hi
i want to replace my kerio with opnsense. i have tested opnsense and it performs very well but i need some features for my company.
1. authenticate users with AD( i have done that through access servers and LDAP) but it lacks accounting and quota specification
2. i need users access log so i setup web proxy and set authentication through radius but it lacks statistics for users like topweb sites , large files and so on
any advice how to set it up ?
i'd be thankful for any help
User based quota is not yet possible. Only daily session Limit. You could try proxy accounting via Sarg pkg, but there is no UI integration yet.
Quote from: mimugmail on October 15, 2018, 08:47:31 AM
You could try proxy accounting via Sarg pkg, but there is no UI integration yet.
What mimugmail wants to tell: You can use the nginx plugin to serve local content (for example HTML output generated by such a log analysis tool but you will also have to set up the cron job to update the stats)
Good idea :)
i setup a separate radius server with accounting and so on
but here is what i wanna know
is bandwidth profile which is in radius supported in opnsense proxy server ?
also is traffic which is passed through proxy server registered in radius server?
also how can i provide access to own stats for each user and managers?
Radius bandwidth profiles for Proxy are not available. Also I never heard of commercial appliances supporting such features.
are those bandwidth profiles applicable to opnsense itself?
also does proxy update accounting stats to radius?
No it's not supported, also squid itself doesnt support Radius accounting
is there any solution to have radius accounting with squid?
No. If you can configure it manually in Linux or so, send me the config and I try to add it