OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of andbaum »
  • Show Posts »
  • Topics
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Topics - andbaum

Pages: [1]
1
19.1 Legacy Series / SOLVED: VMWare Tools for Hardened BSD
« on: February 07, 2019, 08:14:13 am »
Hello together,

in my lab, I have a OPNSense 19.1 installation on an ESXi server.
After I installed the VMware-tools plugin, ESXi complains, that the configured guest os (FreeBSD (64-Bit)) doesn't match the running guest os (FreeBSD 11.2-RELEASE-p8-HBSD).

Any advice?

Andreas

2
19.1 Legacy Series / SOLVED: OPNSense blocks internal LAN to LAN traffic
« on: February 03, 2019, 06:12:16 pm »
In my firewall logs, I often see blocked packets going from an internal LAN device to another internal LAN device.
My questions:
1) Why does OPNsense see those packets? They should be switched and never meet the firewall?!?
2) I wrote a "SRC: LAN_NET DST: LAN_NET allow any" rule, but I didn't change the logging behavior.

Within the LAN everything seems to work.

Can you give me some feedback?

Yours,

Andreas

3
Web Proxy Filtering and Caching / Transparent Proxy with IPv6
« on: January 22, 2019, 10:23:50 am »
I'm trying to implement a transparent squid proxy with OPNSense. In IPv4 everything works, but the IPv6 way doesn't do anything. The settings seem correct to me.

My guess: Squid is IPv6 capable
Code: [Select]
cat /var/log/squid/cache.log
[...]
2019/01/22 10:00:54 kid1| Accepting NAT intercepted HTTP Socket connections at local=[::1]:3128 remote=[::] FD 14 flags=41but IPv6 NAT redirect is not implemented in BSD (so in OPNSense).
I can create an IPv6 rule under "Firewall: NAT: Port Forward" but it seems to be ignored by the system. Is this correct?

Yours, Andreas

4
Hardware and Performance / SOLVED: Poor NIC performance on APU2c4 board
« on: January 20, 2019, 10:39:30 pm »
Hi together,

I'm new to Opnsense and use it for about 2 months now. It is a very cool product and I really enjoy using it.
 
Actually I have a problem, I couldn't solve myself: I use opnsense on a APU2c4 (Intel NICs). Opnsense is installed on a sd card. When I iperf to my firewall (from a macbook pro with thunderbolt ethernet) I only get about 110-120 Mbit/s bitrate.
I already tried two things:
  • Changing "Interfaces: Settings" in several ways: When I enable HW Support I get a slight improvement of performance, but it's only about 5-10 Mbit/s
  • Connecting the APU Board with a LACP LAG to my switch (Netgear ProSafe GS724T) (I had one interface free for the LAG): In fact, enabling the LACP LAG really doubles my performance. But starting from 110-120 Mbit/s, I'm now at about 250 Mbit/s

Can anyone help me?

Yours, Andreas

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2