practices to take OPNsense to a serious security level.
OPNsense installation from hardware selection to having an operational firewall with IDS/IPS, CrowdSec, WireGuard, and well-defined rules.
Practical setup for Trivy and Semgrep in GitLab CI pipelines to catch vulnerabilities in code and dependencies before they reach production.