Messages

1

Web Proxy Filtering and Caching / Re: problem with the load- balancing of HAProxy into OPNsense

« on: April 01, 2021, 04:01:19 pm »

Good morning, @lfirewall1243.

I hope all is good with you !

I did all described, and it didn't work. Then, I have recreated it in another popular, free firewall, and it was working exactly as you have described it. I have checked the reason, and I have noticed, when I allow the ping on wan, it is not working with OPNSense. I saw a threat  https://forum.opnsense.org/index.php?topic=3763.0 where @franco was giving an explanation of that issue, and I think this is the reason because with the other installation, and recreation exactly the same situation, fw- rules, etc., the ping on wan is working, and I am able to achieve everything as you have explained.

To be honest, I didn't understand @franco's explanation how to fix the ping issue, so if you can help with this it will be very appreciated.

Thank you, and Best Regards,

Asen

2

Web Proxy Filtering and Caching / Re: problem with the load- balancing of HAProxy into OPNsense

« on: March 27, 2021, 04:58:35 pm »

Thank you very much for the prompt reply, @lfirewall1243.
Let me try it, and will revert to you back if some additional issues will be encountered.
Best,
Asen

3

Web Proxy Filtering and Caching / problem with the load- balancing of HAProxy into OPNsense

« on: March 26, 2021, 02:55:19 am »

Good evening, Everyone
I hope, Everybody is safe and in good mood !
I was looking for a simillar issue but couldn't find a match so I apologize if I am repeating an issue. Also I have realised that the most available, even official OPNSense - HAProxy' manuals have the old interface shown which is giving even more trouble for the issue.
I am trying to implement HAProxy as an add-on on OPNSense- firewall.
In my DMZ I have two identical CentOS servers with identical web- pages (apache), and IPs - 192.168.100.50, and 192.168.100.100. The access to them from the wan over :80 is granted with a port- forwarding rule on the firewall.
Here's a link to the screenshots from opnsense -  https://matrixcollegeca0-my.sharepoint.com/:f:/g/personal/agrozdanov_matrixcollege_ca/Enf3i5QhXz1GqTf75f1Jy2EBTGHcRJr_NMqIPaeFhW7Vxw?e=MV8CNg.
There, you will see also my port- forwarding, and firewall related rules.
I have assumed, I might need a "virtual" ip- address for the load- balancer itself - 192.168.100.10:443 so I have putted it into the Public Services- section of HAProxy. I did it, thinking about how I would've do it If I would've introduce the HA Proxy on a separated PC but I might be wrong ...
Also, I noticed that using anything else than 127.0.0.1 into Public Service - Listen Address will not allow the HAProxy service to start (see the left- top corner of the screenshots, and 06.png) even though the "Test syntax" is done without any errors....
If I use 127.0.0.1:443 into Public Service - Listen Address, and change the port- forwarding rule accordingly, I see on the web- browser the administrative- web interface of the firewall so I am pretty sure it supposed to have a way to "translate" it to an internal, virtual IP ...
Please, give a hand with this issue.
Thank you, and Best Regards,
Asen

4

Hardware and Performance / Watchguard Firebox X700E Install - Freezing while POST

« on: January 03, 2020, 07:14:09 pm »

Hello Everyone, and Happy New Year!

As CurryX (Topic: Firebox X750E Install - Working), I am having WatchGuard Firebox X700E, and I had pfSense working on it, and since there is no more x 32 bit support, I wanted to switch to OPNSense.

The way pfSense has been installed, as well as BIOS has been flashed is as CurryX has described into its post.
I have installed the OPNsense-19.7-OpenSSL-nano-i386 on a CF- card using Rufus, and bootup the device with the card inside. It does the mem- test, and starts the POST but hangs on the position on the attached image.

Could you please, give some suggestions, and help so to resolve the issue.

Thanks, and Best,