Messages

1

General Discussion / Re: DHCPv4 Server, is it normal to set in this way?

« on: November 15, 2019, 03:27:35 pm »

thanks for you reply
now, I found that I misunderstand the meaning of 0 and 255
after reading few passages, I just keep unleasing the first and last IPs

thanks for your reply again

2

General Discussion / Re: DHCPv4 Server, is it normal to set in this way?

« on: November 15, 2019, 01:25:24 pm »

surely, the netmask is set correctly
what I mean is:
Should the OPNsense let the DHCP server lease the IPs like xxx.xxx.xxx.0 or xxx.xxx.xxx.255?
or can hide these IPs in the DHCP server?

3

General Discussion / DHCPv4 Server, is it normal to set in this way?

« on: November 15, 2019, 07:31:29 am »

version of my OPNsense: OPNsense 19.1.10_1-amd64
The DHCPv4 server is set to ON
When the range for IP leasing is set "From 10.100.130.1 to 10.100.132.254",
the unwanted IP will be leased out e.g 10.100.130.255, 10.100.131.0

Is it normal to lease these IP to clients?
If "NO", is it a bug need to be fixed?
If "YES", I can prevent the problem by set into 3 ranges 10.100.130.(1--254), 10.100.131.(1--254), 10.100.132.(1--254) ==> problem solved

4

General Discussion / where can I download the e-book "Practical Opnsense"?

« on: July 29, 2019, 11:11:12 am »

based on the homepage of opnsense
the e-book "Practical Opnsense" is free
thus, where can I download the e-book "Practical Opnsense"?

5

General Discussion / HELP: Captive Portal by Google authentication and ~1000 users

« on: July 24, 2019, 01:19:26 pm »

we're a high school in Hong Kong, China
there are about 1000 users (teachers + staff + students)
and each one has a Google account with domain of our school

Task: Only those who has our domain Google account can access the Internet
1) how can Portal do the authentication of these Google accounts?
2) how can I do the batch upload of these accounts (~1000)?

6

General Discussion / Re: Just a Discussion (openBSD and HBSD)

« on: July 24, 2019, 08:23:11 am »

I haven't checked the features
but my experience is that:
the OpenBSD use less RAM and disk space to complete my tasks when compare to FreeBSD.
Also, the OpenBSD proves itself very secure and update twice a year (same as opnsense).

that's why I think it'd be a "good move" to migrate to OpenBSD

7

General Discussion / Just a Discussion (openBSD and HBSD)

« on: July 23, 2019, 06:16:12 am »

I've used the openBSD for years and found that openBSD is very very secure and stable.
thus, is it a good suggestion for the OPNsense migrate from HBSD to openBSD?

8

General Discussion / error msg in AUDIT SECURITY

« on: July 22, 2019, 11:44:00 am »

after doing the "Audit" => "Security" of the system (19.1 and 19.7)
both got this output message

***GOT REQUEST TO AUDIT SECURITY***
vulnxml file up-to-date
python37-3.7.3_1 is vulnerable:
python 3.7 -- multiple vulnerabilities
CVE: CVE-2019-9948
CVE: CVE-2019-9740
WWW: https://vuxml.FreeBSD.org/freebsd/a449c604-a43a-11e9-b422-fcaa147e860e.html

1 problem(s) in the installed packages found.
***DONE***

even re-install the python 3.7, problem still NOT solved

what should I do? Just leave it?
how can I report this to the opnsense?