Messages

1

24.7 Production Series / Re: Wireguard Gateway

« on: July 31, 2024, 02:51:29 pm »

interface is setup as described in the wiki here

dns is also setup accordingly in the instance, do you think here lays the problem?
I already tried to use 1.1.1.1, or 10.2.0.1 (privided from protonvpn as DNS)=>didnt work as well

2

24.7 Production Series / Re: Wireguard Gateway

« on: July 31, 2024, 12:40:42 pm »

Picture 1 - Wireguard Logs

Picture 2 - Tried changing the Gateway to ProtonVPN, didnt work

3

24.7 Production Series / Re: Wireguard Gateway

« on: July 31, 2024, 12:03:24 pm »

attached

4

24.7 Production Series / Wireguard Gateway

« on: July 31, 2024, 11:43:48 am »

Hello everybody,

I try to configure a Wireguard Gateway to route my networks through the tunnel to ProtonVPN.

I configured my Firewall as described in the wiki
https://docs.opnsense.org/manual/how-tos/wireguard-selective-routing.html

Yet unfortunaetly there is no internet access through that route

The only thing that looks fishy to me is the lack of "UP" in the Wireguard Status for the peer

Can anybody help to troubleshoot this?

Regards

5

24.1 Legacy Series / Re: arprequest_internal: cannot find matching address

« on: February 15, 2024, 11:03:04 pm »

yes, same here

using proxmox and opnsense and get those messages too

works flawlessly on other servers

6

Web Proxy Filtering and Caching / DoT with ECH

« on: February 01, 2024, 11:01:51 am »

Hello everybody,

i have setup opnsense with cloudflare DoT over unbound.

So far so good, but now i came across the cloudflare browser security check and apparently Encrypted Server Hello is not supported.
https://www.cloudflare.com/ssl/encrypted-sni/#results

Now i wonder if its not supported since firefox only does when its using DoH or if unbound doesnt support it?

Also i wonder if i have to set up DoH on unbound and direct firefox to that dns server in order to make it work

Thank you in advance

Regards

7

Virtual private networks / Wireguard behind ProtonVPN

« on: June 05, 2023, 12:20:57 pm »

Hello everybody,

I setup OPNsense to route alle of my traffic through ProtonVPN.

But now I want to setup a possiblity, to access my local network through wireguard.

I setup my Firewall as described here https://docs.opnsense.org/manual/how-tos/wireguard-client.html

So in order to evade the ProtonVPN restrictions (which as far as I can tell dont support Port forwarding) I used a cloudflare tunnel to reach my server.

So I tried the same to route the cloudflare tunnel to my Firewall and Wireguard Port without success.

Is it possible that it doesnt work, because cloudflare only forwards HTTP traffic?

And is there a way to make this setup work?

Thank you in advance

Regards

8

General Discussion / Proxmox + OPNsense + IDPS offloading NIC

« on: March 23, 2023, 10:57:37 am »

Hello everybody,

currently im using a small Fujitsu ThinClient to run OPNsense with an Intel Pro 1000 PT NIC.

The chipset is pretty old and Netmap drivers dont support hardware acceleration.

But since I m planning to virtualize OPNsense in Proxmox I´m wondering, is there a better suited Network Card with "better" or more supported virtualization support?

Also is it possible, to setup some hardware acceleration for networking offload, or IDPS?

Thank you in advance

9

General Discussion / Slow Netflix on Nvidia Shield

« on: December 06, 2022, 10:08:46 am »

Hello everybody,

when I Route my traffic through my OPNsense, Netflix on my Shield turns barely useable.

I checked it via Speedtest to fast.com and the traffic graph in the gui.

Im using IDPS, Squid and a VPN connection, however even when I deactivate everything its still slow.

Besides the Speedtest via the Netflix app fails and just shows 0, withouth OPNsense it works flawlessly.

Is it possible that im missing some NAT/Outbound rule anywhere?

Thank you in advance.

Regards

10

General Discussion / VPN Split Tunneling/bypassing

« on: November 09, 2022, 05:22:14 pm »

Hello eveybody,

I setup a VPN Gateway with following Guide,

https://thehotelhero.com/opnsense-protonvpn-setup

The traffic from all of my devices gets routed through the VPN as wished.

But obviously there are some exceptions where its not helpful to go through a VPN tunnel (for instance Gaming - Geforce Now)

Is it possible to change the setup to preferable domain based routing?

Thank you in advance

11

Virtual private networks / OPNsense ProtonVPN Gateway and Portforwarding

« on: September 27, 2022, 09:23:47 am »

Hello together,

i try to setup a vpn gateway with ProtonVPN.

I plan to setup the VPN Gateway following this instruction https://thehotelhero.com/opnsense-protonvpn-setup.

But I m wondering if i m still able to portforward to my Nginx reverse Proxy.

I suspect not, since all my traffic would be redirected to Proton and they dont offer Portforwarding.

Does anybody know more about this topic and possibly a solution to it?