Topics - peter.vynck

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Topics - peter.vynck

Pages1

24.7, 24.10 Legacy Series / strange routing on multiwan after 24.7 upgrade

August 04, 2024, 10:07:59 PM

I have 2 WAN-connections with rules to direct traffic depending on source IP on the LAN. Also, LAN traffic gets rerouted when one link goes down.
I now have issues reaching public URL's that are managed by nginx on the router.
When I try to tracert these URL's from a PC on the LAN the tracing goes on even after the first line shows that the destination is reached?! When I tracert from the router using the LAN address I get time-outs...
Before the upgrade this was all OK. What is the cause?
How can I 'correct' this?

24.1, 24.4 Legacy Series / automatic config reset to default after disk full (Suricata bloat log)

April 21, 2024, 11:29:22 AM

Yesterday evening my router stopped responding. It was still making the start/stop sounds however.
Turns out config was reverted to default settings.
After logging in it became clear the disk was full due to a +30GB Suricata log...
I understand this clogging brings the router to a standstill but I cannot understand why the router reverted to default settings?
Question: is there an easy way to limit the size of the Suricata logging?

Tutorials and FAQs / Domino upstream webserver: how to get downstream IP in logs when using Nginx

February 18, 2021, 03:33:33 PM

Recently installed Nginx on one of the OPNsense devices I manage.
One of the upstream webservers there is a HCL Domino 11 server.

How to get the downstream (client) IP address in the domlog.nsf?

Found this post https://blog.nashcom.de/nashcomblog.nsf/dx/fail2ban-support-for-domino-intrusion-detection.htm to get me started.
Changed the notes.ini by adding HTTP_LOG_ACCESS_XFORWARDED_FOR=1 in order for Domino to register those headers.

~~In the HTTP Server config TAB in OPNsense, using the advanced mode, choose X-Forwarded-For as Real IP Source. This will add the right headers to the requests to the Domino server.~~

I changed the domlog.ntf as follows:
- I edited the form fmLogEntry and added the field ForwaredFor next to UserAddress
- I edited the view All Requests and changed the Formula for the column Remote User by replacing UserAddress with ForwaredFor

Doing this now gives me the client IP instead of the OPNsense address in that form and view. You can change the other forms and views accordingly if needed.

Drop me a line in case you want a copy of the edited template.

Tutorials and FAQs / How to connect EDPNET (Belgium) fiber to OPNsense

November 23, 2020, 10:07:32 AM

More and more fiber connections in Belgium as Proximus is enlarging their network.

For a customer with an OPNsense appliance we ordered a fiber connection from EDPnet without any hardware from the provider (typically a Fritz!box) (https://www.edpnet.be/en/business/fiber.html Fiber PRO with fixed IP).

To install this new connection in OPNsense I followed this tutorial

https://forum.opnsense.org/index.php?topic=9324.0#msg51070 (bottom post).

VLAN tag should be 10 as per this post

https://www.edpnet.be/en/support/ordering/internet/learn-about-fiber/which-routers-can-i-use-on-my-fiber-connection.html

Just don't forget to add @edpnet.net to the user name you have been given.

Hope this can help some people out.

Pages1