Messages

1

23.1 Legacy Series / Drop * (ICMP/TCP/UDP) allow only a few TCP/443 (https) hosts - easiest way ?

« on: March 16, 2023, 09:47:41 pm »

Hello!

I would like to DROP all traffic from LAN to WAN - no matter type of traffic and allow traffic to just a few hosts (with real.domain-names.com and not by IP).

What is the best practice to do this ?

2

Zenarmor (Sensei) / Re: Block * and Whitelist certain URLs

« on: March 09, 2023, 10:15:59 am »

Yes, it works for me as well adding black or white list over Cloud Management - still it does not seem to really black list that I have added though ? :-|

3

Zenarmor (Sensei) / Re: Block * and Whitelist certain URLs

« on: March 08, 2023, 03:51:23 pm »

I did try that - unfortunately it did not help :-(

Please see the messages I receive when i black or white list:

4

Zenarmor (Sensei) / Block * and Whitelist certain URLs

« on: March 08, 2023, 11:01:29 am »

I am having trouble to Whitelist and Blacklist IPs and URLs.

No difference whether i click add or filter, a few times a get an error message when blacklisting a host saying "Blacklist cant be added"

I have the latest version of both OPNsense and Zenarmour and I have tried with both Chromium and Firefox :-(

5

Tutorials and FAQs / Transparent Filtering Bridge

« on: June 10, 2022, 09:17:10 am »

Hi, I have need for a transparent filtering bridge. I have been using OPNsense for this earlier following this tutorial:
https://docs.opnsense.org/manual/how-tos/transparent_bridge.html

It seems to be pretty old - and it even says it "setting should apply up to at least 17.1.6.".

I have followed the tutorial with OPNsense 22.1.2_2 but it seems like some Chrome/Edge traffic gets through due to the rule "Allow everything out of the firewall".

I wonder if anyone has a newer/updated tutorial to share or why this one isn't getting any attention, the functionality is really awesome

6

General Discussion / Re: Transparent Filtering Bridge allow all outgoing from a router inside of it ?

« on: May 18, 2019, 09:31:41 am »

I kind of really likes my router

My plan was to just add another layer of security without changing anything on the inside

Best thougt I have had so far is to allow my DDNs host as source, due to the fact I dont have a static IP. But then I have to allow update of the DDNS service as well and I am thinking this will probably lead to failures when my IPv4 adress is changed and everything is rebooted

7

General Discussion / Transparent Filtering Bridge allow all outgoing from a router inside of it ?

« on: May 17, 2019, 07:23:08 pm »

I have made myself a Transparent Filtering Bridge by following guide:
https://wiki.opnsense.org/manual/how-tos/transparent_bridge.html

My plan was to have a transparent filtering bridge allow incoming traffic to my router on just specific ports, this was no problem getting it working.

My problem is that I want to allow all outgoing traffic from my router threw the Transparent Filtering Bridge, my plan was to allow all outgoing with my WAN adress as source...

Its just that my Transparent Filtering Bridge does not know my WAN-adress due to the fact that my router inside of the OPNsense device has got the public IP-adress 

I was so happy having OPNsense on an APU4 - now I dont know how to make it work as I hoped