OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of krad »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - krad

Pages: [1]
1
General Discussion / Re: Firewall Block schedule
« on: November 06, 2018, 10:34:42 pm »
<stop> being an empty table/alias I have defined

2
General Discussion / Re: Firewall Block schedule
« on: November 06, 2018, 10:30:31 pm »
I'm a bit late to this but this seems to work and should be a bit more atomic that scripted things stopping the race between state creation and the block rule.

I have a rule very early on like this

block return in quick on private from <stop> to any

I then cron things like this

pfctl -F states  -t stop -T add 192.168.210.85
3776 states cleared
1/1 addresses added.

3
General Discussion / Re: ZFS
« on: May 07, 2018, 11:09:15 pm »
Thanks for the information. I am confused though, why was the standard BSD bootstrap deviated from.  Was this an opnsense design decision or was it inherited from the pfsense fork? If the latter does anyone know the reason?

Quote from: franco on May 03, 2018, 05:25:08 pm
It was state here very recently: https://forum.opnsense.org/index.php?topic=8521.0

Translated:

Requires time for development. Every now and then somebody brings up a new networking feature they want to merge and that is subsequently prioritised... :)

We need to do two things:

1. ZFS Boot Awareness: With a FreeBSD on ZFS you can install OPNsense using opnsense-bootstrap, but the system won't boot because /usr/local/etc/rc is not aware of ZFS and the kernel module is missing.

2. When 1. is done the installer needs to gain a ZFS installation mode.


Cheers,
Franco

4
General Discussion / Re: ZFS
« on: May 03, 2018, 04:29:31 pm »
Can you elaborate why one that is, other than not supported yet. I ask as im new to opnsense but very experienced with freebsd, and zfs builds.  Initially looking around at what is available in the base userland, I suspect I could get it going in and incorporate boot environments, unless there is something hidden in there. All the libraries, kernel modules and loaders appear to be there, which is a good start. After all it does look like opnsense is a fairly bog standard freebsd build with tweaks, config management and a gui.

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2021 All rights reserved
  • SMF 2.0.18 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2