"
I rebooted the appliance again, and it now seems to be running normal again. I'll see how it behaves.
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#2
Zenarmor (Sensei) / Re: Zenarmor 1.18 higer idle cpu load
November 25, 2024, 09:31:23 AM
ipdrstreamer (uses op around 42%)
eastpect: Eastpect Instance 1
eastpect: Eastpect Instance 0
must be something wrong with the reports. When I click on Zenarmor, reports, I get "No connections have been recognized for the last 30 minutes", which is unlikely
eastpect: Eastpect Instance 1
eastpect: Eastpect Instance 0
must be something wrong with the reports. When I click on Zenarmor, reports, I get "No connections have been recognized for the last 30 minutes", which is unlikely
#3
Zenarmor (Sensei) / Re: Zenarmor 1.18 higer idle cpu load
November 24, 2024, 08:10:54 AM
I have the same issue. Upgrade last Friday (around noon) to 1.18.3, and idle CPU has almost doubled !
It is clearly showing in LibreNMS metrics. I have rebooted the firewall, but to no avail.
It is clearly showing in LibreNMS metrics. I have rebooted the firewall, but to no avail.
#4
General Discussion / Re: Does NTOPNG itself scan networks and/or hosts ?
September 14, 2024, 10:31:07 AM
You'll need NGFW features for that, such as the ZenArmor integration that allows for Application Control.
https://www.zenarmor.com/docs/policies/application-control-rules
It'll keep track of the Youtube set of dynamic external IP addresses and will allow for the application type to be recognized as Youtube traffic.
https://www.zenarmor.com/docs/opnsense
https://www.zenarmor.com/docs/policies/application-control-rules
It'll keep track of the Youtube set of dynamic external IP addresses and will allow for the application type to be recognized as Youtube traffic.
https://www.zenarmor.com/docs/opnsense
#5
General Discussion / Does NTOPNG itself scan networks and/or hosts ?
September 12, 2024, 08:55:22 AM
I have installed ntopng on my opnsense and was looking at network connectivity inside my IOT network (that has a solar inverter, charging station and battery). All three are from different vendors.
I noticed activity that is originating from the gateway inside the IOT network (diagram attached). I thought it was a bit strange that the gateway was trying open SSH or http connections to hosts inside the IOT network.
But perhaps it is not strange, and it is intended behavior from ntopng to check open ports on hosts? Can someone confirm/deny this ?
I noticed activity that is originating from the gateway inside the IOT network (diagram attached). I thought it was a bit strange that the gateway was trying open SSH or http connections to hosts inside the IOT network.
But perhaps it is not strange, and it is intended behavior from ntopng to check open ports on hosts? Can someone confirm/deny this ?
#6
Intrusion Detection and Prevention / Re: VLAN access to internet and not to LAN
November 06, 2023, 02:05:16 PM
as I'm new to OPNsense, the fact that "*" is the internet is imho a bit confusing, as putting "*" as destination also allows access to LAN.
but this does help a lot. thanks Patrick
br,
Bram
but this does help a lot. thanks Patrick
br,
Bram
#7
Intrusion Detection and Prevention / VLAN access to internet and not to LAN
November 06, 2023, 01:51:36 PM
Hi,
I have created a new VLAN (10). That VLAN needs access to internet, and certain LAN services.
DHCP is working fine, and I have added port 53 for access to Unbound DNS on the firewall. However, when I want to allow HTTP to internet, it does not work. The destination "WAN net" does not work. When I allow * as destination, it does work, but that also allows access to LAN resources using HTTP, which is something I don't want.
What am I doing wrong ?
I have created a new VLAN (10). That VLAN needs access to internet, and certain LAN services.
DHCP is working fine, and I have added port 53 for access to Unbound DNS on the firewall. However, when I want to allow HTTP to internet, it does not work. The destination "WAN net" does not work. When I allow * as destination, it does work, but that also allows access to LAN resources using HTTP, which is something I don't want.
What am I doing wrong ?
#8
Zenarmor (Sensei) / Re: Zenarmor not reporting anymore after upgrade to OPNsense 23.7.7_1
October 26, 2023, 10:33:01 PM
And 2 hours later some pieces are working fine again, but the Threats and Connections reports or Live Sessions are still showing "There is no data to display".
Perhaps the Elastic Search reporting backend needs to catch up after the upgrade.
Perhaps the Elastic Search reporting backend needs to catch up after the upgrade.
#9
Zenarmor (Sensei) / Zenarmor not reporting anymore after upgrade to OPNsense 23.7.7_1
October 26, 2023, 09:32:35 PM
I just upgraded my OPNSense FW to the latest version. Zenarmor Engine, Reporting Database and Cloud Agent are all running, but I don't see any traffic (not under Reports, not under Live Sessions, not under Activity Explorer) since that update.
Has anyone experienced this issue too ? I do think Zenarmor is working in the background (blocks ads etc).
The ZEnarmor plugins have all been updated to the latest version
os-sensei (installed) 1.15.2
os-sensei-agent (installed) 1.15.2
os-sensei-updater (installed) 1.15
os-sunnyvalley (installed) 1.3
These plugins are showing as "N/A" under Tier. Is that normal ? All other plugins show e.g. Tier 3
Has anyone experienced this issue too ? I do think Zenarmor is working in the background (blocks ads etc).
The ZEnarmor plugins have all been updated to the latest version
os-sensei (installed) 1.15.2
os-sensei-agent (installed) 1.15.2
os-sensei-updater (installed) 1.15
os-sunnyvalley (installed) 1.3
These plugins are showing as "N/A" under Tier. Is that normal ? All other plugins show e.g. Tier 3
Pages1
