Topics

Installed rspamd and created NAT rule to access port 11334 from LAN but how do I set the rspamd webgui password?

I have setup Postfix on opnsense to use Lets Encrypt certificate generated by acme plugin but how do I restart the postfix server when the certificate is renewed?

Is it possible to setup at backup remote gateway in phase1 of an IPSEC tunnel?

What will I gain from using a Gateway Group instead of just setting Priority on the single Gateways?
I just need failover.

When I enable IPS on LAN interface and use "Promiscuous mode" I cannot access my Synology NAS at LAN_VLAN1200 from a PC at LAN.

Why do I get this error?

Jun 18 14:35:14   suricata: [100388] <Error> -- [ERRCODE: SC_ERR_PCAP_DISPATCH(20)] - error code -2
Jun 18 14:35:13   suricata: [100121] <Notice> -- Signal Received. Stopping engine.

Hi,

I have tried to create a cron job that do "Dynamic DNS update" every 5 minutes.

When I look in the log I see no sign of the job executed.

Hi,

How do I configure FreeRadius plugin to authenticate against Windows Active Directory LDAP server.

I have setup LDAP:

Protocol type: LDAP
Server: IP of the LDAP server
Bind user: empty
Bind password: empty
Base DN: dc=company,DC=local
User Filter: (samaccountname=%{%{Stripped-User-Name}:-%{User-Name}})
Group Filter: (objectClass=posixGroup)

I'm not sure what to put in User Filter and Group Filter.

Can anyone help?

Hi,

I have tried to setup NAT before IPSEC.

Followed this how to doc:
https://docs.opnsense.org/manual/how-tos/ipsec-s2s-binat.html

Is it not working with 19.1?

I havn't tried with 18.7.

(tested with a pfSense instead of my opnsense box and then it is working)

After 19.1.8 update the log files views show the same text in both Date and Message fields.

Modify: It is all the logs, not only IPSEC log.

Hi,

I'm trying to replace a pfSense with OPNsense, but I cannot get IPSEC BINAT to work.

At pfSense I have this:
https://www.dropbox.com/s/ppdunpmmqpsgdyy/2019-05-06_1705.png?dl=0

At OPNsense I have setup this:
https://www.dropbox.com/s/soatzy8z50vuzpb/2019-05-06_1708.png?dl=0
https://www.dropbox.com/s/4ab1i9rnz1k2y9k/2019-05-06_1709.png?dl=0
https://www.dropbox.com/s/3ux1wcranpjc0gt/2019-05-06_1710.png?dl=0

When I try to ping 192.168.11.245 from 192.168.17.101 I get no responce with OPNsense.

The OPNsense do not seems to create the manual SPD I have typed.

Anyone that can help?

With OpenVPN access server there is both a tunnel network for dynamic clients and one for static clients.
How do I add a tunnel network for static clients to a OpenVPN server at OPNsense?

If I add a tunnel network outside server tunnel network with client specific overrides, the trafic is not routed correct.

Hi,

Can I use the same server certificate for multiple OpenVPN instances?

under VPN->IPSEC->Advanced Settings there is a IPSEC Debug part.

Is there any help page explaning the meaning of: Silent, Basic, Audit, Control, Raw, Highst?
(In PfSense there was a Diag after control but no Basic.)