Topics

1

General Discussion / OPNsense - great project - what about Patreon?

« on: July 20, 2016, 11:58:45 am »

Hi Guys,

It is a great project - but to grow I think you need money - for food and beer.. or juice....

What about https://www.patreon.com/

It is nice and good way to get some founds plus to be in contact with all interested.

Sometimes it is easier to donate 1 or 2 or more Euros every month - and to see as well that you have some money to grow in the community. And to get updates... what is happening.

Shouldn't you join this?

Mike

2

General Discussion / Intrusion Detection issue - IPS activated - no acces from LAN to network

« on: July 20, 2016, 11:51:29 am »

Hi again...

So I have one issue with Intrusion Detection on my home used firewall.

I'm using this board together with OPNsense: http://www.hcipctech.com/Home/ProductCon?productid=317&english=2

It is nothing powerful - but actually it is fine for small home firewall - and as I have some systems which should be protected - I need as well ID service. Before I have tested ClearOS (works fine - was blocking most unwanted attacks on VoIP server), then SOPHOS UTM 9 (was working fine but it was looking that it was blocking much less than ClearOS - so on my FusionPBX I saw plenty of attacks).

As I was not really happy with the way Sophos UTM was working - I have decided to move to open source... and now - ID is setup - but in any situation I'm activating IPS - whole traffic is blocked totally.
I have IPS active on another OPNsense in datacenter (installed on top of PROXMOX VM) - and I have no issues with traffic from LAN.
At home - IPS activated - no traffic from LAN. No IPS - all works.

Settings on both instances are more less the same....

Any ideas why? Is it related to hardware?

Thanks for any tips where to look.

Mike

3

General Discussion / [SOLVED]: HAProxy with authentication

« on: July 19, 2016, 05:39:56 pm »

Hi,

I have HA Proxy finally working - modifying some firewall rules - but as expected.

Now I have second question...
Server should be accessible after authentication - just basic.
I know in HAProxy I can do that  in theory adding some extra configuration like

Code: [Select]

userlist httpusers
  user username insecure-password password

frontend server2
  acl auth_acl http_auth(httpusers)
  http-request auth realm basicauth unless auth_acl
Can I do that through HAProxy GUI - or the only possibility is to dig inside the config file from CLI?

If GUI is possible to use - any suggestions?

Thanks in advance for help

Mike

4

General Discussion / [SOLVED]: Proxing two servers through OPNSENSE

« on: July 19, 2016, 04:02:46 pm »

Hi,

Thanks for nice product! It looks very promising...

I have a question related to possible use of HA Proxy.

Actually I have two Tomcat servers which I want to keep behind UTM.
So all traffic is monitored and eventually blocked if detected as intrusion attack.

One Tomcat server should be unsecured (server1) - second secured with SSL and login restrictions(server2). But - secured on Proxy level... eventually SSL on proxy level (I had that before working with Nginx).

Generally I want to use one WAN IP for this.

I have no issues to setup HAProxy using as frontend/backend to server1. Question is - is it possible to set up this in such a way that when calling port 80 - I would visit server1, but when calling port 443 with HTTPS - we would be redirected to server2?

I had this as well in Sophos UTM... I think is secured web services section - and it was looking like working solution. But not sure what I can do in Opnsense....

Thanks for any tips.

Michal...