"You are welcome. If you want my unbound blocklist, i can share to you. I just install a ultimate blocklist as core blocklist to remove 99% ads for daily web surfing. For the Bad IP filtering, i have added tenth badIP blocklists in firewall aliases which contribute firewall tables entries about 420000. Those entries block more than 90% scanner, hacker....daily. I haven't installed any IDS/IPS except crowdsec in opnsense because it will slow down the speed at the background. I think it is good enough to block most of hacker/scanner for daily use.
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#1
24.7, 24.10 Legacy Series / Re: unbound DNS seemt to stop resolving DNS
October 15, 2024, 04:20:45 PMYou are welcome. If you want my unbound blocklist, i can share to you. I just install a ultimate blocklist as core blocklist to remove 99% ads for daily web surfing. For the Bad IP filtering, i have added tenth badIP blocklists in firewall aliases which contribute firewall tables entries about 420000. Those entries block more than 90% scanner, hacker....daily. I haven't installed any IDS/IPS except crowdsec in opnsense because it will slow down the speed at the background. I think it is good enough to block most of hacker/scanner for daily use.
#2
24.7, 24.10 Legacy Series / Re: unbound DNS seemt to stop resolving DNS
October 14, 2024, 06:52:36 PM
Actually, i used pfsense more than 10 years then switch to opnsense before few months ago. I also have my own blocklist used in pfsense but i didn't import from pfsense to opnsense unbound because i definitely sure it is not 100% compatible with opnsense unbound. So, i copy all the blocklist and firewall rules into my notepad then create all the rules one by one. It takes few hours for me to migrate all the pfsense setting to opnsense unbound.
Now, my firewall table entries and unbound blocklist are 4618097 and 2876467 respectively are running blazingly fast with n305 cpu and 32GB DDR5.
Go back to you question, before you do any changes of setting, please go to system=>configurations=>backups. you can backup the null or default setting into your hard driver before you start to change anything in the opnsense. If you suffer any problems due to changing of setting, just restore the suspected area then reboot your opnsense. Then everything will be back to normal again.
Now, my firewall table entries and unbound blocklist are 4618097 and 2876467 respectively are running blazingly fast with n305 cpu and 32GB DDR5.
Go back to you question, before you do any changes of setting, please go to system=>configurations=>backups. you can backup the null or default setting into your hard driver before you start to change anything in the opnsense. If you suffer any problems due to changing of setting, just restore the suspected area then reboot your opnsense. Then everything will be back to normal again.
#3
24.7, 24.10 Legacy Series / Re: unbound DNS seemt to stop resolving DNS
October 13, 2024, 07:58:48 PM
please try restore unbound config only in firmware backup. I suffered this problem when i updated from 24.7.5.
After restoration, my opnsense and unbound back to normal.
After restoration, my opnsense and unbound back to normal.
#4
24.7, 24.10 Legacy Series / Re: 24.7.6 unbound no longer showing client queries
October 11, 2024, 05:23:54 PMQuote from: meyergru on October 11, 2024, 10:06:07 AM
As for the original problem: I see this too, but it seems that the list is always limited to 1000 entries, probably for performance reasons. If you select one specific client, it will also use a time range around the selected point (you can see that in the highlighted filter). That is potentially outside the limited range, so it is not shown.
Anyway, seems like a bug to me, you should report it via Github.
My situation is that if i using unbound as dns server, all clients are not able to resolve the DNS and cannot reach internet. However, if i switch to Dnsmasq, everything becomes normal.
#5
24.7, 24.10 Legacy Series / Re: 24.7.6 unbound no longer showing client queries
October 11, 2024, 05:49:49 AM
me too. After update to 24.7.6, unbound fail to response client requests but i am pretty sure unbound is able to start up correctly.Please check the attached pic below. I also have the same unbound config running on my office server that opnsense has been upgraded to 24.7.6 yesterday without any problem.
I also check the port 53 is opened on the LAN side. However, all LAN clients are not able to resolve DNS. If i switch from unbound to DNSmasq, all LAN clients are able to reach internet instantly.
https://ibb.co/x3cLCRH
I also check the port 53 is opened on the LAN side. However, all LAN clients are not able to resolve DNS. If i switch from unbound to DNSmasq, all LAN clients are able to reach internet instantly.
https://ibb.co/x3cLCRH
Pages1
