"
Im looking for opnsense plugin developer. kindly pm me for further info
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
#2
24.7, 24.10 Legacy Series / Looking for plugin developer
September 23, 2024, 07:24:41 PM
We are looking for a good plugin developer to help us just adjust an existing plugin that was published for pfsense to fit opnsense. and maybe add some enhancement to it. can someone pm me or just write a reply and I will get in touch to explain it in details.
Thanks
Thanks
#3
24.1, 24.4 Legacy Series / Any Idea on getting Graphs generated via API or other means to be re shown?
August 04, 2024, 01:33:31 PM
Hi,
We are building an APP that will look into the graphs generated by opnsense and show it in our APP UI.
we wanted to know a proper way to access those graph and fetch them directly from the opnsense and just get them displayed.
When we do API we get RAW data. what we want os the graph to be rendered on opnsense then just re show the png file generated in the APP
is there a good way to do this?
We are building an APP that will look into the graphs generated by opnsense and show it in our APP UI.
we wanted to know a proper way to access those graph and fetch them directly from the opnsense and just get them displayed.
When we do API we get RAW data. what we want os the graph to be rendered on opnsense then just re show the png file generated in the APP
is there a good way to do this?
#4
Virtual private networks / Roadwarrior connects to Site A but I want to pass on to Site B via S2S VPN
July 24, 2024, 03:07:44 PM
Can someone detail the steps needed to make Rd Warrior vpn pass to site B via Site A.
I have tried several trick but cant find a successful way to do it.
the reason being is that Site B has no inbound traffic due to restriction from a Jackass ISP who cant manage their own security infrastructure. While Site A has inbound.
so what I ended up is making Site B ovpn client and Site A is the Server and works fine.
I just want to do Rd Warrior to Site A to goto site B.
I have tried several trick but cant find a successful way to do it.
the reason being is that Site B has no inbound traffic due to restriction from a Jackass ISP who cant manage their own security infrastructure. While Site A has inbound.
so what I ended up is making Site B ovpn client and Site A is the Server and works fine.
I just want to do Rd Warrior to Site A to goto site B.
#5
23.7 Legacy Series / Riverbed cx255 series did anyone have any success getting NICs up?
September 18, 2023, 01:36:41 PM
Im trying to install opnsense on riverbed cx255 which installed successfully, but the main issue is the both igb0 and igb1 interfaces will not give the click sound and bring the interface up once booted.
Ive tried all combination of bypass Disables/No/Yes but it didnt work.
anyone had any success with this series?
Ive tried all combination of bypass Disables/No/Yes but it didnt work.
anyone had any success with this series?
#6
Virtual private networks / problem with openvpn roadwarrior and sip clients
September 17, 2023, 01:11:26 PM
Hello Everyone.
Ive noticed strange issue on road warrior and sip clients.
ive tested this on tun adaptor and here is what Ive found
when a sip client originates its packets the PBX inside my office LAN sees it coming form the virtual subnet.
so when the pbx send back it send back to the virtual openvpn subnet which does not seem to translate back to the actual client's ip being the rd warrior.
so for example:
RdWr ip: 192.168.5.4
logs successfully to Office LAN: 192.168.7.0/24 and initiates sip to pbx: 192.168.7.10/24
using openvpn subnet of 10.1.1.0/24 and the sip client having ip: 10.1.1.4/24
pbx tries to communicate back to ip: 10.1.1.4 but it goes no where and it does not reach the sip client causing voice to break
anyone have a clue on this pls?
Ive noticed strange issue on road warrior and sip clients.
ive tested this on tun adaptor and here is what Ive found
when a sip client originates its packets the PBX inside my office LAN sees it coming form the virtual subnet.
so when the pbx send back it send back to the virtual openvpn subnet which does not seem to translate back to the actual client's ip being the rd warrior.
so for example:
RdWr ip: 192.168.5.4
logs successfully to Office LAN: 192.168.7.0/24 and initiates sip to pbx: 192.168.7.10/24
using openvpn subnet of 10.1.1.0/24 and the sip client having ip: 10.1.1.4/24
pbx tries to communicate back to ip: 10.1.1.4 but it goes no where and it does not reach the sip client causing voice to break
anyone have a clue on this pls?
