Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - urmel

Pages1 2
#1
25.1, 25.4 Series / Re: Unbound is blocking without having blocklist functionality enabled
March 04, 2025, 08:00:06 AM
I did a couple of further checks and it is very clear that unbound is blocking although not being enabled - it is not only the reporting machine.

When I try to open some sponsored links from the Google search result page - I do get "Website not reachable" in the browser and checking then details reported by unbound I do see that the attempt to call that domain was blocked with Steven Black List

#2
25.1, 25.4 Series / Re: Unbound is blocking without having blocklist functionality enabled
March 03, 2025, 05:02:25 PM
I tried the diagnostics DNS-Lookup and I do not get the 0.0.0.0 or NXDOMAIN -

but what I get is:

Quote2025-03-03 16:58:45   10.10.0.6   A   clients3.google.com.   Pass   Recursion   NOERROR   57ms   44   
2025-03-03 16:58:45   10.10.0.40   A   api.openweathermap.org.   Pass   Recursion   NOERROR   78ms   24   
2025-03-03 16:58:37   localhost   MX   aax-eu.amazon.de.   Pass   Recursion   NOERROR   98ms   60   
2025-03-03 16:58:37   localhost   TXT   aax-eu.amazon.de.   Pass   Recursion   NOERROR   32ms   60   
2025-03-03 16:58:36   localhost   AAAA   aax-eu.amazon.de.   Pass   Recursion   NOERROR   61ms   60   
2025-03-03 16:58:36   localhost   CNAME   aax-eu.amazon.de.   Block   Local   NOERROR   59ms   3600   Steven Black List

So why is it telling block in the last line and is referencing to Steven Black List ?
#3
25.1, 25.4 Series / Re: Unbound is blocking without having blocklist functionality enabled
March 02, 2025, 01:41:18 PM
I have checked all places you suggested - nothing in there.

So this problem still exists.

Any other idea ?
#4
25.1, 25.4 Series / Re: Unbound is blocking without having blocklist functionality enabled
February 21, 2025, 06:51:39 PM
yes - all empty and this section is anyway not enabled !!!

But checking the logs shows me :

2025-02-21T04:01:33   Notice   unbound   [85712:0] notice: init module 1: iterator   
2025-02-21T04:01:33   Informational   unbound   [85712:0] info: dnsbl_module: blocklist loaded. length is 129867   
2025-02-21T04:01:33   Informational   unbound   [85712:0] info: dnsbl_module: updating blocklist.   
2025-02-21T04:01:33   Notice   unbound   [85712:0] notice: init module 0: python

Any idea ? What kind of blocklist does unbound update when there is none configured and the blocklist service is not enabled ...
#5
25.1, 25.4 Series / Re: Unbound is blocking without having blocklist functionality enabled
February 18, 2025, 05:38:22 PM
No, definitely not. I just double checked it and the log files refer to the Steven Black List.
#6
25.1, 25.4 Series / Unbound is blocking without having blocklist functionality enabled
February 17, 2025, 11:14:59 PM
Hi there

I just found it would be a good idea to completely setup my opnsense machine from scatch and to check all the features und functionality I was used to over the last couple of years.

One strange thing I found meanwhile - maybe I do something wrong somewhere - any help and advice is highly appreciated ...

I enabled unbound-DNS service but without the blocklist feature. The dashboard shows the top blocked domains. Checking the logs shows a couple of blocked entries blocked by Steven Black List.

How can that be the case when the blocklist feature is not enabled ?
#7
23.7 Legacy Series / How to recall update messages ?
November 03, 2023, 11:09:29 AM
Hello everyone,

I have a small problem:
When you perform a firmware update, the individual steps are logged on the screen and notices are displayed.
For example, there are notices about files and directories that are no longer needed, but must be manually deleted.
This display scrolls relatively quickly through the screen and is no longer available after the completion of the update process.
How can I have these notices displayed again - otherwise, I can't manually remove the deletable files and folders..


Thanks for any help.
#8
23.1 Legacy Series / new unbound DNS reporting is partially or completely unreadable ......
January 26, 2023, 05:43:09 PM
... when using any other template than the default opnsense-template.

fonts and tables are mainly unreadable due to color settings ... 
#9
22.7 Legacy Series / RFC2136 still only supporting hmac-md5
October 23, 2022, 05:56:05 PM
Although there was already demand in old posts to this topic - but so far no one had answered - here again a question about it.

The rfc2136-plugin still supports only the old hmac-md5 alghorithm. Are there any plans to update this with an upcoming release?

Thanks for any related information.

#10
Intrusion Detection and Prevention / Re: IDS Alerts can't count?
February 27, 2022, 08:09:26 PM
This is still an issue with OPNsense 22.1.1_3-amd64.

Is there any plan to solve this ?

Regards, Urmel
#11
22.1 Legacy Series / Re: ACME Client no longer working after upgrade to 22.1
January 31, 2022, 11:00:29 AM
I use DNS-01 Challenge and this is not working  - was good in 21.x series ... :-(
#12
22.1 Legacy Series / ssl errors in WeGui Log
January 30, 2022, 07:42:51 PM
Hi there

I do have a lot of ssl errors in the logs - see screenshot attached

Any idea what to do ?

Thanks and regards

Urmel

#13
22.1 Legacy Series / Re: ACME Client no longer working after upgrade to 22.1
January 30, 2022, 06:52:17 PM
did this already - nothing in the logs that helps further.
#14
22.1 Legacy Series / Re: Audit logging: sucessfull log in is logged with severity "Error"
January 30, 2022, 06:48:13 PM
Thanks
Urmel
#15
22.1 Legacy Series / [solved] Audit logging: sucessfull log in is logged with severity "Error"
January 29, 2022, 07:23:00 PM
Hi there

With 22.1 in the audit logs a sucessfull log in for user xxxxx is logged with severity "Error".

I assume that this kind of event should have another severity e.g. "Info"

Regards, Urmel
Pages1 2