Messages

Check in ZA logs for your daughter, if you see the device she used to connect to youtube. Check Connections as well block tabs. What do you see there.

Regards,
S.

I added support for webhook, ntfy and custom

Wow thanks!

Regards,
S.

The only guide to follow should be the one in the docs. I did use it and its working.

Dont you have a backup of the config? Or a snapshot to revert to prior you wiped the config?
Do you have properly configured the Instances and Peers on OPN?
Do you have properly configured the key on OPN and the client (remote side)?
Do you have proper rules to allow Wireguard connection on the interfaces its reaching it (WAN most likely)?

If the remote client is reaching the WG instance e.g OPN, and has proper rules, the handshake may fall cause of wrong keys.

Regards,
S.

Looks interesting, and remembers me on NetalertX.

Few questions here:

Requirements

    1. OPNsense 24.x or newer
    2. Working SMTP configuration (System → Settings → Notifications)
    3. SSH access enabled (System → Settings → Administration → Secure Shell)
    4. Root password

2. Working SMTP configuration (System → Settings → Notifications)
Would it be possible to have as well notifications via webhook e.g to support ntfy instances?


3. SSH access enabled (System → Settings → Administration → Secure Shell)
4. Root password
Does this work only with a Root account? Or does this work with any active admin account with proper permissions?

Regards,
S.

professionals say that if OPNsense supported VRF, they would immediately switch to that solution

I agree that having VRF on OPN would be great, VRF or Instances depending on the vendor are widely used on FWs as well. There is a use case for them, and a reason its needed.

But this where "they would immediately switch" "if <PRODUCT> had <this>" is just bollocks. This is the same as listening to a Windows user telling they will switch to Linux if Linux has this or that.

Regards,
S.

The AQC113C works in Linux but with caveats, however it gets improved. It would work fine as an access port. VLANs, Bonding and RSS had problems. But as for Linux it will get fixed fast compared to FBSD.

For FBSD, well thats another story. There is an official request to have these NICs working on FBSD, even an early implementation of the driver. But it does not work on FBSD 14. And on the driver no work was done for some time from FBSD. So it integration is very very very slow.

The only positive thing about these NICs and FBSD is, we could say, people starting noticing it and would like to have them in a workable state on FBSD.

Regards,
S.

There really is no reason to ask this other than on the ZA subsection on the forum.

If you want a faster responce you can always open the a ticket via the ZA GUI in OPNsense.

Regards,
S.

You can always check the roadmap whats next to me migrated under MVC/API.
The area that is currently being worked on is usually part of the Major release roadmap.

Regards,
S.

True spirit of homelab Christmas is captured on this pic

Regards,
S.

Merry Christmas to you and the community as well :)

Regards,
S.

https://docs.opnsense.org/manual/install.html#opnsense-installer

Regards,
S.

[GW = disabled]

I tested the GW and behavior cause its an interesting Topic and the Use case the OP has is often used for BGP.

GW = disabled
GW itself or any static routes with this GW will not be in the route table | GW is still selectable in FW for PBR = no traffic will be routed to it

GW = force disabled
GW itselfs appears in the routing table so does any static route with this GW | GW selectable in Rules PBR = traffic is routed

Honestly I have no clue what actually should this Force Disable do in fbsd, but per the behavior I have seen it smells like its to remove it from the default route selection.

Regards,
S.

You can as well delete the routes in the table directly. If there are no statics/active GW for those statics when you delete them from RIB they will not be populated back.

Regards,
S.

(I cannot activate DHCP)

Why? :)
Is this just for testing?

Currently, I can ping other VMs on the same WAN network (they have internet access), andI can ping the Gateway itself, but I have no internet connectivity (i can't ping 8.8.8.8 or 1.1.1.1).

So you ping from the OPN directly?
Assuming the WAN has assigned a Private IP, you can only ping devices from the same subnet as is the WAN on OPN?
Do you have a default route set pointing to WAN?

Regards,
S.

I dont think there is any official path for this.
Adguard is a 3rd party community plugin.

The only official upgrade path is for OPNsense itself and thats set automatically by the devs.

What you can do is to save your current config. OPN as well Adguard. Upgrade and reinstall Adguard and import back the config.

Regards,
S.