Topics

Hello and thank you in advance...

I have set up VPN access using the following howto:

https://docs.opnsense.org/manual/how-tos/sslvpn_client.html

I'd like to remove the TOTP so users just need a password to access the VPN.  I know this is less secure, but I need this setup temporarily.

Do I just remove the TOTP VPN server, and the related information on the users, or do I need to replace the server with something?

Thank you,

dp

Hello and TYIA~

I followed these instructions:
https://docs.opnsense.org/manual/how-tos/ips.html

and am not getting the expected results.  After enabling the IDS rules, they still show as "not installed" in the rule list. (see attached)

How can I tell if these rules are installed and working?

Thank you,

dp

Hello and thank you in advance...

I am not sure what to search for so please excuse me if this has been covered.

I have a webserver to which I would like only one or two people to have access from outside the network.  Is it possible to restrict access to particular ports by Mac address or some other metric?

Although this server IS password protected, I am not crazy about having it hanging out there for the world to hack at.

Thank you,

dp

Hello and thank you in advance...

We am testing OPNSense in our office before deploying live and recently we have found that our download speed gets severely limited.

Our ISP connection is 100/4, but over the last few days we have noticed that the are seeing about 3/4 until we reboot the OPNSense at which point we see our typical Speeds.  The only recent change to the OPNSense (other than the initial setup about 4 weeks ago) was that we implemented auto-backup to google drive.

Any help troubleshooting this issue would be greatly appreciated.

Thank you,

dp

Hello,

Is there a best practices document in English?  I can only find one in German.

Thank you,

dp

Hello and thank you in advance,

I am a complete newbie to OPNSense and firewalls of its ilk.

I followed the tutorial and TunnelBlick is able to connect, but when I try to access any of my machines (or try to ping them) I can't.

Any ideas are appreciated.

dp

Hello,

I am new to OPNSense and to open source firewalls in general.

I am trying to implement GEOIP blocking and can't seem to figure out how to download more locations--my location list ends at Anguilla(not).

When I installed the GEOIP package the documentation said that I had to manually download the data files:

GeoIP does not ship with the actual data files. You must download
them yourself! Please run:
# /usr/local/bin/geoipupdate.sh

I am not sure how to do this.  Is this something that can be done from within the GUI, or do I need to log in to the CLI?

Thank you for taking the time to help a noob.