#7
23.1 Legacy Series / Any hope of fixing ddclient ip status
September 17, 2023, 01:10:22 PM
can someone help with fixing this IP status issue pls?
#8
Virtual private networks / problem within openvpn roadwarrior (remote access)
July 08, 2023, 02:09:13 PM
Dear All
I have setup several openvpn using the remote access option, but I have seen a strange problem when I use the openvpn own app to login, I get connected. but when the next user logs in, he can do activity but the 1st user cant.
I kept testing things out. so shall I conclude that roadwarrior via openvpn is limted to only 1 user at a time?
how can I make sure that several users can connect and use vpn at the same time?
I have setup several openvpn using the remote access option, but I have seen a strange problem when I use the openvpn own app to login, I get connected. but when the next user logs in, he can do activity but the 1st user cant.
I kept testing things out. so shall I conclude that roadwarrior via openvpn is limted to only 1 user at a time?
how can I make sure that several users can connect and use vpn at the same time?
#9
23.1 Legacy Series / Quick and Simple Site to Site VPN trick to push all traffic via VPN
May 01, 2023, 02:03:18 PM
HEllo I wanted to share my experience with site to site VPN using OVPN but instead of those lengthy setups and lots of config changes which I always think there must be a quick and easy way.
here is my trick that worked for me.
on the server side tick this option:
Redirect Gateway X
Force all client generated traffic through the tunnel.
on the client side just go and in the advanced box add this option:
redirect-gateway
hit save and with this option you will pass everything through the tunnel.
just make sure to enable compression so that you make better network traffic.
here is my trick that worked for me.
on the server side tick this option:
Redirect Gateway X
Force all client generated traffic through the tunnel.
on the client side just go and in the advanced box add this option:
redirect-gateway
hit save and with this option you will pass everything through the tunnel.
just make sure to enable compression so that you make better network traffic.
#10
23.1 Legacy Series / ddclient bugs
February 10, 2023, 09:45:59 AM
Dear all
Just wanted to bring attention to the ddclient plugin which seems not to be working perfectly on the recent releases
Normally it should show up that it has picked up the current wan IP and did update successfully
But I've used it on easydns and it seems to be working not while pressing apply button but when the whole system is restarted.
And it doesn't show up IP in green.
I think it needs further checking on the latest release.
I've tested it on easydns and I can't see it working properly.
I will try other providers and see.
Just wanted to bring attention to the ddclient plugin which seems not to be working perfectly on the recent releases
Normally it should show up that it has picked up the current wan IP and did update successfully
But I've used it on easydns and it seems to be working not while pressing apply button but when the whole system is restarted.
And it doesn't show up IP in green.
I think it needs further checking on the latest release.
I've tested it on easydns and I can't see it working properly.
I will try other providers and see.
#11
20.7 Legacy Series / Multi Site VPN and routing to each site without CSO
September 24, 2020, 09:41:27 AM
Dear All
Im struggling to make the proper Multisite VPN to interconnect between all sites.
I recall doing it few years back but cant replicate this in the new opnsense edition. not sure if this is version restriction or something related.
I have:
Site A (Openvpn Server) Ip 192.168.11.0/24 / OVPN Tunnel IP 10.10.11.0/30 (note Ive selected /30 not /24)
Site B (Openvpn Client) Ip 192.168.22.0/24 / OVPN Tunnel IP 10.10.22.0/30 (note Ive selected /30 not /24)
Site C (Openvpn Client) Ip 192.168.33.0/24 / OVPN Tunnel IP 10.10.22.0/30 (note Ive selected /30 not /24)
Site B and C can ping and connect to Site A and vice versa.
but I cant get site B and C to communicate (even through Site A and yes Im fine with single point of failure on site A) I just want it to work.
