Topics

Is it just me or others can't start AdGuard after opnsense 22.1 upgrade too?
AdGuardHome (os-adguardhome-maxit) from https://www.routerperformance.net/opnsense-repo/ worked fine immediately after upgrade to Opnsense 22.1. But after a couple of hours, adguard crashed and I can't start it anymore.
ref: https://github.com/mimugmail/opn-repo/issues/93

How to forward all internal DNS queries to a external DNS server without any internal caching by unbound or Dnsmasq?

My Unbound DNS was disabled for number of months.
I used DNSCrypt-Proxy.
Now every time I trying to enable Unbound it crashing with following entries in a log:

Code Select Expand


2021-05-15T02:18:51 unbound[31761] [31761:0] fatal error: Could not set up local zones
2021-05-15T02:18:51 unbound[31761] [31761:0] error: Bad local-data RR RedmiNote8Pro-Re?)i.localdomain IN A 192.168.10.104
2021-05-15T02:18:51 unbound[31761] [31761:0] error: error parsing local-data at 32 'RedmiNote8Pro-Re?)i.localdomain IN A 192.168.xxx.xxx': Syntax error, could not parse the RR's type
2021-05-15T02:18:50 unbound[58301] daemonize unbound dhcpd watcher.


Code Select Expand


# unbound-checkconf /var/unbound/unbound.conf
[1621072722] unbound-checkconf[33451:0] error: error parsing local-data at 32 'RedmiNote8Pro-Re?)i.localdomain IN A 192.168.10.104': Syntax error, could not parse the RR's type
[1621072722] unbound-checkconf[33451:0] error: Bad local-data RR RedmiNote8Pro-Re?)i.localdomain IN A 192.168.x.x
[1621072722] unbound-checkconf[33451:0] fatal error: failed local-zone, local-data configuration

How can I fix it?

How to completely purge or reset to default Unbound DNS settings?

How to verify that my opnsense setup not vulnerable to NAT Slipstreaming 2.0 attack?
Where are ALG settings?

How to read/analyze a firewall plain text log?
I am struggling to understand my firewall plain text log.
I didn't find any satisfying documentation as well.
Please help me understand the following example line:

Code Select Expand

2021-01-26T18:05:36    filterlog[89794]    16,,,0,pppoe0,match,block,in,4,0x40,,54,0,0,DF,17,udp,92,188.166.xxx.xxx,yyy.yyy.yyy.yyy,15585,29745,72

How to get list of all devices using OPNsense as a gateway?

[address]

There are some network options available as a source or a destination while creating firewall rules:
Networks

• any
• This Firewall
• LANx address
• LANx net
• Loopback net

Thous terms may sound obvious for some people, but I am struggling to grasp their true meaning.
For example LANx address and LANx net networks sounds the same for me.
Can anyone point me to some documentation clearly explaining these options?

[Is it there any other good solutions for such a "challenge"?]

I am a complete newbie at Opnsense. It is my first post here.
I have a WAN and management LAN interface.

I need to create several additional LAN (opt1, opt2, optN) interfaces isolated from all others except for a WAN. In other words, I need several LAN interfaces that have internet access but can't access each other.
So far I came across the following solution: https://www.reddit.com/r/OPNsenseFirewall/comments/bm4b6w/outgoing_firewallrules/emweuyc?utm_source=share&utm_medium=web2x&context=3

Is it there any other good solutions for such a "challenge"?