Messages

Well, I did some testing with few users when I opened the thread.

Now I have done it with 1000 users and the result is quite different. By pressing the "apply" button (previously it was not pressed or it was not there), after a few seconds, a quite bunch of users are removed. Sometimes 100, sometimes 200. By repeating the process several times, the goal is achieved. Fair enough.

The funny thing is, the closer you get to zero users, the fewer users are removed when you hit apply.

The thread can be closed, thanks for the reply @Monviech.

Hi!

We need to remove all users from the FreeRADIUS package once per year (to update from CSV later).

The problem is that selecting all of them and press "Delete selected" button in the GUI doesn't work. That only delete the last user. And if you select more than one user manually, the same thing happens.

We have more than 1000 users and deleting them one by one does not seem like an appropriate solution.

Can anyone replicate the problem? Is there any solution? Thanks in advance!

Hi,

Is there anything special to do with VLAN?

We have interfaces tagged and untagged. When I activated Sensei and configured just a few web categories to test, everything worked well with the untagged interface but all VLAN networks lost connectivity, devices in all VLAN not even get IP address by DHCP. And the problem persisted even when I deselected those interfaces to get managed by Sensei, I had to stop it and uninstall it to get VLAN networks working again.

Thanks!

No, there are different lists to select which include some kind like categorie, e.g. 1M top porn sites, malware domains, ad's etc.

Hi, and you can add the option to blacklist specific domains, in a text-box (like the whitelist option)? For example, block Ads, Malware, etc from the list AND Facebook.com, Twitter.com or any other domain we want to add in a block-list.

That would be enough for us, is the main reason to use pfBlocker in our school: block and unblock (if categories makes an unwanted block) specific websites via DNS.

Thanks!

And its planned to add those features in the near future?

It's in Bind Plugin already and I'll add Dome stuff to a new dnscrypt-proxy. Unbound may follow, but no idea before 19.1

Is possible to add content filter categories to block through Bind Plugin (like Shallalist)? And blacklist specific websites, like Squid do but with DNSBL?

Thanks!

Hi,

The maximum of 1000 concurrent users is an approximation for better hardware performance or an strict software limit?

thanks

Can you try adding users where user and password are the Mac address?

That's it! I knew was a stupid question :)

And some way to import users from CSV or similar?

Hi, we use Unifi for our WiFi network and we want to implement a MAC Whitelist Filter. The problem is Unifi only allow a maximum of 512 addresses, and we have around 800, so we have to use an external solution through RADIUS.

Is possible to use OPNSense with FreeRADIUS for the MAC Whitelist Filter? I just installed it but I don't see the option. Sorry if is a stupid question, it's my first time with radius...

Hi, thanks for the replies, I got it. The steps for OPNSense are:

1) Install the package.

2) Go to /usr/local/etc/lightsquid/lightsquid.cfg and change the path of access.log to /var/log/squid/access.log

3) Run /usr/local/www/lightsquid/lightparser.pl, the first time with access.log.*.gz too:

/usr/local/www/lightsquid/lightparser.pl
/usr/local/www/lightsquid/lightparser.pl /var/log/squid/access.log.0.gz
/usr/local/www/lightsquid/lightparser.pl /var/log/squid/access.log.1.gz
...

4) Use crontab -e to program it (in no less than 10 minutes period).

5) Visit opnsense-IP/lightsquid/index.cgi

Hi, I need to install Lightsquid but all tutorials I find are for Apache and non-FreeBSD.

Anyone are using it? How can I do?

Is there any add-on like Lightsquid to store and view the Webproxy logs?

Check your ISP config, may be all traffic have to be tagged and you need to make an VLAN for the PPPoE interface.

I've experienced the same error in my network. In my case, there are many moments along the day with "microcuts". Usually a page fail to load showing that error, but few seconds later if I refresh everything works fine. ¿How can I test if is an ISP problem?

Well, I can say is solved for me. My problem was related with ISP cheap router and double NAT. I removed the ISP router and connected directly with PPPoE and now everythings works fine.

I've experienced the same error in my network. In my case, there are many moments along the day with "microcuts". Usually a page fail to load showing that error, but few seconds later if I refresh everything works fine. ¿How can I test if is an ISP problem?