Messages

1

General Discussion / Have VPN on one interface only

« on: June 08, 2019, 08:59:53 pm »

Hi,

I am trying to setup a VLAN where all internet traffic is routed via a VPN to the internet.

I followed the guide here https://support.nordvpn.com/Connectivity/Router/1292598142/OPNsense-18-7-setup-with-NordVPN.htm and the VPN connects and I can access the Internet - however something must be wrong as my IP is still the normal one and not the one from NordVPN :/

I suspect it is the outbound NAT rules, but my rules as per the image seems OK to me .

Any suggestion as to where I should troubleshoot ?

2

General Discussion / Re: OPNsense and Graylog

« on: November 05, 2017, 08:48:42 am »

Did you get the Elk stack up and running ?

3

General Discussion / Re: OpenVPN - HMAC authentication failed

« on: June 07, 2017, 08:26:43 pm »

Thanks - somehow this helped.

4

General Discussion / OpenVPN - HMAC authentication failed

« on: June 04, 2017, 10:14:38 am »

Hi

I'm on 17.1.8 and have had a OpenVPN server running for about a year, however one of the certificates expired so it stopped working. I have then tried to create new certificates for the user and the server but when I export and try to connect from my phone I keep getting the error that:

Authenticate/Decrypt packet error: packet HMAC authentication failed



What could be wrong - I have then created new server, new user, new certificates but nothing helps.
I am exporting the package for OpenVPN connect for android.

I googled a bit but didn't seem to help me.

Any help much appreciated.

5

17.1 Legacy Series / Low internetspeed

« on: March 26, 2017, 11:51:41 am »

I recently upgraded my internet connection to 500/500 Mbit.
However when i measure the speed through OPNsense I only get around 200/250 but when I measure directly with my laptop I get full speed.

I have a previous thread regarding performance with OPNsense on ESXi as I thought that might be the reason - I then tried to build a standalone machine to see if that helped but that did very little to the performance.

I'm running latest version with disable of hardware offload. 3 VLans. one realtek and one intel nic.
The CPU or memory is in no way maxed out when testing. 
Intrusion detection is also running - could that be the culprit ?

Is there some tweaks that could be made to give me full speed ?

6

Hardware and Performance / Max thoughput on EsXi

« on: March 08, 2017, 08:20:03 pm »

Hi,

I have a Mac Mini (i5 with 16 GB Ram) running Esxi and one of of the VM's is OpnSense which works as my FW.
Recently I have had my WAN speed upgraded to 500/500 but when I do speedtest max speed I get is 180/180.

With the laptop directly on my modem I get full speed.

So now my thoughs are that my current setup is not powerfull enough - does that sounds reasonable ?

I am willing to buy stand-alone hardware to use for OPNSense - what would you estimate the minimum specs are for a decent computer / router to handle app 1 GB throughput ?

7

16.7 Legacy Series / Re: IPSec Roadwarrior - access to the internet

« on: March 06, 2017, 08:34:35 pm »

I tried once again and noticed that I can connect, however it seems the firewall blocks all eventhough rules should allow IP-SEC Interface to allow all kinds of traffic but I get below in firewall log..

8

16.7 Legacy Series / IPSec Roadwarrior - access to the internet

« on: October 08, 2016, 03:16:02 pm »

Hi,

I have setup a Roadwarrior IPsec as per the guide: https://docs.opnsense.org/manual/how-tos/ipsec-road.html
I can connect to the server from my android mobile, and then I can access my local server but not anything on the internet.

I cannot see anything blocked in the firewall log file - do you have any idea what could cause this ?

Please let me know if you need more information.

Thanks
Rasmus