Topics

Is there a way to import all of my static dhcp mappings from ISC to kea before I switch over to kea?

Running the settimestamp command in cli brings it back as it did after the 1.15 upgrade.

As the subject says, have rebooted a couple times and have also done a clean install with the same result.

TLS/SSL Inspection is now going to be business license only?

I noticed today that your features list, lists Policy based Transparent TSL/SSL Inspection as coming soon only for the Business license.  Granted I haven't looked at the feature list in awhile.  But the feature list doesn't list any other TLS/SSL inspection.  Are none of the other licenses for Zenarmor getting TLS/SSL inspection now?

I've registered to get 10gb fiber at my house.  I don't yet have an install date.  Will OPNSense achieve line rate with an Intel X550-T2 and/or is there a better choice?  I will be running OPNSense + Zenarmor (no suricata).

Also, the various tuning guides out there, are they still relevant for OPNSense 22.x/23.x and FreeBSD 13.x?

I've asked this on other TLS inspection threads with no response.  Is your plan to still do TLS inspection without requiring certificates on client devices?

I am back to using AdGuard Home on a Pi for DNS announced to my clients via dhcp on their various vlans.

OPNSense is still using my ISP DNS.

Does using AdGuard Home negatively impact Zenarmor or it's effectiveness in anyway for these same clients?

I am testing RSS on my topton i5 2.5gbe device and have noticed in game/app decreases in latency.  But there is a Zenarmor warning about possible issues when it notices that RSS is enabled.  Though it doesn't go in to detail about what these issues could be.

Is Zenarmor fully functional and performant when RSS is enabled?

If I uncheck any of the disable hardware offload options in Interface > Settings the x550-T2 I'm using stops working.

However, if I leave the disable options checked and then change settings under the System tunables everything works as expected.

What's the difference and/or why do I have issues using the settings under interface vs the same settings under system tunables?

You guys list a policy limit for home as "Up to 3 Filtering Policies".  However, I am only able to create 2 as it appears you are counting the default catch all policy against the paid policy count.

However, in a lot of your marketing and walkthrough screenshots.  You are demoing an obvious home setup with 3 created policies plus the default catch all.  Unless a lot of businesses would be creating policies named (as shown in screenshots on your site):
My Wife
My Guests
My Kids
Default

Granted in these same screenshots it shows you are using a Business Edition license (so unlimited policies) for your marketing and walkthroughs (for anyone that would take time to look at that past the policy names and setup).  But at the same time, you are showing an obvious home setup that just simply isn't possible on the current Home license, since you guys are considering the default catch all policy as part of the policy limit.

You guys either need to rethink your stance on counting the default catch all policy against the paid policy count.... Or you really, really, need to go through and fix all of your screenshots.

I decided to give OPNSense a try with Sensei.  I have OPNSense installed, but everytime I install os-sunnyvalley it installs without error but shows as orphaned and I no longer get any plugins in the plugin list.  Also, if any other plugins are installed they also show as orphaned after installing os-sunnyvalley and all stop working.