"This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#1
19.7 Legacy Series / Re: After Update to 19.7.2 Service "flowd_aggregate Insight Aggregator" is stopped
September 20, 2019, 10:52:28 AM #2
19.7 Legacy Series / Re: After Update to 19.7.2 Service "flowd_aggregate Insight Aggregator" is stopped
September 20, 2019, 08:44:29 AM
Running into a similar issue. Netflow crashes after a minute or two. Not sure, but the problem occurs after adding an additional interface via "Interfaces: Assignments" for ovpns1. Maybe there is a 'corpse' in a config file now?!
Output:
root@OPNsense:~ # /usr/local/opnsense/scripts/netflow/flowd_aggregate.py --console
Traceback (most recent call last):
File "/usr/local/opnsense/scripts/netflow/flowd_aggregate.py", line 224, in <module>
Main()
File "/usr/local/opnsense/scripts/netflow/flowd_aggregate.py", line 136, in __init__
self.run()
File "/usr/local/opnsense/scripts/netflow/flowd_aggregate.py", line 160, in run
aggregate_flowd(self.config, do_vacuum)
File "/usr/local/opnsense/scripts/netflow/flowd_aggregate.py", line 68, in aggregate_flowd
for flow_record in parse_flow(prev_recv, config.flowd_source):
File "/usr/local/opnsense/scripts/netflow/lib/parse.py", line 74, in parse_flow
for flow_record in FlowParser(filename, recv_stamp):
File "/usr/local/opnsense/scripts/netflow/lib/flowparser.py", line 139, in __iter__
data_fields=ntohl(header[3])
File "/usr/local/opnsense/scripts/netflow/lib/flowparser.py", line 118, in _parse_binary
raw_data[raw_data_idx:raw_data_idx + fsize]
struct.error: unpack requires a buffer of 8 bytes
root@OPNsense:~ #
I tried to reset and repair via GUI and also a rm of the sqlite files. But nothing helped.
Output:
root@OPNsense:~ # /usr/local/opnsense/scripts/netflow/flowd_aggregate.py --console
Traceback (most recent call last):
File "/usr/local/opnsense/scripts/netflow/flowd_aggregate.py", line 224, in <module>
Main()
File "/usr/local/opnsense/scripts/netflow/flowd_aggregate.py", line 136, in __init__
self.run()
File "/usr/local/opnsense/scripts/netflow/flowd_aggregate.py", line 160, in run
aggregate_flowd(self.config, do_vacuum)
File "/usr/local/opnsense/scripts/netflow/flowd_aggregate.py", line 68, in aggregate_flowd
for flow_record in parse_flow(prev_recv, config.flowd_source):
File "/usr/local/opnsense/scripts/netflow/lib/parse.py", line 74, in parse_flow
for flow_record in FlowParser(filename, recv_stamp):
File "/usr/local/opnsense/scripts/netflow/lib/flowparser.py", line 139, in __iter__
data_fields=ntohl(header[3])
File "/usr/local/opnsense/scripts/netflow/lib/flowparser.py", line 118, in _parse_binary
raw_data[raw_data_idx:raw_data_idx + fsize]
struct.error: unpack requires a buffer of 8 bytes
root@OPNsense:~ #
I tried to reset and repair via GUI and also a rm of the sqlite files. But nothing helped.
#3
Web Proxy Filtering and Caching / Re: [Transparent Proxy] Caching and Auth for HTTP, just Auth for HTTPS
February 11, 2019, 07:03:31 PM
Thanks you for your answer. Would it be possible without authentication? At least to log https traffic instead of just let it pass the firewall with permit tcp 443.
#4
Web Proxy Filtering and Caching / [Transparent Proxy] Caching and Auth for HTTP, just Auth for HTTPS
February 11, 2019, 01:23:47 PM
Hello,
after reading some docs I am not sure if this will work: I want to setup a transparent proxy with authentication. As normal http sites are no big deal, these sites should be cached. I think this is the easy part. For all (!) https sites, I just want a basic authentication with local users (to avoid MITM and proxy cert). Is this a common setup and will this work with OPNSense? Any hints for the implementation?
BR
after reading some docs I am not sure if this will work: I want to setup a transparent proxy with authentication. As normal http sites are no big deal, these sites should be cached. I think this is the easy part. For all (!) https sites, I just want a basic authentication with local users (to avoid MITM and proxy cert). Is this a common setup and will this work with OPNSense? Any hints for the implementation?
BR
Pages1
