Security Essentials
Core security features in Altostrat, from blocking malicious traffic to proactive monitoring.
Altostrat’s Security Essentials feature helps you block or restrict malicious traffic and undesirable content, improving overall network resilience.
Key Features
- Blocking Known Malicious IPs Auto-updated lists of IPs associated with threats (e.g., botnets)
- Intrusion Prevention Detection and mitigation of suspicious traffic patterns
- MikroTik Firewall Integration Seamless interaction with MikroTik firewall rules to reduce attack surface
- Logging & Alerts Comprehensive monitoring of security events for rapid incident response
Default Policy
When you first sign up, Altostrat creates a default Security Essentials policy. This policy includes critical block lists such as:
- RFC 1918 IP Ranges
- Team Cymru FullBogons
- FireHOL Level 1
- Emerging Threats Block IPs
You can customize or replace this default policy at any time.
Creating a Security Essentials Policy
Go to Security Essentials
Navigate to Policies → Security Essentials to view existing policies, including the default one.
Add a New Policy
Click Add or + New. Enter a policy name (e.g., “High Security”).
Select Block Lists or Features
Choose from available lists such as Team Cymru FullBogons, Compromised IPs, and AlienVault OTX. Enable or disable features based on your security requirements.
Save and Apply
Confirm your policy changes:
- Assign the policy to a site from the site’s overview
- The router will update automatically via the Management VPN
Editing a Security Essentials Policy
Open Security Essentials
Access the Altostrat portal and navigate to Policies → Security Essentials.
Pick a Policy to Edit
Select an existing policy. Toggle block lists on or off, or add new ones as needed.
Changes Propagate Automatically
Sites using this policy will receive updates after a brief synchronization period.
Removing a Security Essentials Policy
Removing a security policy from a site may expose it to threats if no alternative protection is in place.
Locate the Policy
Navigate to Policies → Security Essentials and find the policy you want to delete.
Delete
Click the Remove or Trash icon and confirm your choice. Sites using this policy will no longer enforce the associated block lists.
Best Practices
- Monitor Logs: Regularly check the Orchestration Log for security-related events or anomalies
- Combine with Content Filtering: Implement Content Filtering to block unwanted website categories
- Regularly Audit Policies: Review your block lists and settings periodically as new threats emerge
- Educate Users: Maintain a strong human firewall to complement technical security measures