Messages

1

24.1 Legacy Series / Re: Simple Firewall Log Viewer

« on: June 05, 2024, 07:37:21 pm »

You could take a look at LNAV:

https://lnav.org/

2

24.1 Legacy Series / Re: More bad news from the 24.1 upgrade

« on: February 04, 2024, 11:35:19 am »

Yeah it's that zenarmor crap doing it.

My OPNsense installation have been alot more "Zen" since I just stopped using that piece of trash software.

3

24.1 Legacy Series / Re: 24.1 - DHCP server moves to KEA - implications?

« on: January 30, 2024, 08:29:58 am »

Then don't lol.

Current DHCPB is not going away (yet).


I'm very happy to see them implement KEA as it's the way.

4

Zenarmor (Sensei) / Re: Zenarmor and self-hosting websites with Cloudflare Proxy

« on: August 09, 2023, 10:48:15 am »

Cloudflares WAF is a god compared to Zenarmor.

You cannot even compare them feature wise.

5

Zenarmor (Sensei) / Re: [RESOLVED] Zenarmor Engine 1.14.1 Update Won't Allow by "Item" Only "Category"

« on: August 09, 2023, 10:22:22 am »

Oh boy, I used to be a big fan of Zenarmor. Now I'm actually considering cancelling my subscription.

Yeah, I canceled my home subscription. Not really worth it anymore, poor QA along with nerfing features was enough for me.

Who cares about a fancy webui when the core features gets broken.

6

23.1 Legacy Series / Re: Domains cannot be whitelisted with Unbound

« on: August 06, 2023, 02:22:31 pm »

I've never added whitelisted entries from the reporting tab so I wouldn't know.

I add my whitelisted domain in:

Services --> Unbound DNS --> Blocklist
Whitelist Domains: Input FQDN or use regexp.

7

23.7 Legacy Series / Re: Gateway Status IPv4 is Offline but its up

« on: August 05, 2023, 03:18:43 pm »

Does the gateway reply to ICMP?

Try pinging it from your PC.

8

23.1 Legacy Series / Re: Domains cannot be whitelisted with Unbound

« on: August 05, 2023, 03:15:05 pm »

It works for me, what is the FQDN and how does your whitelist entry look?

9

General Discussion / Re: Alert for new DHCP client

« on: August 03, 2023, 10:54:44 am »

I guess you could use something to parse the DHCP-log.

However, if you are not explicitly bound to DHCP you could use https://virtualize.link/opnarp/ to be alerted of new ARP entries.

10

General Discussion / Re: opnsense are crooks

« on: August 03, 2023, 10:32:44 am »

Lol...

You call them crooks yet they deliver one of the best open source firewalls for free.

How about you keep better track on your subscriptions next time?

11

General Discussion / Re: Update Firewall Alias from Cloudflare API

« on: July 25, 2023, 11:29:10 pm »

Haven't used the API so cannot comment on that but the txt lists from here works great:

https://www.cloudflare.com/ips/

12

General Discussion / Re: Firewall/HAProxy: configure https services [subject updated]

« on: July 19, 2023, 06:02:19 pm »

I've not used pi-hole for years but you should be able to select a custom server and input your OPNsense IP somewhere 

13

23.1 Legacy Series / Re: ddclient and Dynu DNS

« on: July 18, 2023, 10:41:50 pm »

I am on my third DNS provider trying to find a provider that will work with both the new ddclient and also the new ACME client.

Cloudflare works wonderfully.

14

23.1 Legacy Series / Re: NTP not able to use ipv6 peer

« on: July 18, 2023, 07:46:58 pm »

What happens if you try to open a connection to the IPv6 server on port 123 with UDP with netcat or similar?

15

23.1 Legacy Series / Re: Ongoing ACME/LE issues

« on: July 18, 2023, 05:26:10 pm »

You could try with a forced renewal and then check the dates on the cert in your browser.