Messages

1

Hardware and Performance / Supported Ethernet card standard

« on: August 24, 2022, 10:36:41 pm »

I'm setting up OPNsense on Core i7 6700 HP G2 Elite 800 machine for learning purpose

This machine has a built in Intel Ethernet card, additionally i installed an Intel PCIe Ethernet card
After installing OPNsense I came to know that it only picked up additional PCIe Intel card but could not recognize built in card.

Now I want to buy a quad or dual Ethernet card for my machine I dont know what standards or types it supports, please let me know what parameters should I consider to choose an Ethernet (NIC) card/adapter.

2

Web Proxy Filtering and Caching / Re: Web request directing to web server

« on: August 16, 2022, 09:46:41 pm »

Can we use Unbound DNS for outside traffic as well? if yes, how can we configure it on the OPNsense firewall, thanks

3

Web Proxy Filtering and Caching / Re: Web request directing to web server

« on: August 11, 2022, 05:59:42 pm »

1) Port forward a different port for each domain thru the firewall to the web server for that domain. (Do this to test if the website is working thru firewall)

What i believe we can't single port forward to multiple ips

2) Put all the domain web pages on 1 Server, port forward thru the firewall to web server and let host headers do the work for you. (This is what I have used in the past)

I know it can be done, but i'm learning how to do it if we have 3 web servers separately 

3) Setup a reverse proxy that you port forward to thru the firewall and then let the reverse proxy do it's work. If you get this to work, then you could move your reverse proxy to the firewall if desired as NGINX is an option as well as traefik (traefik can be retreived by using the mimugmail repo addin)

Can we install NGINX on OPNsense and there some API to programmatically add new domains in the future?

BTW how hosting companies handle such things? do they also use reverse proxy?

4

Web Proxy Filtering and Caching / Web request directing to web server

« on: August 10, 2022, 08:38:28 pm »

Its a learning setup, I have 3 domains registered with godaddy, I updated A record with my public static IP
On my environment I have 3 machines running web apps for each domain (i want to keep web apps on separate computers) If i port forward to any of machine's IP, I can load the website, that means everything is working good.

What i want to achieve is I want to use that single IP for multiple web servers (PCs) I want to learn how can i achieve this using OPNsense.

5

General Discussion / OPNSense web UI stops response while using fiddler

« on: June 29, 2022, 08:36:23 pm »

I install OPNSense with all default setting, LAN IPs 192.168.1.1 to access web UI,

To see some network traffic on local computer if I load fiddler OPNSense stop responding in the browser, but when I close the opened fiddler instance right after opnsense start working again, what could be the reason?

6

Intrusion Detection and Prevention / Can i create a rule to block a specific application?

« on: June 27, 2022, 07:32:44 pm »

I got back to firewall world after a very long time, last time i used ISA Server where i had the option to stop an application to communicate to internet/WAN network for example

I can create a rule that block any traffic coming from any internal network/IP sent through application skyp.exe

if that is something not possible through OPNSense, can you please advise what could be the closest solution, how can i filter traffic to understand blocking parameters for example

Can I create a rule to show only out going traffic from internal IP xxx.xxx.x.x containing URL/Querystring 'xyz'