OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of Lord_Pinhead »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - Lord_Pinhead

Pages: [1]
1
General Discussion / Re: Captive Portal - Social Login
« on: August 23, 2018, 10:46:53 am »
Did not think this is what users want to. You have to use OpenID or OAuth2 for that. In example you have Google, you have to allow the Captive Portal App to Access some Userinformation and the Google Account of the users will save this permission of the Captive Portal App to the Userprofile.

Saves time for the Voucher creation, but do People really asked for it? The Portal is in the Core, not a plugin, so maybe a Feature Request would be the best place for it. But it has to be worth it.

2
German - Deutsch / Re: Default Deny Rule blockiert ab und zu VPN Netz
« on: August 23, 2018, 09:11:14 am »
Interessant wären mal die Wege die du gehst.
Ich hab ein ähnliches Setup:

Internet -> Fritzbox (Opensense als Exposed host) -> Opnsense ->Lan/DMZ

Die Opnsense dient als IPSec Zugang für meine Mobilen Geräte (Smartphone, Laptop etc) und zu 2 Servern bei Hetzner steht eine OpenVPN Verbindung (Site-to-Site).

Firewall Regel ist Freigabe von UDP/TCP für IPv4/v6 zu meinen Servern und entsprechende Regeln für die Dienst Ports wie SSH, Rsync etc.
Das läuft jetzt seit einer Woche ohne Unterbrechungen.

Kann es sein das kein Keep Alive Paket rausgeht und die Verbindung kurzzeitig unterbrochen wird?
Da reagiert OpenVPN immer etwas allergisch.

Wenn auch zuviele Paketfilter im Weg sind, könnte es sein das es hier zu Verzögerungen kommt, je nach Leitungsauslastung. Dann evtl. mit QoS arbeiten und den VPN Leitungen die höchste Priorität geben.

3
Development and Code Review / Re: Adding Rule after plugin installation
« on: August 23, 2018, 08:03:38 am »
I start with the helloworld example and check_mk. But still i need to open a Port on an Interface after the plugin was installed.
Adding the inetd entry is a new Action, that should not be a Problem.

vlmcsd is not a Problem for me, the Firewall is running in my own Office Environment and is for deploying a MS Lab Setup. MS even has a list of VL Keys in the MSDN for that reason.



4
Development and Code Review / Adding Rule after plugin installation
« on: August 22, 2018, 04:23:55 pm »
Hi,

i started with Opnsense and need 2 Services for my LAN. So i thought about creating an plugin for them.
The first one is check_mk with (x)inetd and the second is vlmcsd, and KMS Emulator for my lab installations.

So for both of them i need to add Rules to the specified Interfaces to allow certain traffic and i need in the second case an DNS Setting in DNSMasq.

Are there any code examples i could use? Or should i use the API for it, and if yes, i still need an example for it :-)

--
Lord_Pinhead

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2