Messages

1

24.1 Legacy Series / monit help

« on: June 21, 2024, 02:47:17 pm »

i want to restart IDS/IPS services when the memory used hits 76%
 i know it can be done by monit(monit≥ service test settings) i can run a script when a condition mached.but i dont know how to do it. Don't know how to write the script & make it executable by monit service  someone help me



tx

2

Web Proxy Filtering and Caching / Re: [SOLVED] sarg

« on: June 21, 2024, 07:55:15 am »

to view the report u need to install nginx on opnsense
go to services>nginx>configuration

in http(s) tab> location> add
add a description
URL Pattern = /test
Match Type = caseinsensitivemach
File System Root = /var/www/html/squid-reports
Index File = index.html

save

in http(s)tab>http server ( make sure to click advanced mode)

HTTP Listen Address = 8888 (port number-the port i use )
Default Server = tick
Server Name = fqdn of ur opnsense server or the ip
File System Root = /var/www/html/squid-reports
Locations = the name u add in the above step

save

Generel tab

Enable nginx = tick

how to access
 http://ur opnsense ip or fqdn:8888(the port u give)

3

Web Proxy Filtering and Caching / Re: [SOLVED] Squid (web proxy) reporting

« on: June 21, 2024, 07:53:43 am »

i figured it .... instructions bellow

pkg install sarg

edit sarg.conf file at this location
/usr/local/etc/sarg/sarg.conf

un-comment following lines for ur needs

access_log /var/log/squid/access.log (path to ur squid accress.log)
output_dir /var/www/html/squid-reports
date_format e (Date format in reports: e (European=dd/mm/yy), u (American=mm/dd/yy), w (Weekly=yy.ww))
overwrite_report (yes/no)

save the file

to generate the report run sarg -x on the command line

to view the report u need to install nginx on opnsense
go to services>nginx>configuration

in http(s) tab> location> add
add a description
URL Pattern = /test
Match Type = caseinsensitivemach
File System Root = /var/www/html/squid-reports
Index File = index.html

save

in http(s)tab>http server ( make sure to click advanced mode)

HTTP Listen Address = 8888 (port number-the port i use )
Default Server = tick
Server Name = fqdn of ur opnsense server or the ip
File System Root = /var/www/html/squid-reports
Locations = the name u add in the above step

save

Generel tab

Enable nginx = tick

how to access
 http://ur opnsense ip or fqdn:8888(the port u give)

 
to run on a specific time ( i run on every day at 23.59)

edit
nano /etc/crontab

add this line to the borrom
59 23 * * * root sarg -x

4

Web Proxy Filtering and Caching / [SOLVED] sarg

« on: June 17, 2024, 09:10:26 pm »

i have installed sarg & generated the report by running sarg -x & the report is saved on /var/www/html/squid-reports/2024Jun18-2024Jun18

now i dont know how to view the file... can some one help me how to view the file

5

Web Proxy Filtering and Caching / [SOLVED] Squid (web proxy) reporting

« on: June 17, 2024, 07:59:28 pm »

Is there any reporting tool for squid webproxy? (Like in pfsense's light squid package)

6

24.1 Legacy Series / Re: firewall block rule help

« on: April 23, 2024, 12:24:47 pm »

Alias:
192.168.151.6 = DNS_SERVER

Floating rule:
Source: *, Destination: !DNS_SERVER, Protocol: TCP/UDP, Dest. Port: 53, block, Logging on
-> Check log if successful
-> Logging off

Solution provided as is. No liability for data loss, system outage or any other unwanted situations.

Tx

7

24.1 Legacy Series / SOLVED. firewall block rule help

« on: April 20, 2024, 07:19:40 pm »

my dns server is 192.168.151.6
i want to block any other dns request

8

24.1 Legacy Series / Help with Monit to monitor log files

« on: April 16, 2024, 03:15:52 pm »

hi im new to opnsense.

1 how can i do a dynamic dns log file monitor for changed new ip ("set new ip" key word) & email me with the new ip in the log file using monit

2. how to monitor for ids rule updates if it ran the update  & if its successful

how can i do those with monit.. is it possible