"
Can this connection go through a switch or does it have to be NIC to NIC?
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
#632
General Discussion / Re: Building a Backup Firewall
December 20, 2020, 06:48:57 PM
Do I connect the LAN side or WAN side of the new firewall?
#633
General Discussion / Building a Backup Firewall
December 20, 2020, 12:34:37 AM
All,
I am in the midst of building a secondary firewall. Can I connect the LAN interface of the new firewall to my current network, so I can get the updates?
Thanks,
Steve
I am in the midst of building a secondary firewall. Can I connect the LAN interface of the new firewall to my current network, so I can get the updates?
Thanks,
Steve
#634
Intrusion Detection and Prevention / Re: Performance tuning for IPS maximum performance
December 20, 2020, 12:30:10 AMQuote from: mimugmail on December 17, 2020, 06:07:08 AM
Only enable Rules you really need. No phpnuke stuff and so on
Is there a guide on what we should enable?
#635
Web Proxy Filtering and Caching / Re: Reset of Proxy
December 17, 2020, 06:19:51 PM
Which one...there are a number of them. I would assume either in the /conf directory or the /usr/local/etc directory?
#636
Web Proxy Filtering and Caching / Reset of Proxy
December 17, 2020, 06:56:05 AM
Hello all,
Is there a way to reset Web Proxy back to defaults, so I can start again with its configuration.
Thanks,
Steve
Is there a way to reset Web Proxy back to defaults, so I can start again with its configuration.
Thanks,
Steve
#637
Web Proxy Filtering and Caching / Re: Access Denied when connecting to one site with transparent, remote-acl
December 17, 2020, 06:55:02 AM
Are you running Pi-Hole also?
#638
Web Proxy Filtering and Caching / Re: Web filtering not working, newbie alert!
December 15, 2020, 06:44:55 PM
I highly recommend you read this: https://forum.opnsense.org/index.php?topic=18191.msg82705#msg82705
#639
Web Proxy Filtering and Caching / Re: Firewall Rules for Proxy
December 15, 2020, 06:43:55 PM
Thanks...
Ok I have now added rules for transparent proxy capabilities. Here is a screenshot of the new rules layout. Am I ok in the order they are in now?
Ok I have now added rules for transparent proxy capabilities. Here is a screenshot of the new rules layout. Am I ok in the order they are in now?
#640
Web Proxy Filtering and Caching / Firewall Rules for Proxy
December 15, 2020, 12:16:54 AM
Hello all,
I have setup my proxy firewall rules but wanted to make sure the order of my rules is correct. Do I need to move the default allow to the bottom?
Thanks,
Steve
I have setup my proxy firewall rules but wanted to make sure the order of my rules is correct. Do I need to move the default allow to the bottom?
Thanks,
Steve
#641
Web Proxy Filtering and Caching / Proxy Log Errors
December 14, 2020, 01:38:23 AM
Hello all,
I am seeing this in my proxy log:
kid1| Initializing https:// proxy context
kid1| ERROR: loading file '/usr/local/etc/squid/errors/local/ERR_ACCESS_DENIED': (13) Permission denied
Many more of the second line. Is this a permissions issue and if yes what should I set the permissions to be on the /usr/local/etc/squid/errors/local directory.
Thanks,
Steve
I am seeing this in my proxy log:
kid1| Initializing https:// proxy context
kid1| ERROR: loading file '/usr/local/etc/squid/errors/local/ERR_ACCESS_DENIED': (13) Permission denied
Many more of the second line. Is this a permissions issue and if yes what should I set the permissions to be on the /usr/local/etc/squid/errors/local directory.
Thanks,
Steve
#642
Web Proxy Filtering and Caching / Re: where are the proxy logs??
December 14, 2020, 01:20:18 AM
Stupid question but are the web proxy ports TCP or UDP?
#643
General Discussion / DNS Response is Wrong
December 05, 2020, 05:59:21 PM
OK first let me say I do not know if OPNsense is the causing element but I am hoping someone could assist. I am running OPNsense 20.7.5 at home and have Unbound handling DNS and the DHCP server handling DHCP requests. I also have Pi-Hole handling adlists processing.
If I ping a device by its server name it resolves to its original IP, meaning the IP the server got created and registered to DHCP with. I have since given most servers static IPs, and did this within the DHCP service of OPNsense. When I ping the device by its FQDN it resolves to the proper IP, so somewhere I have incompatible DNS entries.
I double checked both DHCP and Unbound and things seem ok. Any thoughts?
If I ping a device by its server name it resolves to its original IP, meaning the IP the server got created and registered to DHCP with. I have since given most servers static IPs, and did this within the DHCP service of OPNsense. When I ping the device by its FQDN it resolves to the proper IP, so somewhere I have incompatible DNS entries.
I double checked both DHCP and Unbound and things seem ok. Any thoughts?
#644
20.7 Legacy Series / Re: 20.7.3 zabbix-agent 5.0.3 won't start
November 08, 2020, 06:55:15 PM
I take iot back...its now running.
Has anyone been able to monitor OPNsense using the Zabbix agent? I am running Zabbix 5.2 and the instructions on the web are for older versions.
Has anyone been able to monitor OPNsense using the Zabbix agent? I am running Zabbix 5.2 and the instructions on the web are for older versions.
#645
20.7 Legacy Series / Re: 20.7.3 zabbix-agent 5.0.3 won't start
November 05, 2020, 08:55:02 PM
What I am showing is that this never starts, no matter what I do. Any thoughts?
