Messages

1

Hardware and Performance / Re: Experience with OPNsense hardware in combination with Delta Networks fiber

« on: October 07, 2024, 12:05:36 pm »

I like to eliminate as many devices as possible between WAN side and (OPNsense) f/w

2

Hardware and Performance / Experience with OPNsense hardware in combination with Delta Networks fiber

« on: October 02, 2024, 12:51:26 pm »

I currently own a Nokia XS-010X-Q, see https://www.ebay.com/itm/364840903234 to connect my Delta fiberoptics WAN to my LAN. The XS-010X-Q is connected via utp to my OPNsense f/w

I am considering purchasing an OPNsense device as f/w.
Does anyone here have any experience connecting the fiberoptic directly into any of the OPNsense firewall devices. If so, what SFP+ module is required to do so?

Thanks

fd0

3

General Discussion / Re: routing traffic from one source ip to a specific wan/gateway

« on: October 21, 2023, 01:39:21 pm »

You create a firewall rule on the LAN interface which matches the source address and sets the gateway.

Cheers
Maurice

tnx
works like a charm

It worked like a charm for like 2 weeks, until today
Something has changed since the traffic from one specific device, the Ziggo box, that should go to the Ziggo internet interface, seems to not work anymnore.

How can i check the route of packets from that ip address through the firewall which gateway is chosen?

tnx

Things seem even funnier/worse 

After changing default gateway to the (Ziggo) gateway all was working well.
Changing back to yesterday's status things continue to work properly.
I wonder if I will be in the same position in some 2-3 weeks time and things don't work again.

I like things to be deterministic and this just isn't


--
fd0

4

General Discussion / Re: routing traffic from one source ip to a specific wan/gateway

« on: October 20, 2023, 10:00:38 pm »

You create a firewall rule on the LAN interface which matches the source address and sets the gateway.

Cheers
Maurice

tnx
works like a charm

It worked like a charm for like 2 weeks, until today
Something has changed since the traffic from one specific device, the Ziggo box, that should go to the Ziggo internet interface, seems to not work anymnore.

How can i check the route of packets from that ip address through the firewall which gateway is chosen?

tnx

5

General Discussion / Re: routing traffic from one source ip to a specific wan/gateway

« on: October 05, 2023, 11:53:07 am »

You create a firewall rule on the LAN interface which matches the source address and sets the gateway.

Cheers
Maurice

tnx
works like a charm

6

General Discussion / routing traffic from one source ip to a specific wan/gateway

« on: October 05, 2023, 11:11:07 am »

Hi

I am looking for a way to get all traffic from one specific internal ip address routed through a specific gateway/wan.
Is such a functionality available? If so, how would i do that?

thank you

7

Tutorials and FAQs / Re: [HowTo] - PPPoE, VLAN & RFC4638

« on: March 12, 2021, 05:10:49 pm »

Great HowTo

-fd0

8

20.7 Legacy Series / Install and upgrade question

« on: November 10, 2020, 10:48:18 pm »

Experts,

I installed the download image for serial console amd64, which went perfectly fine.
I configured LAN interface to have a connection to the outside world with no issues so far.
Then I upgraded using the GUI, and now I am stuck...

Code: [Select]

root@OPNsense:/usr/local/opnsense/scripts/firmware # tail -30 /tmp/pkg_upgrade.progress
[43/54] Extracting php73-curl-7.3.23: ....... done
[44/54] Upgrading php73-ctype from 7.3.20 to 7.3.23...
[44/54] Extracting php73-ctype-7.3.23: ....... done
[45/54] Upgrading opnsense-update from 20.7 to 20.7.4...
[45/54] Extracting opnsense-update-20.7.4: .......... done
[46/54] Reinstalling ntp-4.2.8p15...
[46/54] Extracting ntp-4.2.8p15: .......... done
[47/54] Upgrading mpd5 from 5.8_10 to 5.9...
[47/54] Extracting mpd5-5.9: ......... done
[48/54] Upgrading isc-dhcp44-server from 4.4.2 to 4.4.2_1...
===> Creating groups.
Using existing group 'dhcpd'.
===> Creating users
Using existing user 'dhcpd'.
[48/54] Extracting isc-dhcp44-server-4.4.2_1: .......... done
[49/54] Upgrading isc-dhcp44-relay from 4.4.2 to 4.4.2_1...
[49/54] Extracting isc-dhcp44-relay-4.4.2_1: ....... done
[50/54] Upgrading json-c from 0.14 to 0.15_1...
[50/54] Extracting json-c-0.15_1: .......... done
[51/54] Deinstalling syslog-ng327-3.27.1_1...
You may need to manually remove /usr/local/etc/syslog-ng.conf if it is no longer needed.
[51/54] Deleting files for syslog-ng327-3.27.1_1: .......... done
[52/54] Installing syslog-ng329-3.29.1_2...
[52/54] Extracting syslog-ng329-3.29.1_2: .......... done
[53/54] Upgrading os-dyndns from 1.22 to 1.23...
[53/54] Extracting os-dyndns-1.23: .......... done
Stopping configd...done
Starting configd.
Reloading plugin configuration
Configuring system logging...done.
root@OPNsense:/usr/local/opnsense/scripts/firmware #

The next stel, according to the script, would be to restart the WebGUI, but that doesn't happen, as one can see in the log. The upgrade has come to a grinding halt, while the last modification date of the file that contains the upgrade log is changing every minute

Help is appreciated

9

19.7 Legacy Series / Re: Feature /info request - dnsdist availability on OPNsense

« on: December 03, 2019, 09:47:56 pm »

is there a short description how to use the standard freebsd ports/pkgs on opnsense?

tnx


Never mind, i found it

10

19.7 Legacy Series / Feature /info request - dnsdist availability on OPNsense

« on: December 01, 2019, 01:56:10 pm »

experts,

is dnsdist, a dns loadbalancer available at https://dnsdist.org, going to be added to OPNsense in the forseeable future?
Or has someone already made it working?

I like to run dnsdist as my local dns 'resolver' on my OPNsense device and balance the requests over DoT to a few unbound resolvers under my control. This way availability  and security increase and my local ISPs can't peek into traffic.

Thanks