"
Just to add - I'm getting the same errors since the update. I can't get any of my SSL sites to load. Did you manage to find a resolution other than revert?
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#1
23.1 Legacy Series / Re: Upgrade to 23.1.7_3 causes PR_END_OF_FILE_ERROR in NGINX
May 23, 2023, 11:44:25 PM #2
General Discussion / Nginx and additional ciphers
April 07, 2021, 11:59:13 AM
Hey all - I've done a bit of research and coming up short - I'm hoping someone might be able to help.
I need to add some additional ciphers to my Nginx configuration as some services I'm using don't work when accessing through an app built for using them. The app is nzb360 and the services are Deluge, Radarr and Sonarr. They work just fine through the web browser.
I did some searching on the nzb360 forums and they mention requiring specific ciphers with an Nginx reverse proxy in place, but I can't see where to add them to my configuration. Are they not exposed through the GUI, and is there a way to add them?
I need to add some additional ciphers to my Nginx configuration as some services I'm using don't work when accessing through an app built for using them. The app is nzb360 and the services are Deluge, Radarr and Sonarr. They work just fine through the web browser.
I did some searching on the nzb360 forums and they mention requiring specific ciphers with an Nginx reverse proxy in place, but I can't see where to add them to my configuration. Are they not exposed through the GUI, and is there a way to add them?
#3
Tutorials and FAQs / Re: HOWTO - Routing Traffic over Private VPN
September 02, 2018, 02:34:31 PM
Hi all.
Just to follow up on my previous post.
DNSSEC actually wasn't at fault. It seems that even with the VPN up and the Unbound outgoing interface set to that of the VPN WAN, DNS still resolves as if it were configured for the WAN - meaning there were DNS leaks all over the show.
I had to use a custom server option in Unbound to get this to work - far from ideal but I will wait for the fix to come in for the GUI. Just to re-iterate, this has all worked flawlessly in pfSense for years. It's a shame it is not quite the same in OPNSense.
Unbound custom server settings are (where x.x.x.x is the IP for the VPN DNS server you wish to use:
forward-zone:
## Fix for VPN DNS.
name: "."
forward-addr: x.x.x.x@53
forward-addr: x.x.x.x@53
Just to follow up on my previous post.
DNSSEC actually wasn't at fault. It seems that even with the VPN up and the Unbound outgoing interface set to that of the VPN WAN, DNS still resolves as if it were configured for the WAN - meaning there were DNS leaks all over the show.
I had to use a custom server option in Unbound to get this to work - far from ideal but I will wait for the fix to come in for the GUI. Just to re-iterate, this has all worked flawlessly in pfSense for years. It's a shame it is not quite the same in OPNSense.
Unbound custom server settings are (where x.x.x.x is the IP for the VPN DNS server you wish to use:
forward-zone:
## Fix for VPN DNS.
name: "."
forward-addr: x.x.x.x@53
forward-addr: x.x.x.x@53
#4
Tutorials and FAQs / Re: HOWTO - Routing Traffic over Private VPN
August 28, 2018, 11:58:27 AM
OK - it seems to be working for me now.
I had to uncheck the following settings in the OpenVPN client settings:
With those two settings unchecked, policy based routing works.
I'm seeing some weird issues with DNSSEC as well. For some reason, with DNSSEC enabled, some sites never resolve. As soon as I disable DNSSEC, they resolve just fine.
I had to uncheck the following settings in the OpenVPN client settings:
- Don't pull routes
- Don't add/remove routes
With those two settings unchecked, policy based routing works.
I'm seeing some weird issues with DNSSEC as well. For some reason, with DNSSEC enabled, some sites never resolve. As soon as I disable DNSSEC, they resolve just fine.
#5
Tutorials and FAQs / Re: HOWTO - Routing Traffic over Private VPN
August 28, 2018, 03:27:15 AM
Urgh - just migrated from pfSense and having the exact same issue.
Anyone have any update? I'm also running AirVPN in the UK. With my alias firewall rule in place, my system loses internet connectivity. When I disable the rule (and the device goes out the normal WAN rule) everything works as normal.
VPN is connected - verified in the GUI and also through the AirVPN site.
Anyone have any update? I'm also running AirVPN in the UK. With my alias firewall rule in place, my system loses internet connectivity. When I disable the rule (and the device goes out the normal WAN rule) everything works as normal.
VPN is connected - verified in the GUI and also through the AirVPN site.
Pages1
