Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - liver007

Pages: [1] 2

Development and Code Review / howto findout which Version of Package belongs to the OPNsense Version

« on: August 29, 2019, 06:32:00 am »

Hello,

which file from the OPNsource code tells which package/s belongs together to the OPNsense Version X.Y.Z
i mean as Example:

OPNsense nano amd64 18.7.1 comes with "radvd-1.15"
OPNsense nano amd64 18.7.10 comes "radvd1-1.15"
or another Example:
OPNsense nano amd64 18.7.1 comes with "GeoIP-1.6.12"
OPNsense nano amd64 18.7.10 comes "GeoIP-1.6.12_1"

How do i know this before the Comile step of the OPNsense Sourcecode is done?
Thanks

Development and Code Review / Custom Package cannot be installed. No manifest found.

« on: August 24, 2019, 08:22:59 am »

Hi,

I complied the base, kernel and packages. I wanted to modify one of the packages inside package set to add custom code. I did all the modifications that were required and ran 'make dvd'. I got the following error.

Documentation and Translation / SSL v TLS

« on: August 21, 2019, 05:01:35 pm »

Since the industry has depreciated the use of SSL (and packages such as openSSL have evolved to support TLS), I think it is important to replace all mentions of SSL with TLS or some combination of the acronyms such as “SSL/TLS” “TLS/SSL” or “TLS (SSL)”.

The usage of terms that reflect the current technology should increase accessibility to the underlying concepts for users new to the technology.

Pages like system_advanced_admin.php should be the first to see the change.

Development and Code Review / current update 18.7.3?

« on: August 18, 2019, 02:45:05 pm »

Hi
current update is recorded, but is not displayed under my updates but only among the installed packages.

i´m using this on my vm.

see my screenshots

Development and Code Review / howto findout which Version of Package belongs to the OPNsense Version

« on: August 07, 2019, 03:14:06 pm »

Intrusion Detection and Prevention / Making an inline Suricata box using OPNsense

« on: August 07, 2019, 10:47:32 am »

HI
I'm looking to make an inline Suricata box to intercept certain applications. I need DPI to detect certain applications (i.e. unauthorized VPN traffic) and block it. The box needs to be inline and receive its LAN IP address from the DCHP server.

I have been looking at OPNsense (as opposed to Security Onion) to do this project quickly but got lost in the configurations. Is there a knowledgebase article to setup OPNsense in bridge mode to transparently pass through traffic with Suricata IPS active?

General Discussion / Virtual to physical

« on: July 30, 2019, 07:42:56 am »

Could I successfully build out an opnsense firewall as a KVM, back up the config (using opnsense's built-in backup feature), install opnsense on physical hardware and then restore the backup to the new physical box? I don't see why it wouldn't work, but I haven't used opnsense before so I don't know if I'm expecting too much.

German - Deutsch / OpenVPN Client-spezifische Konfiguration feste / statische IP Adresse

« on: July 28, 2019, 10:04:11 am »

Hallo zusammen,

ich habe per Client-spezifische Konfiguration versucht einem VPN User eine feste IP Adresse zuzweisen. Leider klappt das nicht die Einstellungen aus Client-spezifische Konfiguration kommen nicht beim User an.

Ich habe beim Common Name den Namen des Zertifikates des Users eingetragen.

Hat jemand eine Idee woran es liegt das der User die Client-spezifische Konfiguration nicht bekommt?

Vielen Dank für eure Hilfe.
บาคาร่าออนไลน์

General Discussion / How to set up sarg with opnsense?

« on: August 24, 2018, 12:39:26 pm »

Hi all!
Anyone who has info that might be helpful in setting up Sarg on an opnsense firewall?
Suggestions and ideas are greatly appreciated.

General Discussion / Add plugins to OpenVPN

« on: April 17, 2018, 03:40:04 pm »

Hi there, My name is Gozzi
I'm trying to add a Duo Security plugin (https://duo.com/docs/openvpn) to OpenVPN under OPNsense, but can't figure out how to load. It doesn't look like OPNsense uses a standard OpenVPN server.conf config file so I'm not sure where to load the plugin. Does OPNsense use an XML file for config data, like pfSense?

