Topics

1

17.1 Legacy Series / Set Up VPN WITHOUT TOTP

« on: June 15, 2017, 08:22:15 pm »

Hello and thank you in advance...

I have set up VPN access using the following howto:

https://docs.opnsense.org/manual/how-tos/sslvpn_client.html

I'd like to remove the TOTP so users just need a password to access the VPN.  I know this is less secure, but I need this setup temporarily.

Do I just remove the TOTP VPN server, and the related information on the users, or do I need to replace the server with something?

Thank you,

dp

2

17.1 Legacy Series / Unsure of IDS Status

« on: May 03, 2017, 06:20:34 pm »

Hello and TYIA~

I followed these instructions:
https://docs.opnsense.org/manual/how-tos/ips.html

and am not getting the expected results.  After enabling the IDS rules, they still show as "not installed" in the rule list. (see attached)

How can I tell if these rules are installed and working?

Thank you,

dp

3

17.1 Legacy Series / Restrict access To web server

« on: May 02, 2017, 10:04:22 pm »

Hello and thank you in advance...

I am not sure what to search for so please excuse me if this has been covered.

I have a webserver to which I would like only one or two people to have access from outside the network.  Is it possible to restrict access to particular ports by Mac address or some other metric?

Although this server IS password protected, I am not crazy about having it hanging out there for the world to hack at.

Thank you,

dp

4

17.1 Legacy Series / [SOLVED] Slow throughput

« on: April 20, 2017, 01:50:41 pm »

Hello and thank you in advance...

We am testing OPNSense in our office before deploying live and recently we have found that our download speed gets severely limited.

Our ISP connection is 100/4, but over the last few days we have noticed that the are seeing about 3/4 until we reboot the OPNSense at which point we see our typical Speeds.  The only recent change to the OPNSense (other than the initial setup about 4 weeks ago) was that we implemented auto-backup to google drive.

Any help troubleshooting this issue would be greatly appreciated.

Thank you,

dp

5

17.1 Legacy Series / Best Practices in English

« on: April 11, 2017, 08:15:18 pm »

Hello,

Is there a best practices document in English?  I can only find one in German.

Thank you,

dp

6

17.1 Legacy Series / Can't connect to network using TunnelBlick

« on: March 31, 2017, 08:00:56 pm »

Hello and thank you in advance,

I am a complete newbie to OPNSense and firewalls of its ilk.

I followed the tutorial and TunnelBlick is able to connect, but when I try to access any of my machines (or try to ping them) I can't.

Any ideas are appreciated.

dp

7

17.1 Legacy Series / GEOIP Download GEO List

« on: March 30, 2017, 03:24:42 am »

Hello,

I am new to OPNSense and to open source firewalls in general.

I am trying to implement GEOIP blocking and can't seem to figure out how to download more locations--my location list ends at Anguilla(not).

When I installed the GEOIP package the documentation said that I had to manually download the data files:

GeoIP does not ship with the actual data files. You must download
them yourself! Please run:
# /usr/local/bin/geoipupdate.sh

I am not sure how to do this.  Is this something that can be done from within the GUI, or do I need to log in to the CLI?

Thank you for taking the time to help a noob.