I recall doing this in the past editions by adding the subnet in the "IPv4 Remote Network" of each client. but this didnt work I tried adding even on the server remote network. can someone clarify how this can be done?
Im struggling to make the proper Multisite VPN to interconnect between all sites.
I recall doing it few years back but cant replicate this in the new opnsense edition. not sure if this is version restriction or something related.
I have:
Site A (Openvpn Server) Ip 192.168.11.0/24 / OVPN Tunnel IP 10.10.11.0/30 (note Ive selected /30 not /24)
Site B (Openvpn Client) Ip 192.168.22.0/24 / OVPN Tunnel IP 10.10.22.0/30 (note Ive selected /30 not /24)
Site C (Openvpn Client) Ip 192.168.33.0/24 / OVPN Tunnel IP 10.10.22.0/30 (note Ive selected /30 not /24)
Site B and C can ping and connect to Site A and vice versa.
but I cant get site B and C to communicate (even through Site A and yes Im fine with single point of failure on site A) I just want it to work.
I recall doing this in the past editions by adding the subnet in the "IPv4 Remote Network" of each client. but this didnt work I tried adding even on the server remote network. can someone clarify how this can be done?
#12
20.7 Legacy Series / Multiple VIP and static routes
August 26, 2020, 02:01:56 AM
Hi
Im having a problem on my current opnsense, I have several VIPs like xxx.xx.xx.190 (default gw)
xxx.xx.xx.191 (opnsense wan ip) xxx.xx.xx.192 (vip and doing port forward to exchange server in my lan) xxx.xx.xx.193 (vip and doing port forward to ftp server) ...etc
my main target is to get the exchange get back to internet via ip xxx.xx.xx.192 and not via the xxx.xx.xx.191 which is opnsense.
is this possible and how?
Im having a problem on my current opnsense, I have several VIPs like xxx.xx.xx.190 (default gw)
xxx.xx.xx.191 (opnsense wan ip) xxx.xx.xx.192 (vip and doing port forward to exchange server in my lan) xxx.xx.xx.193 (vip and doing port forward to ftp server) ...etc
my main target is to get the exchange get back to internet via ip xxx.xx.xx.192 and not via the xxx.xx.xx.191 which is opnsense.
is this possible and how?
#13
20.7 Legacy Series / Transparent proxy with SSL
August 21, 2020, 11:18:41 PM
Dear All
I know this has been asked before but no one actually compared the transparent SSL mode that PFSense has where there is no need to add the CA in every client and can do transparent SSL with no extra install on each client.
How can we achieve this transparent SSL proxy without touching CA?
I know this has been asked before but no one actually compared the transparent SSL mode that PFSense has where there is no need to add the CA in every client and can do transparent SSL with no extra install on each client.
How can we achieve this transparent SSL proxy without touching CA?
#14
20.7 Legacy Series / Connecting to Active Directory (AD) via IPSEC
August 18, 2020, 01:37:18 PM
Dear sirs;
Im trauggling to find a proper way to connect my opnsense to active directory via ipsec vpn tunnel.
Im sure it will not be the case for ovpn. but the main problem the DC that has AD in is actually using those terrible licensed firewalls that has only ipsec and kerio vpn. so I have configured the ipsec and opnsense is conecting via ipsec to DC and I can ping the AD server.
the crazy part is that I cant get the opnsense to join the AD. Ive done a packet capture and what Im seeing it that AD isnt giving a clear replies. and the funny part is that IPSEC is actually throwing the WAN ip as source. which is bit funny, but can someone share his experience on this??
can this work?
Firewall on AD windows 2012 is off btw.
Im trauggling to find a proper way to connect my opnsense to active directory via ipsec vpn tunnel.
