Messages

Hello all.
I'm trying to configure OpenVPMN as client to specific subnet (44.x.x.x). I do have tunel alredy working, it means from OpnSense I can ping gateway on 44.x.x.1, but no single host from local network can reach anything in 44 network.
I do tried creating interface assigned to opnvpn client, then gateway, then routing pointing to gateway. But then I lost OpenVPN server, nono of clients was able to connect to the server, so something was wrong.
Any help please ?

Good evening
Does Sensei support IPv6 ?

Example below, Suricata shows blocked in Alerts, but on Gateway I can see that IP connected. OPNSense restarted, Gateway restarted.

Hi all
Configured Suricata, enabled, IPS mode enabled, ET telemtry rules downloaded and enabled. Under alert I see SSH scan has been blocked, however I have NAT to internal SSH gateway, and I see IP which should be blocked is reaching gateway...

2019-11-07T12:05:40.644965+0100   2001219   blocked   WAN   185.232.x.x   62920   x.x.x.x   22   ET SCAN Potential SSH Scan

Why is permited ?

No error during running script...

Hi all

Does anyone tried to install it recently ? I'm getting :

Code Select Expand

Starting the unifi service...Starting UniFi controller.
eval: /usr/local/bin/java: not found
done.

Good day everyone. I do have issues with Sensei on my pfsense box. When starting Sensei Packet Engine, all traffic is gone. No ping to router, no internet, nothing.
OPNsense 19.7.4_1-amd64, Engine Version:1.0.3

Hi @mucflyer, thanks for trying out Sensei. This looks like a netmap issue. Which ethernet adapter were you using?

igb0: <Intel(R) PRO/1000 Network Connection, Version - 2.5.3-k
igb1: <Intel(R) PRO/1000 Network Connection, Version - 2.5.3-k

Good day everyone. I do have issues with Sensei on my pfsense box. When starting Sensei Packet Engine, all traffic is gone. No ping to router, no internet, nothing.
OPNsense 19.7.4_1-amd64, Engine Version:1.0.3

This looks indeed good.
Any chance, to have Internet budget in the future (to allow, lets say, only 4 hours / PC / day).

Not sure right now, I think I was struggling with transparent proxy and https. Due to, no option to install replacement certificate on local machines. And mobile phones. But maybe I will come back to opnsense trying this again. pfblockerng is easier and works for both http and https without additional work on local machines.

Hi All
OPNSense looks cool, very promising. Only two things I'm really missing. AD Blocking realized easy way, implementing black list, without playing with proxy, rules etc.
And second, even more important - parental control. I would like to limit Internet usage for example 4 hours per day. And disable network between let's say 8PM and 6AM.

Will it even be possible ?