Topics

1

15.7 Legacy Series / Isolating Subnets in OpnSense

« on: November 12, 2015, 02:06:20 am »

Hello guys, i might need a bit of help here...

I want to accomplish the following:

Allow LAN1/LAN2/ access to the wider internet.
Isolate the LAN1/LAN2 subnets from each other, so that by default no traffic will flow between them.
Have the ability to poke holes between the subnets for specific purposes.

I am sorry if this has been answered here already. So far i am having problems when i create a rule to permit LAN1 traffic to WAN, since it also allows the LAN1 traffic to reach LAN2.

What is the mosf effective way to design my rules in this case?

Thanks in advance!

2

15.7 Legacy Series / Ldap START_TLS Authentication

« on: November 04, 2015, 12:15:27 am »

Hello everyone,

I would like use a Ldap database to authenticate users that will be acessing the internet through our Captive Portal in OPNSense

My Ldap Server only allows connections via START_TLS mechanism.

I have imported the CA Certificate into the OPNSense however the bind operation fails. I have checked the server logs and it seems like the Start_Tls operation fails for some reason.

Am i missing something here? Is it possible to use START_TLS or i should be using ldaps?

Thanks in advance!