Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - Johnson

Pages1
#1
Web Proxy Filtering and Caching / How to apply different webfilter categories policy for each VALN
February 28, 2018, 08:59:08 AM
Hi,
We have multiple VLAN's, we need to apply different webfilter categories for each VLAN's.
Eg: for VLAN 100, need to filter  categories "adv,dating, drugs, government"
for VLAN 101, need to filter  categories "dating, drugs, forum"
for VLAN 102, need to filter  categories "jobsearch,music,movies"

How we can do the same.
#2
Web Proxy Filtering and Caching / Re: TCP_DENIED
February 28, 2018, 06:24:09 AM
Issue rectified, after restating firewall once again click download acls & Apply, it's working now.
#3
Web Proxy Filtering and Caching / TCP_DENIED
February 27, 2018, 01:58:39 PM
Hi,
I am using OPNsense 18.1.2_2-amd64, I enabled Transparent Proxy for http & https all the settings are attached,
my issue is, after enabling category filtering from remote access control list, if i try to access gmail.com or mail.google.com sites are not opening, meantime if i check access log, log details are follows.

=======================================================================
1519734398.044 421    192.168.0.100 TCP_MISS/200 614 GET http://detectportal.firefox.com/success.txt - ORIGINAL_DST/184.28.218.41 text/plain
1519734397.617 0    192.168.0.100 TAG_NONE/400 4487 NONE error:invalid-request - HIER_NONE/- text/html
1519734397.617 0    192.168.0.100 TCP_DENIED/403 3894 CONNECT mail.google.com:443 - HIER_NONE/- text/html
1519734397.617 9    192.168.0.100 TAG_NONE/200 0 CONNECT 216.58.196.165:443 - HIER_NONE/- -
1519734397.527 0    192.168.0.100 TAG_NONE/400 4487 NONE error:invalid-request - HIER_NONE/- text/html
1519734397.527 0    192.168.0.100 TCP_DENIED/403 3888 CONNECT www.gmail.com:443 - HIER_NONE/- text/html
1519734397.527 9    192.168.0.100 TAG_NONE/200 0 CONNECT 216.58.196.165:443 - HIER_NONE/- -
1519734397.285 0    192.168.0.100 TAG_NONE/400 4121  %60:%8C%99UY%F3X%17x%9C%C8%87Z%FF%DA%1F%E7y%5B%C7 - HIER_NONE/- text/html
1519734397.285 0    192.168.0.100 TCP_DENIED/403 3888 CONNECT www.gmail.com:443 - HIER_NONE/- text/html
1519734397.284 9    192.168.0.100 TAG_NONE/200 0 CONNECT 216.58.196.165:443 - HIER_NONE/- -
1519734397.080 0    192.168.0.100 TAG_NONE/400 4487 NONE error:invalid-request - HIER_NONE/- text/html
1519734397.080 0    192.168.0.100 TCP_DENIED/403 3888 CONNECT www.gmail.com:443 - HIER_NONE/- text/html
1519734397.080 9    192.168.0.100 TAG_NONE/200 0 CONNECT 216.58.196.165:443 - HIER_NONE/- -
1519734396.811 0    192.168.0.100 TAG_NONE/400 4487 NONE error:invalid-request - HIER_NONE/- text/html
1519734396.811 0    192.168.0.100 TCP_DENIED/403 3888 CONNECT www.gmail.com:443 - HIER_NONE/- text/html
1519734396.810 9    192.168.0.100 TAG_NONE/200 0 CONNECT 216.58.196.165:443 - HIER_NONE/- -
1519734396.508 0    192.168.0.100 TAG_NONE/400 4487 NONE error:invalid-request - HIER_NONE/- text/html
1519734396.508 0    192.168.0.100 TCP_DENIED/403 3888 CONNECT www.gmail.com:443 - HIER_NONE/- text/html
1519734396.508 9    192.168.0.100 TAG_NONE/200 0 CONNECT 216.58.196.165:443 - HIER_NONE/- -
1519734396.330 0    192.168.0.100 TAG_NONE/400 4487 NONE error:invalid-request - HIER_NONE/- text/html
1519734396.330 0    192.168.0.100 TCP_DENIED/403 3888 CONNECT www.gmail.com:443 - HIER_NONE/- text/html
1519734396.329 9    192.168.0.100 TAG_NONE/200 0 CONNECT 216.58.196.165:443 - HIER_NONE/- -
1519734396.075 0    192.168.0.100 TAG_NONE/400 4487 NONE error:invalid-request - HIER_NONE/- text/html
1519734396.075 0    192.168.0.100 TCP_DENIED/403 3888 CONNECT www.gmail.com:443 - HIER_NONE/- text/html
1519734396.075 10    192.168.0.100 TAG_NONE/200 0 CONNECT 216.58.196.165:443 - HIER_NONE/- -
1519734395.784 0    192.168.0.100 TAG_NONE/400 4487 NONE error:invalid-request - HIER_NONE/- text/html
1519734395.784 0    192.168.0.100 TCP_DENIED/403 3888 CONNECT www.gmail.com:443 - HIER_NONE/- text/html
1519734395.784 9    192.168.0.100 TAG_NONE/200 0 CONNECT 216.58.196.165:443 - HIER_NONE/- -
1519734395.375 0    192.168.0.100 TAG_NONE/400 4487 NONE error:invalid-request - HIER_NONE/- text/html
1519734395.375 0    192.168.0.100 TCP_DENIED/403 3888 CONNECT www.gmail.com:443 - HIER_NONE/- text/html
1519734395.374 9    192.168.0.100 TAG_NONE/200 0 CONNECT 216.58.196.165:443 - HIER_NONE/- -
1519734393.125 61327    192.168.0.100 TCP_TUNNEL/200 3306 CONNECT tiles.services.mozilla.com:443 - ORIGINAL_DST/34.216.156.21 -

=======================================================================

Same problem in YouTube also. If i disable category filtering from remote access control list, there is no issue.

Can you help me for this issues.
#4
17.1 Legacy Series / Opnsense installation started after sometime it's hang
March 07, 2017, 10:40:41 AM
Hi all,
I am new in opnsense, i am facing some issues on the installation time,
after few minutes it's getting hang. My system configuration details are follows
Processor: AMD FX-4300 Quad Core
RAM:2GB
MB: GIGABYTE GA-78LMT-S2P F1
HDD: 250 GB
Lan1: Onboard
Lan2: Intel pro
kindly help me the case,
Pages1