The OPNsense docs include a few plugins for OpenVPN (see below) -- so it seems like this should be possible.

===============================================================
Plugin VPN options
Via plugins additional VPN technologies are offered, including:

Legacy L2TP & PPTP

Tinc - Automatic Full Mesh Routing
Zerotier - seamlessly connect everything, requires account from zerotier.com, free for up to 100 devices.
===============================================================

If anyone can provide assistance I would appreciate it!

General Discussion / Alias for dynamic WAN adress -> Any solution?

« on: April 17, 2018, 03:37:14 pm »

Hi there, My name is Gozzi
Is there any way to make an alias for the dynamic wan adress?
Does anyone know a solution?

Hardware and Performance / Deciso hardware throughput

« on: January 09, 2018, 03:45:12 pm »

Hi there, My name is Jeen
I was wondering if anyone has information on the Deciso or similar hardware. We are running into a bit of an issue with Cisco FWSM on gigabit and we plan on moving to 10Gb soon so the Deciso appliance looks good.

We are looking to push at least half the wire speed over time, not sure how that translates to ppm and whether the appliance can handle it, the extra gigabit ports are nice but may not be used, but if they can be configured as A DMZ. We're looking at Cumulus for our switches so inter-VLAN routing (~10) will be done on switch but we need this for a connection to the campus which are dual gig links and soon will be a 10G and 1G backup. Firewalls from other vendors are $25-75k, $3k sounds really good but I want to make sure, so if anyone has actually pushed it to its limits.

We are currently running OpnSense on a VM to replace a Cisco PIX and so far been very happy.

17.7 Legacy Series / Unable to start DHCP server?

« on: January 09, 2018, 03:35:28 pm »

Hi there My name is Jeen วิธีแทงบอลสเต็ป
I'd like to use PXE boot on my OPNsense box to install desktops on my network. To test this, I have a desktop connected directly to my firewalls LAN interface. While it has a static address now, it needs to be able to get a DHCP address for PXE, so I set the options on the Services -> DHCP -> Server -> LAN page as best as I know how and clicked the "Start Service" button in the upper right corner.

A dialog with the title "Please wait..." and a progress bar briefly appears then vanishes, and the status indicator is still red and showing "dhcpd Service is Stopped". I tried rebooting the firewall but that didn't help. Any idea why it's doing this and how I can find more info about it?

German - Deutsch / OPNSense blockiert ausgehenden POP3 Traffic von fetchmail?

« on: January 06, 2018, 05:25:58 pm »

Hi there, My name is Jeen สมัครแทงบอลเงินสด
Ich habe hier ein Problem, dass ich nicht verstehe :

Seit Jahren betreibe ich mein Netz zuhause mittels IPFire hinter einer FritzBox 7490 , die WAN-Seite des IPFire ist als 'exposed Host' in der FritzBox eingetragen.

Nun habe ich statt IPFire OPNSense installiert und den Wizard einmal durchkonfiguriert. Internetzugriff per NAT funktioniert von allen Clients wie gehabt, aber mein kleiner Linux-Mailserver, der per fetchmail und POP3/TLS Mails bei GMX abholt, möchte nicht mehr. Im Log sehe ich noch ein 'connected', dann passiert eine Weile nichts und dann stirbt er mit 'Query Status=2 (socket)'.
Beide Firewallinstallationen laufen als VM auf ProxMox (also KVM), fahre ich opnsense herunter und ipfire wieder hoch, geht es sofort wieder. Ich habe keine Firewallregeln konfiguriert und sehe in den Firewall-logs auch nichts passendes von meinem Mailserver. Ich bin ratlos, hat jemand einen Tipp für mich?

17.7 Legacy Series / PC Usage monitor and Quotas

« on: December 08, 2017, 01:21:10 pm »

Hi there, My name is Jean
We are being asked by clients for reports that show PC usage by day, week month and also to be able to set maximum Daily, weekly, monthly quotas to PCs or groups of PCs ทางเข้าufabet
Have previously supplied Gargoyle which has the right features but is not ideal for larger networks ufabet

can anyone suggest the correct plugin for this?
Thank you

Pages: [1] 2