Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - paul199513

Pages: [1]

German - Deutsch / Logging an Graylog funktioniert nicht

« on: May 21, 2024, 02:46:56 pm »

Hallo zusammen,

ich habe zwei Firewalls. Bei der einen taucht der Fehler auf, dass ich einen Portscan auf den Graylogserver nur erfolgreich vornehmen kann, wenn ich als Source-Adresse die Firewall LAN Adresse nehme. Wenn ich das Feld leer lasse, funktioniert die Verbindung nicht.
Bei der anderen Firewall erhalte ich den Fehler, dass dass der Austeller des SSL Zertifikates (Wildcard Zertifikat) nicht ermittelt werden kann. Für das Webinterface funktioniert das SSL Zertifikat ohne Probleme.

Vielen Dank im Voraus

German - Deutsch / Web UI Port nicht erreichbar

« on: January 27, 2023, 09:21:28 pm »

Hallo zusammen,

wenn ich die Weboberfläche auf einen Port kleiner als 55000 stelle, ist dieser per WAN nicht erreichbar, über das LAN funktioniert jeder Port. Woran könnte dies liegen? Das gleiche Problem taucht auch bei der Konfiguration von HA Proxy auf.

Vielen Dank im Voraus

High availability / Re: Can't connect HA

« on: November 16, 2022, 04:38:14 pm »

That is something i can answer, because i don't know, how the provider do this. The two interfaces are connected directly with a patch cable.

High availability / Re: Can't connect HA

« on: November 16, 2022, 11:16:09 am »

It works now. It was just my fault. There was a second firewall from my provider and it declined all the traffic from the HA interface.

Thank you for your help

High availability / Re: Can't connect HA

« on: November 15, 2022, 11:24:13 am »

This is the firewall rule, i have set at both firewalls:

IPv4 * HA net * * * * * Default allow LAN to any rule

High availability / Re: Can't connect HA

« on: November 15, 2022, 10:59:18 am »

No i changed nothing there.

High availability / Can't connect HA

« on: November 15, 2022, 09:51:46 am »

I configured HA on both firewalls. I entered the Synchronize Peer IP, the Synchronize Config to IP and the credentials. If i leave the Synchronize Peer IP empty. I see the following traffic in the firewall:
HA 2022-11-15T09:42:35 10.0.0.1 224.0.0.22 igmp let out anything from firewall host itself
HA 2022-11-15T09:42:35 10.0.0.1 224.0.0.240 pfsync let out anything from firewall host itself
But if i enter the correct IP, nothing happens. The firewalls can ping each other and if i click save the master firewall call the second one on port 443.

High availability / Re: Can't ping HA interface IP

« on: November 14, 2022, 03:39:25 pm »

The firewalls can ping each other. I also checked with a port scan, if the backup firewall listens on the https port on the HA interface and got a succeeded.

High availability / Re: Can't ping HA interface IP

« on: November 14, 2022, 01:36:14 pm »

I was now able to ping the other firewall, but HA isn't working. In the menu is the info that the backup firewall is not accessible or not configured.

High availability / Re: Can't ping HA interface IP

« on: November 14, 2022, 12:34:29 pm »

Hi, i configured the firewall rules already. I let every ipv4 traffic on that interface in.

High availability / Can't ping HA interface IP

« on: November 14, 2022, 11:47:50 am »

Hello,
i have two OPNsense firewalls which are connected to a switch and also connected directly to use this port as pfsync. I have entered an ip of the same subnet, but the firewalls can't ping or reach each other. Do i need to configure something else?

Thanks i advance

General Discussion / HAproxy www to non-www

« on: December 19, 2021, 12:50:27 am »

Hey everyone, currently i am playing around with the HAproxy feature of the OPNsense Firewall. I need to redirect https://www.example.com to https://example.com and don‘t know, how i could achieve this.

Hopefully somebody could help me

Pages: [1]