"
I'm saving my 1 slot for future so right now I picked up some usb3.0->Ethernet https://www.bestbuy.ca/en-ca/product/best-buy-essentials-usb-3-0-to-ethernet-adapter-be-pa3u6e-c-only-at-best-buy/15643342 for my homelab, not 1 hiccup with them. It could be a qwk and dirty fix for you
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
#1
25.7, 25.10 Series / Re: Looses external connection a couple of times every day
November 12, 2025, 01:21:09 AM #2
General Discussion / Re: Ip Address Confusion
November 09, 2025, 02:30:25 PM
Well I'll be dammed, Thanks viragomann & meyergru for keeping it simple for an old guy like me.
#3
General Discussion / Ip Address Confusion
November 09, 2025, 01:22:58 PM
Ok, I might be a newbie to opnsense (been around since before html) but I came across and entry in my liveview this am that I've never come across before - 64.225.77.0 (yeah yeah DigitalOcean). I have never come across a '.0'. I always thought .0 and .255 were reserved. Are they hiding their actual ip? Also had a.255 from another hosting company (Hetzner) yesterday too. Can someone shed some light on this please.
TIA
Giz..
TIA
Giz..
#4
General Discussion / Re: Github hosted JSON files for ALIAS's
November 05, 2025, 08:04:22 PM
Problem Solved:
Turns out there was an email at my gmail that some issue failed in the workflow even though it looked good.
I had to make a useless /doc folder and put any old file in it, went with an index.html and rerun the workflow
edited the alias, no change and saved and it loaded properly
Giz..
Turns out there was an email at my gmail that some issue failed in the workflow even though it looked good.
I had to make a useless /doc folder and put any old file in it, went with an index.html and rerun the workflow
edited the alias, no change and saved and it loaded properly
Giz..
#5
General Discussion / Solved: Github hosted JSON files for ALIAS's
November 04, 2025, 10:25:13 PM
Hello All
I appear to be having issues getting an ALIAS in URL Table in JSON format (IPs) to populate (read) from github
I followed procedures on the github side, I created json file with proper syntax & improper syntax (exactly like Spamhaus)
But I get nothing in Alias, always sits at 0 entries when it should be 41
Sample Entry: {"ip4":"87.236.176.118","hostname":"meritorious.monitoring.internet-measurement.com","ip6":""}
In Alias I set it up exactly like the docs say to do Spamhaus and path expression is set to ip4
If I paste the link I use in Contents in browser I get the file.
Not sure what the issue may be or where to look next
Giz..
I appear to be having issues getting an ALIAS in URL Table in JSON format (IPs) to populate (read) from github
I followed procedures on the github side, I created json file with proper syntax & improper syntax (exactly like Spamhaus)
But I get nothing in Alias, always sits at 0 entries when it should be 41
Sample Entry: {"ip4":"87.236.176.118","hostname":"meritorious.monitoring.internet-measurement.com","ip6":""}
In Alias I set it up exactly like the docs say to do Spamhaus and path expression is set to ip4
If I paste the link I use in Contents in browser I get the file.
Not sure what the issue may be or where to look next
Giz..
#6
25.7, 25.10 Series / Re: Postfix block sender's IP or domain
October 29, 2025, 04:43:39 PMQuote from: ddd149 on October 29, 2025, 04:23:21 PMyes and yes, that way if spam gets thru, the mail.log results will give me info i need on if i block at fw or regex it on mail serverQuote from: Giz on October 29, 2025, 04:17:16 PMSorry, I'll ask again. Am I correct in understanding that you block IP addresses at the firewall level, not in Postfix?Quote from: ddd149 on October 29, 2025, 04:06:49 PMI understand how to do it with Firewall, but how do I block addresses using Postfix itself, or does it not work in OPNsense?
What are you blocking with the header regex then?
Like I said earlier, I do ALL ip address blocking on the OPNSense side (Spamhaus type lists), and do ALL the Content (Header/Body) with regex in my GUI frontend for email system. Keeps it cleaner and when reviewing mail.log I can grab an ip if need be and add to OPNSence to block it for good.
Do you also use spam lists at the firewall level?
#7
25.7, 25.10 Series / Re: Postfix block sender's IP or domain
October 29, 2025, 04:17:16 PMQuote from: ddd149 on October 29, 2025, 04:06:49 PMI understand how to do it with Firewall, but how do I block addresses using Postfix itself, or does it not work in OPNsense?
What are you blocking with the header regex then?
Like I said earlier, I do ALL ip address blocking on the OPNSense side (Spamhaus type lists), and do ALL the Content (Header/Body) with regex in my GUI frontend for email system. Keeps it cleaner and when reviewing mail.log I can grab an ip if need be and add to OPNSence to block it for good.
#8
25.7, 25.10 Series / Re: Postfix block sender's IP or domain
October 29, 2025, 04:00:13 PMQuote from: ddd149 on October 29, 2025, 03:39:45 PMFor example, what do you write in Senders to block IP 1.2.3.4 and if with a mask 1.2.3.4/19?
