OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of troplin »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - troplin

Pages: [1]
1
24.7 Production Series / Re: Firewall logs - "let out anything from firewall host itself"
« on: October 27, 2024, 04:14:59 pm »
Every packet that goes through opnsense passes the firewall twice, once when entering the device („in“), once when leaving it again („out“).

All your filter rules should usually be on the „in“ direction and the „let out anything…“ rule is normally the only „out“ rule. That means that almost every packet will match that rule.
I would recommend disabling logging for that rule under „Firewall“ -> „Settings“ -> „Advanced“ -> „Logging“ -> „Default pass“

2
24.7 Production Series / Re: Regular backup of OPNsense config to a local NAS (via SMB)?
« on: September 29, 2024, 09:55:17 pm »
What brandof NAS are you using? I‘m running a git server on my Synology, and using that as backup. There‘s an official Synology package for that (I‘m using a different one but it shouldn‘t matter).

3
24.7 Production Series / Re: Question About Log Files
« on: September 29, 2024, 07:42:17 pm »
You can enable/disable logging for the auto-generated rules under „Firewall“ -> „Settings“ -> „Advanced“ (Section „Logging“)

4
24.7 Production Series / Re: have you updated your os-cpu-microcode for your select processor?
« on: September 18, 2024, 05:26:50 pm »
Oh wow thanks a lot for the detailed answer, that clears it up. Especially the last paragraph.

Not being familiar with FreeBSD in general I just assumed it was a permanent update and it didn’t even cross my mind that it could work the way it does.
I might even have removed it at some point in the future not knowing that this would undo it completely.

This might be common knowledge but I think it wouldn’t hurt to add a short explanation to the plugin description @franco

5
24.7 Production Series / Re: have you updated your os-cpu-microcode for your select processor?
« on: September 17, 2024, 09:52:15 pm »
I also installed it without problems but I‘m not sure I understand how the plugin works exactly. Is it a one-time installation or does it keep installing microcode updates in the future?

Also, is there a way to find out if there was actually something installed? As far as I can tell, there’s a single plugin for all intel CPUs, how do I know if it applies to my specific model?

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2