OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of blackout »
  • Show Posts »
  • Topics
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Topics - blackout

Pages: [1]
1
Intrusion Detection and Prevention / IDP and HAProxy
« on: March 21, 2021, 08:48:47 pm »
Hi,

is there a way that these components work together?
Today there was a massive brute force attak to my nextcloud and there was no other way as close the https port. In front of my nextcloud there is OPNsense with HAProxy as reverse proxy with SSL offloading.
So no encrypted traffic.

Regards


2
General Discussion / HAproxy from internal network or bind to another interface like wan
« on: September 20, 2020, 12:19:12 pm »
Hi,
I used HAproxy as Reverse Proxy for all my cloudservices with SSL offloading with  Let´s Encrypt certificate. It works perfect, till apple changed a lot of trust stuff. Internal it is a simple route from LAN to DMZ and the cloud services use self signed certificates, but apple do not trust them, also when I installed the root cert....thank´s to apple.

From external it worked, of course, there is the let's encrypt certificate.

Is it possible to come from internal LAN to the reverse proxy or can I bind HAproxy to a specific interface, like a DMZ VLAN interface and not to WAN?

Two possible ways:

WAN +> HAproxy -> Cloud Server
        ^<----------LAN

WAN +> DMZ VLAN -> HAproxy -> Cloud Server
        ^<-----------LAN

3
20.1 Legacy Series / OpenVPN Client export for mobile devices missing
« on: March 27, 2020, 05:24:23 pm »
Hi,

I switched from PFSense to OPNSense for 4 Month.
Now I want to create a VPN via openVPN like in PFSense. Setup was the same, but client export I miss a lot of export functions.

I only have Archive, File Only, The Green Bow and Viscosity. Where are the other( install exe, openVPN, mobile devices)?
I need client export for Android and iOS openVPN Clients.
Auth is via cert and password.

Regards

4
German - Deutsch / Reverse Proxy mit Benutzer Anmeldung
« on: April 06, 2019, 05:56:13 pm »
Hi,

wir sind auf der Suche unseren MS TMG Server zu ersetzten.

Wir möchten einige Dienste über eine Reverse Proxy veröffentlichen, jedoch sollen sich die User am Reverse Proxy authentifizieren.
Der Abgleich der User soll über das zentrale AD/LDAP geschehen.

Ich würde gerne hierfür gerne OpenSense benutzen, da ich bisher gute Erfahrungen damit gemacht habe.

Gibt es einen Weg das über OpenSense zu realisieren?

VG

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2