Im sure it will not be the case for ovpn. but the main problem the DC that has AD in is actually using those terrible licensed firewalls that has only ipsec and kerio vpn. so I have configured the ipsec and opnsense is conecting via ipsec to DC and I can ping the AD server.
the crazy part is that I cant get the opnsense to join the AD. Ive done a packet capture and what Im seeing it that AD isnt giving a clear replies. and the funny part is that IPSEC is actually throwing the WAN ip as source. which is bit funny, but can someone share his experience on this??
can this work?
Firewall on AD windows 2012 is off btw.
#15
19.7 Legacy Series / multiwan pppoe loadbalancing does not work
November 21, 2019, 11:59:51 PM
I have some crisis with multi wan pppoe. I did put the modems on bridge mode and opnsense can connect and obtain ips over the wan links (3 wans) and they are working fine but when I try to make grouping and do multiwan
the system does not work properly and I see loss on the connection and it turns unstable
can someone pls help?
just wondering if pppoe multiwan can actually work? did someone try this and had any success?
can the ISP lock the multiwan bonding?
the system does not work properly and I see loss on the connection and it turns unstable
can someone pls help?
just wondering if pppoe multiwan can actually work? did someone try this and had any success?
can the ISP lock the multiwan bonding?
#16
16.7 Legacy Series / PPOE and PPTP changes can someone clearly explain how to refix this
November 27, 2016, 01:44:13 PM
According to the warning given:
•Legacy VPN Servers for L2TP, PPPoE, and PPTP moved to plugins and need to be installed in order to still make use of them. Your configurations will persist, but may have to be adapted to adhere to the requirements of the MPD5 server daemon. The most important change is that your listening address needs to be a known address, preferably using a Virtual IP from the firewall settings.
yet we cant find a clear help or instructions to make things work again, both pptp and pppoe server will not work.
lets assume the following:
Lan: 192.168.1.1/24
wan: 88.xx.xx.2/31
my pptp vpn was working on the wan interface and ip 192.168.50.100 . with firewall rule allowing all.
how do I setup virtualip here???
do I need to add ip alias 192.168.50.100 ??? as virtual ip??
if I try to add 192.168.50.100 as alias I get The following input errors were detected:
This IP address is being used by another interface or VIP.
I still dont seem to get the idea here. can someone help
•Legacy VPN Servers for L2TP, PPPoE, and PPTP moved to plugins and need to be installed in order to still make use of them. Your configurations will persist, but may have to be adapted to adhere to the requirements of the MPD5 server daemon. The most important change is that your listening address needs to be a known address, preferably using a Virtual IP from the firewall settings.
yet we cant find a clear help or instructions to make things work again, both pptp and pppoe server will not work.
lets assume the following:
Lan: 192.168.1.1/24
wan: 88.xx.xx.2/31
my pptp vpn was working on the wan interface and ip 192.168.50.100 . with firewall rule allowing all.
how do I setup virtualip here???
do I need to add ip alias 192.168.50.100 ??? as virtual ip??
if I try to add 192.168.50.100 as alias I get The following input errors were detected:
This IP address is being used by another interface or VIP.
I still dont seem to get the idea here. can someone help
#17
16.7 Legacy Series / ANyone knows clear instruction on how to setup PPPOE Server
November 27, 2016, 10:24:40 AM
Could you pls help with this issue, I have created pppoe server instance on opt2 interface having ip (192.168.200.1/24)
and created pppoe server instance and gave it ip 192.168.200.250
and also went and created virtual ip (alias type) of ip (192.168.200.251/32) yet I cant get any replies on my client requesting pppoe auth ive used builtin win7 pppoe client and ive used tplink modem here is tplink logs
193 1st day 18:35:24 PPP INFO: In pppd the httpd-id is 609, set link phase is 0x0
192 1st day 18:35:24 PPP INFO :send_phase 2091 pppd_phase = 0x0, ipv6 = 0, ipv4 = 0^M
191 1st day 18:35:24 PPP ERROR: Timeout waiting for PADO packets
190 1st day 18:35:24 PPP INFO: In pppd the httpd-id is 609, set link phase is 0x66
189 1st day 18:35:24 PPP INFO: send_phase 2091 pppd_phase = 0x66, ipv6 = 0, ipv4 = 0^M
188 1st day 18:35:04 PPP INFO :sent [PADI Host-Uniq(0x00000965)]
187 1st day 18:34:54 PPP INFO :sent [PADI Host-Uniq(0x00000965)]
186 1st day 18:34:49 PPP INFO :sent [PADI Host-Uniq(0x00000965)]
185 1st day 18:34:49 PPP INFO :In pppd the httpd-id is 609, set link phase is 0x2
184 1st day 18:34:49 PPP INFO :send_phase 2091 pppd_phase = 0x2, ipv6 = 0, ipv4 = 0^M
am i missing anything?
