OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of t.mayer »
  • Show Posts »
  • Topics
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Topics - t.mayer

Pages: [1]
1
Web Proxy Filtering and Caching / ACL > Whitelist not not considered when using Remote ACL
« on: January 07, 2020, 11:55:14 am »
I have configured the OPNsense-Webproxy with shallalist as Remote ACL.
For some exceptions i always used the Whitelist under Access Control List > Whitelist.
When i try to open a domain blocked by shallalist-category but with a corresponding entry in the whitelist, the domain still will be blocked.

Version of OPNSense: 19.7.8

Forward-Proxy-Config:
- Interface: LAN
- Port: 3128 / SSL: 3129
- Transparent http-Proxy
- SSL inspection
- SNI only

Thanks for your help!

Greeds
Tom

2
General Discussion / HAProxy > Public Services > Select Rules > one rule is always missing
« on: March 10, 2019, 10:42:22 am »
When I want to select rules for a public service (frontend), the dropdown always shows one rule less as i have defined in the rules section.
Example: When I have defined 9 rules in the rules-section, only 8 rules are shown in the select-rules-dropdown of a public service.

I  observed this behaviour on Firefox and Chromium.

Can you help me?
Greeds and Thanks!
Tom.

3
Web Proxy Filtering and Caching / Do not allow IP-Addresses in URL
« on: March 09, 2019, 11:36:42 am »
I have a working opnsense-proxy with shallalist as webfilter.

When I try to open an url from a blocked category, it wont open (as expected).
But when i use the ip of the webserver hosting the url, i can reach the website.

Is there way to block external ip-addresses in urls.
Defining the regex [0-9]+\.[0-9]+\.[0-9]+\.[0-9]+ in Forward Proxy > Blacklist does also block internal ips in urls.

4
Web Proxy Filtering and Caching / Web Proxy - Proxy Port 800 not possible
« on: March 07, 2019, 08:23:40 pm »
Due tu historical reasons our students are using port 800 in there mobile-device-proxy-settings.
No I want to switch from pfsense (where port 800 was possible ) to opnsense.
When I change the default port (3128) to 800 the proxy-server wont start again.

Error in the logs: Fatal: Unable to open http socket
On the console sockstat -4 -l does not show port 800 to be in use.

Can you help me please!

Greeds and thanks!
Tom

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2020 All rights reserved
  • SMF 2.0.17 | SMF © 2019, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2