Topics

Currently on OPNsense 24.1.4-amd64 and upgrading to the latest 24.1.10. I usually update regularly but have not updated in several months. However it seems like there is an issue now with the repo?

[1/92] Fetching php82-dom-8.2.20.pkg: ......... done
[2/92] Fetching php82-simplexml-8.2.20.pkg: ... done
[3/92] Fetching py311-charset-normalizer-3.3.2_1.pkg: .......... done
[4/92] Fetching py311-pyasn1-modules-0.4.0.pkg: .......... done
[5/92] Fetching easy-rsa-3.1.7,1.pkg: ....... done
[6/92] Fetching py311-pyyaml-6.0.1.pkg: .......... done
[7/92] Fetching py311-aioquic-1.2.0.pkg: .......... done
[8/92] Fetching e2fsprogs-libuuid-1.47.1.pkg: ..... done
[9/92] Fetching bind918-9.18.27_1.pkg: ....... done
pkg-static: cached package bind918-9.18.27_1: missing or size mismatch, fetching from remote
[10/92] Fetching bind918-9.18.27_1.pkg: .......... done
pkg-static: bind918-9.18.27_1 failed checksum from repository
Starting web GUI...done.
Generating RRD graphs...done.
***DONE***

I have rebooted twice but still gets stuck updating each time. Any advice? Maybe I missed a post about this, not sure?
I did find this one thread with something similar but not sure if this is needed in my case?
https://forum.opnsense.org/index.php?topic=40834.msg200221#msg200221

So I have a new OPNsense install with the latest updates, Sensei installed with the following blocks:






On a PC with a browser, this is no issue as UBO takes care of this easily. However under the YT app on WebOS, nothing seems to work. Any ideas here? Is this even possible?

I also have unbind setup with several DNSBL lists enabled which seem to work good but not sure if they are able to help here too?

I dont have any YT specific app blocked as I dont want to block the app itself, right?

Any advice on blocking ads and/or surveys on YT here?

So I am very new to OPNsense, migrating from Smoothwall. I have a new setup with multiple vlans, FW rules, etc. For the most part things are working pretty good now. It sounds like this is a great platform, so happy to be able to utilize it now!

My next trick is to get as much ad blocking and family safe searching as possible. Currently I use Ad Guards Family DNS servers and U block Origin on the browser. This works great but I want to take things to the next level as there are LOTS of ads and such going on behind the scenes that I would like to block.

First, can Bind and Unbound DNS work together or is it best to use only one? For Bind, do I need FW rules as I currently don't have any DNS rules that I setup, only the default ones. If these can work together, based on the screenshots, is mine setup optimally? I don't think its working 100% from what I can tell. I do think some ads are being blocked so it may be close.

I would also like like to enforce the Safe Search features which I have enabled and checked but not sure they are working from my initial testing?

Bonus Points/1up's if I can get YT ads blocked from a WebOS TV setup!!!  ;D

Any help would be greatly appreciated.

So building a new setup for my home use and went "all out" segregating about 10 vlans and such, including WiFi, Printers, etc...

For the most part I think I have it figured out but cant get dhcp working from any of the ports I tested so far.

Basically, I have most "interface" ports setup with no IP, no DHCP, and a vlan sub interface for each corresponding to that network. That vlan interface has a dhcp server for that segment and gateway of .1. I have my Cisco switch setup with the vlan for this segment (50 in this case) and tried both tagged and untagged. I think tagged is correct. For testing, I have plugged in a laptop to this one port and figured it would pull an IP on this segment but maybe I need the other interfaces setup too? Should this work or am I missing something here so far? I also tried having the laptop connected to the switch and both devices in the same vlan and connected to the corresponding port on this device but same results.

I have this sitting on my desk with only the LAN interface for testing and setting up.

Any advice?  ;D