1
General Discussion / block entire domain
« on: June 16, 2020, 05:02:23 am »
I want to block fwmrm.net (ads), but there FQDN for a bunch of different servers. Is there a way to block everything going to that domain? Thanks!
Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
2
General Discussion / Find entry in DNSBL?
« on: March 26, 2020, 02:51:07 am »
Hello,I recently broke my Nest Protects and I have tracked down the issue to the DNSBLs that I have setup. I see a bunch of lookups to czfe65.front01.iad01.production.nest.com for instance being blocked. I do I find which list is causing this? Love to turn that one off if possible. I know I can whitelist, but I would prefer to find the offending list.
Thanks so much!
Thanks so much!
3
General Discussion / Serial Console via SOL
« on: March 23, 2019, 01:44:17 am »
I'm trying to set up the serial console to dump out to the SOL interface so I can access it via IPMI. How do I specify which serial port to use in the OPNsense interface? So far I can get the bootloader and kernel messages, but then everything goes away on the serial connection. I have a SMC X9SCi-LN4F... Thanks in advance for any tips!
4
General Discussion / BIND/Unbound/DoT leakage
« on: March 08, 2019, 03:02:42 am »
Hello,
I set up Unbound recently to encrypt my DNS requests to 1.1.1.1 and 9.9.9.10. I then setup a NAT rule to push any port 53 request back to localhost for Unbound to grab and encrypt. This works as expected.
The next part is to set the kids' devices to use BIND so that I can use some of the DNSBLs there as well as force safe-search for Google, Bing, etc. I'm doing this with another NAT rule which works great. What I want is for BIND to forward requests to Unbound so that the non-blacklisted requests are encrypted. I guess I don't understand the "DNS Forwarders" field? Right now BIND is just hitting the Internet itself to look these up even though I have 127.0.0.1 in the "DNS Forwarders" field. I see them via tcpdump.
Is there any way to get this done?
Thanks so much!
I set up Unbound recently to encrypt my DNS requests to 1.1.1.1 and 9.9.9.10. I then setup a NAT rule to push any port 53 request back to localhost for Unbound to grab and encrypt. This works as expected.
The next part is to set the kids' devices to use BIND so that I can use some of the DNSBLs there as well as force safe-search for Google, Bing, etc. I'm doing this with another NAT rule which works great. What I want is for BIND to forward requests to Unbound so that the non-blacklisted requests are encrypted. I guess I don't understand the "DNS Forwarders" field? Right now BIND is just hitting the Internet itself to look these up even though I have 127.0.0.1 in the "DNS Forwarders" field. I see them via tcpdump.
Is there any way to get this done?
Thanks so much!
5
18.7 Legacy Series / enable PAE
« on: February 12, 2019, 04:12:32 am »
Not sure if this is possible. I assume I would need to recompile the kernel completely, but I have a Sossaman machine with 8GB of RAM, but only 4 shows up. I assume I need to enable PAE to get that to work.
Pages: [1]