Topics

1

Zenarmor (Sensei) / Country Blocks

« on: October 06, 2021, 12:37:37 am »

Is there a way to do GeoIP country blocks?  I am doing that in the packet filter currently, but I would like to do it through Sensei and have applications and web filters take precedence, then country blocks.

2

Zenarmor (Sensei) / Bandwidth test issues with Sensei

« on: October 05, 2021, 04:29:58 pm »

I recently installed the sensei plugin for opnsense.  I love what I am seeing so far, but I seem to be having an issue with the netmap config.  When I choose native netmap, I get half of my 1G fiber speeds.  I usually hit around 940/940 with Sensei enabled on my LAN interface. When I choose the generic netmap driver, I get great download speeds, but my upload is less than 1Mbps.  I think this is telling me that the generic driver works best for my download, but I can't imagine why my upload is doing so bad.

3

20.7 Legacy Series / Traffic flow order of precedence IPS/firewall

« on: October 14, 2020, 06:32:08 pm »

When traffic flows through Opnsense with IPS enabled, does it hit the firewall or the IPS first?  If I create IP Aliases that are allowed at the firewall filter level, does that bypass the traffic running through IPS?  If not, is there a way I can create an allowance that allows certain traffic to bypass the IPS?

4

19.7 Legacy Series / How to configure OpenVPN to listen on VIP

« on: July 19, 2019, 11:57:12 pm »

I have configured an OpenVPN server, but the only interface options are LAN, WAN, Any.  I do not want it to listen on Any, but I do want it to listen on a VIP.  How can this be done?

5

19.7 Legacy Series / OpenVPN client profiles (IOS)

« on: July 19, 2019, 09:25:18 pm »

The documentation for OPNsense OpenVPN config mentions going to client export under VPN->OpenVPN and choosing the OpenVPN Connect profile for IOS devices.  I do not have that option.  Is that missing in 19.7?  How can I create a config for IOS with the certificates included in the config file like was done in the past?

6

19.7 Legacy Series / Question about firewall rule 12

« on: July 19, 2019, 12:24:35 am »

I have some traffic that was blocked by firewall rule @12.  I have verified that I am looking at the correct rule, but I do not understand the intended purpose of the rule.  Could someone please help me identify the purpose of this rule and what happened to my traffic?

pfctl -vvsr | less ----  output below

Code: [Select]

@12 block drop in log inet all label "02f4bab031b57d1e30553ce08e0ec131"
  [ Evaluations: 116793    Packets: 12880     Bytes: 1187087     States: 0     ]
  [ Inserted: uid 0 pid 26447 State Creations: 0     ]
Example of blocked traffic:

Code: [Select]

Jul 18 11:08:05 OPNsense.localdomain Jul 18 11:07:56 OPNsense filterlog: 12,,,0,em0,match,block,in,4,0x0,,64,56516,0,DF,6,tcp,52,192.168.1.183,34.209.93.203,59191,443,0,RA,695610423,1604046542,451,,nop;nop;TS
Also, is there a way for me to convert the label to readable text?  I assume this label is obfuscated.