Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - morcom

Pages1
#1
General Discussion / OPNsense - great project - what about Patreon?
July 20, 2016, 11:58:45 AM
Hi Guys,

It is a great project - but to grow I think you need money - for food and beer.. or juice....

What about https://www.patreon.com/

It is nice and good way to get some founds plus to be in contact with all interested.

Sometimes it is easier to donate 1 or 2 or more Euros every month - and to see as well that you have some money to grow in the community. And to get updates... what is happening.

Shouldn't you join this?

Mike
#2
General Discussion / Intrusion Detection issue - IPS activated - no acces from LAN to network
July 20, 2016, 11:51:29 AM
Hi again...

So I have one issue with Intrusion Detection on my home used firewall.

I'm using this board together with OPNsense: http://www.hcipctech.com/Home/ProductCon?productid=317&english=2

It is nothing powerful - but actually it is fine for small home firewall - and as I have some systems which should be protected - I need as well ID service. Before I have tested ClearOS (works fine - was blocking most unwanted attacks on VoIP server), then SOPHOS UTM 9 (was working fine but it was looking that it was blocking much less than ClearOS - so on my FusionPBX I saw plenty of attacks).

As I was not really happy with the way Sophos UTM was working - I have decided to move to open source... and now - ID is setup - but in any situation I'm activating IPS - whole traffic is blocked totally.
I have IPS active on another OPNsense in datacenter (installed on top of PROXMOX VM) - and I have no issues with traffic from LAN.
At home - IPS activated - no traffic from LAN. No IPS - all works.

Settings on both instances are more less the same....

Any ideas why? Is it related to hardware?

Thanks for any tips where to look.

Mike
#3
General Discussion / Re: HAProxy with authentication
July 20, 2016, 11:31:26 AM
 :)

Looks like solved.

So actually Advanced configuration is needed.

In General -> Global Parameters in Advanced mode:

Custom options:
Code Select
userlist httpusers
  user username insecure-password password

Then in Frontend -> Advanced configuration

Options pass-through:
Code Select
  acl auth_acl http_auth(httpusers)
  http-request auth realm basicauth unless auth_acl

Then you test syntax and then you Apply.

I would suggest to restart as well HAProxy.

I have noticed after changes that after restart HAProxy is not always up. In that case if I Disable and Enable HAProxy - it is up back. Starting from dashboard was not working for me... but maybe it is just me.

After that be sure to clean all your cookies and access the site. It should ask for authentication.

That is what was needed.... So it works fine.

Self solving - I need just to be more familiar with the way how the OPNsense is working. But so far - I like this. I like flexibility - and so far in most cases it is very flexibel.

Thanks

Mike
#4
General Discussion / [SOLVED]: HAProxy with authentication
July 19, 2016, 05:39:56 PM
Hi,

I have HA Proxy finally working - modifying some firewall rules - but as expected.

Now I have second question...
Server should be accessible after authentication - just basic.
I know in HAProxy I can do that  in theory adding some extra configuration like

Code Select
userlist httpusers
  user username insecure-password password

frontend server2
  acl auth_acl http_auth(httpusers)
  http-request auth realm basicauth unless auth_acl

Can I do that through HAProxy GUI - or the only possibility is to dig inside the config file from CLI?

If GUI is possible to use - any suggestions?

Thanks in advance for help

Mike
#5
General Discussion / Re: Proxing two servers through OPNSENSE
July 19, 2016, 05:13:09 PM
Ok - looks like some firewalling issues.

Now works...

Mike
#6
General Discussion / [SOLVED]: Proxing two servers through OPNSENSE
July 19, 2016, 04:02:46 PM
Hi,

Thanks for nice product! It looks very promising...

I have a question related to possible use of HA Proxy.

Actually I have two Tomcat servers which I want to keep behind UTM.
So all traffic is monitored and eventually blocked if detected as intrusion attack.

One Tomcat server should be unsecured (server1) - second secured with SSL and login restrictions(server2). But - secured on Proxy level... eventually SSL on proxy level (I had that before working with Nginx).

Generally I want to use one WAN IP for this.

I have no issues to setup HAProxy using as frontend/backend to server1. Question is - is it possible to set up this in such a way that when calling port 80 - I would visit server1, but when calling port 443 with HTTPS - we would be redirected to server2?

I had this as well in Sophos UTM... I think is secured web services section - and it was looking like working solution. But not sure what I can do in Opnsense....

Thanks for any tips.

Michal...
Pages1