and created pppoe server instance and gave it ip 192.168.200.250
and also went and created virtual ip (alias type) of ip (192.168.200.251/32) yet I cant get any replies on my client requesting pppoe auth ive used builtin win7 pppoe client and ive used tplink modem here is tplink logs
193 1st day 18:35:24 PPP INFO: In pppd the httpd-id is 609, set link phase is 0x0
192 1st day 18:35:24 PPP INFO :send_phase 2091 pppd_phase = 0x0, ipv6 = 0, ipv4 = 0^M
191 1st day 18:35:24 PPP ERROR: Timeout waiting for PADO packets
190 1st day 18:35:24 PPP INFO: In pppd the httpd-id is 609, set link phase is 0x66
189 1st day 18:35:24 PPP INFO: send_phase 2091 pppd_phase = 0x66, ipv6 = 0, ipv4 = 0^M
188 1st day 18:35:04 PPP INFO :sent [PADI Host-Uniq(0x00000965)]
187 1st day 18:34:54 PPP INFO :sent [PADI Host-Uniq(0x00000965)]
186 1st day 18:34:49 PPP INFO :sent [PADI Host-Uniq(0x00000965)]
185 1st day 18:34:49 PPP INFO :In pppd the httpd-id is 609, set link phase is 0x2
184 1st day 18:34:49 PPP INFO :send_phase 2091 pppd_phase = 0x2, ipv6 = 0, ipv4 = 0^M
am i missing anything?
#18
16.1 Legacy Series / ovpn force push over multiwan
July 02, 2016, 05:43:33 PM
Ive been trying to get a multiwan upand running then push all ovpn traffic via the grouped gw, strange enough the traffic gets pushed normally via a single wan with no problem, but with a grouped wultiwan, I couldn't make it happen, is this possible after all?
#19
16.1 Legacy Series / Opnsense box as a client to OpenVPN Access Server (OpenVPN AS) question
June 22, 2016, 04:27:39 PM
I would like to raise this question, Im using opnsense box to connect to OpenVPN AS server, our need is to have a foreign ip inorder to access region restricted website.
the tunnel is up and its working well, I need to know if its possible for opnsense to force everything through the tunnel and if the tunnel is dropped then internet is blocked, we only want the internet to work if the tunnel is up.
is this possible?
I have created an interface called ovpn and tried many firewall rules on lan but it fails.
any advice pls?
the tunnel is up and its working well, I need to know if its possible for opnsense to force everything through the tunnel and if the tunnel is dropped then internet is blocked, we only want the internet to work if the tunnel is up.
is this possible?
I have created an interface called ovpn and tried many firewall rules on lan but it fails.
any advice pls?
#20
General Discussion / SoftEther VPN daemon for Opnsense
January 19, 2016, 08:24:13 PM
I would like raise the question of bringing softether to OpnSense to me SoftEther seems to have some powerful VPN options and I cant see other distros including it, I think it will be great for OpnSense project to make this available, I want to ask what does it take for this to be included as I can see a FreeBSD downloadable pack exist on http://www.softether-download.com/en.aspx?product=softether
If there is a guide on making FreeBSD packs included in the OpnSense Pls share here so that We can consider helping
Thanks
If there is a guide on making FreeBSD packs included in the OpnSense Pls share here so that We can consider helping
Thanks