Create your own Firewall Alias eg: Name: My_Blocks_Network, Type: Network, Content: 1.2.3.4/19 and save that
Create Firewall Rule eg: Action: Block, Interface: WAN, Source: My_Blocks_Network, Log: Check it, Give Description for label in live view, save it
Move rule up to where you need it (usually before any pass) and apply it
Postfix now won't even see any packets from that network
#9
25.7, 25.10 Series / Re: Postfix block sender's IP or domain
October 29, 2025, 03:06:20 PM
then use whatever GUI you setup for and add a regex for header eg: /<.+?@.+?\.ru>/
i have an email server behind opnsense, i do all the ip blocking on opn and i do all the regex stuff on the email server. greatly reducing the work load on email server
i have an email server behind opnsense, i do all the ip blocking on opn and i do all the regex stuff on the email server. greatly reducing the work load on email server
#10
25.7, 25.10 Series / Re: Postfix block sender's IP or domain
October 29, 2025, 12:46:43 PM
What did you install for content filtering? Rspamd or other?
#11
General Discussion / Re: Is it possible to import/update a text list of IPs and ranges to blocklist?
October 28, 2025, 06:09:10 PMQuote from: battle on January 03, 2025, 09:21:32 PMTry creating a repository with your IPs in github.com.
(Note: Disregard the typo github.<net> in the first png below. It should be github.com.).
Thanks battle, this is exactly what I needed, I had over 2000 ip's , I see good things for some alias'd Block List
#12
25.7, 25.10 Series / Blocklist parsing
October 27, 2025, 12:49:39 AM
I came across a txt list on googledocs and wanted to see about using it. very small sample piece below
Wanted to use as a blocklist, tired of scans from these guys
---
###Updated on 2025-10-19###
azpdceoc78r8.stretchoid.com|20.98.140.180|2603:1030:b:1c::17
azpdcetl7xvx.stretchoid.com|20.221.71.226|2603:1030:b:15::16
azpdcexdg7i9.stretchoid.com|172.202.117.213|2603:1030:b:18::16
azpdcg0e0s5m.stretchoid.com|20.40.218.140|2603:1030:b:1a::12
azpdcg0g79kx.stretchoid.com|135.233.112.26|2603:1030:b:1c::d
azpdcg0i4caz.stretchoid.com|20.40.210.26|2603:1030:b:22::3
azpdcg0jy5ic.stretchoid.com|48.214.144.100|2603:1030:b:1c::1b
azpdcg0mw7at.stretchoid.com|13.86.112.154|2603:1030:b:15::53
azpdcg0r4fmf.stretchoid.com|20.29.22.204|2603:1030:b:14::5d
azpdcg0t0b7l.stretchoid.com|20.15.164.37|2603:1030:b:1a::24
azpdcg008shw.stretchoid.com|135.233.112.109|2603:1030:b:1c::14
---
Anyone got ideas how to go about it?
Sorry wrong forum, thought I was in general
TIA
Giz..
Wanted to use as a blocklist, tired of scans from these guys
---
###Updated on 2025-10-19###
azpdceoc78r8.stretchoid.com|20.98.140.180|2603:1030:b:1c::17
azpdcetl7xvx.stretchoid.com|20.221.71.226|2603:1030:b:15::16
azpdcexdg7i9.stretchoid.com|172.202.117.213|2603:1030:b:18::16
azpdcg0e0s5m.stretchoid.com|20.40.218.140|2603:1030:b:1a::12
azpdcg0g79kx.stretchoid.com|135.233.112.26|2603:1030:b:1c::d
azpdcg0i4caz.stretchoid.com|20.40.210.26|2603:1030:b:22::3
azpdcg0jy5ic.stretchoid.com|48.214.144.100|2603:1030:b:1c::1b
azpdcg0mw7at.stretchoid.com|13.86.112.154|2603:1030:b:15::53
azpdcg0r4fmf.stretchoid.com|20.29.22.204|2603:1030:b:14::5d
azpdcg0t0b7l.stretchoid.com|20.15.164.37|2603:1030:b:1a::24
azpdcg008shw.stretchoid.com|135.233.112.109|2603:1030:b:1c::14
---
Anyone got ideas how to go about it?
Sorry wrong forum, thought I was in general
TIA
Giz..
#13
General Discussion / Re: Ports 80/443 - Why can't I get them open
October 15, 2025, 04:29:09 PM
Arrgghh! I feel like an idiot, I had a typo in the gateway address of the webserver so opn had nowhere to send it. This can be marked as solved
Thanks everyone for the replies!
Giz..
Thanks everyone for the replies!
Giz..
#14
General Discussion / Re: Ports 80/443 - Why can't I get them open
October 15, 2025, 02:50:28 PMQuote from: Stormscape on October 15, 2025, 10:55:32 AMIs Port 80 and 443 open on the webserver itself? Is there a firewall enabled and active?yup and yup, ufw has 22, 80, 443 open
#15
General Discussion / Re: Ports 80/443 - Why can't I get them open
October 15, 2025, 12:48:52 AMQuote from: Patrick M. Hausen on October 15, 2025, 12:46:02 AMFilter rule association == Pass?yup, tried with pass and with auto-gen rule
