Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Topics - t.mayer

#1
Hello OPNsense-Forum!

Due to a change of my network-setup, i needed one interface less on my opnsense-vm on proxmox.
Therefore I ...

  • disabled the interface on interfaces > [interface-name]
  • deleted the interface on inferfaces > assignements
  • removed the corresponding virtual nic of the vm on proxmox
After a reboot of OPNsense all nic-assignements were broken.

Is there a way of deleting virtual unassigned nics without breaking the assignements of the existing nics?

Thanks for your help!
Tom
#2
I have configured the OPNsense-Webproxy with shallalist as Remote ACL.
For some exceptions i always used the Whitelist under Access Control List > Whitelist.
When i try to open a domain blocked by shallalist-category but with a corresponding entry in the whitelist, the domain still will be blocked.

Version of OPNSense: 19.7.8

Forward-Proxy-Config:
- Interface: LAN
- Port: 3128 / SSL: 3129
- Transparent http-Proxy
- SSL inspection
- SNI only

Thanks for your help!

Greeds
Tom
#3
When I want to select rules for a public service (frontend), the dropdown always shows one rule less as i have defined in the rules section.
Example: When I have defined 9 rules in the rules-section, only 8 rules are shown in the select-rules-dropdown of a public service.

I  observed this behaviour on Firefox and Chromium.

Can you help me?
Greeds and Thanks!
Tom.
#4
I have a working opnsense-proxy with shallalist as webfilter.

When I try to open an url from a blocked category, it wont open (as expected).
But when i use the ip of the webserver hosting the url, i can reach the website.

Is there way to block external ip-addresses in urls.
Defining the regex [0-9]+\.[0-9]+\.[0-9]+\.[0-9]+ in Forward Proxy > Blacklist does also block internal ips in urls.
#5
Due tu historical reasons our students are using port 800 in there mobile-device-proxy-settings.
No I want to switch from pfsense (where port 800 was possible ) to opnsense.
When I change the default port (3128) to 800 the proxy-server wont start again.

Error in the logs: Fatal: Unable to open http socket
On the console sockstat -4 -l does not show port 800 to be in use.

Can you help me please!

Greeds and thanks!
Tom