Messages

1

General Discussion / Re: UDP Broadcast Relay

« on: December 03, 2022, 09:56:36 pm »

Curious if anyone has had any success w/ Logitech Harmony Hubs? If so, would you mind sharing some specifics.

ROON and SONOS is working fine, but have been unable to setup the Logitech HUBs across VLANs.

NM, think it's working now, had to use multicast of 224.0.0.1 and port 5224.

Thanks

Can you share what your entry is to get Roon working? I have read on Roon forums that it needs port 9003, but that doesn't seem sufficient. I have Airplay and Sonos working, but not Roon.

Yes, added 9003 to UDPBR, selected interfaces/networks, and created a FW rule to allow my ROON server to talk to the other networks. That's about it and was a minimul effort.

2

General Discussion / Re: UDP Broadcast Relay

« on: December 30, 2021, 12:26:43 am »

Curious if anyone has had any success w/ Logitech Harmony Hubs? If so, would you mind sharing some specifics.

ROON and SONOS is working fine, but have been unable to setup the Logitech HUBs across VLANs.

NM, think it's working now, had to use multicast of 224.0.0.1 and port 5224.

Thanks

3

21.7 Legacy Series / Re: 21.7 Boot hang at “Configuring VLAN interfaces...” with imported 21.1 config

« on: August 02, 2021, 03:25:27 pm »

Please disregard, read a few posts back and I'm good.

4

21.7 Legacy Series / Re: 21.7 Boot hang at “Configuring VLAN interfaces...” with imported 21.1 config

« on: July 31, 2021, 01:24:30 am »

Is the following OK to upgrade?

5

Virtual private networks / OPNsensePIAWireguard Script Safe?

« on: June 24, 2021, 04:29:35 pm »

Curious if anyone has implemented the following:

https://github.com/FingerlessGlov3s/OPNsensePIAWireguard

I wanted to make sure that it is safe and nothing to be concerned with. I have implemented in OPNSENSE and no issues, looked at script (looks fine to me) however, given my limited knowledge thought I would aske here for feedbck.

Thanks

6

General Discussion / Re: UDP Broadcast Relay

« on: September 24, 2020, 01:10:50 am »

Have this working w/ Sonos app and Roon endpoints, now I am working on the Spotify app. Anyone have any specifics for Spotify?

I read where Spotify uses TCP 4070, but that was unsuccessful.

Installed mDNS repeater and that addressed the issue w/ Spotify and other devices on other VLANs.

@marjohn56, will your plugin do mDNS?


Thanks

7

General Discussion / Re: UDP Broadcast Relay

« on: September 22, 2020, 12:20:00 am »

Thanks for the reply and that is straight-forward and works fine. where I am confused is specific to the plugin, obviously when you have that FW rule enabled you can communicate across networks and I was under the impression that the plugin would take care of not having to create FW rules.

I'm sorry, but call me confused, which is not difficult...

TIA

8

General Discussion / Re: UDP Broadcast Relay

« on: September 21, 2020, 10:41:09 pm »

Not having much success, but here is the FW rule I setup, see attached.



Any feedback would be appreciated. One question, if you setup a FW rule to pass traffic between the 2 networks wouldn't that defeat the purpose of this plugin?

Thanks

9

General Discussion / Re: UDP Broadcast Relay

« on: September 21, 2020, 07:48:51 pm »

I assume I am going to have to setup a firewall rule based on the log beow:

filterlog[12364]   16,,,0,igb1,match,block,in,4,0x0,,1,15941,0,DF,17,udp,129,172.16.20.1,239.255.255.250,48581,1900,109

Trying to access my Sonos that sits in my IOT VLAN (20) from the my LAN. I have a FW rule that allows access to VLAN20 (IOT), but the VLAN20(IOT) does not have access to my LAN network. I assume I am on the right track here?

Thanks

10

20.7 Legacy Series / Re: GeoIP-Alias error after updating to 20.7.2

« on: September 13, 2020, 03:05:12 pm »

I had the same issue and the following change under "firewall-settings-advanced-Firewall Maximum Table Entries, increased to 800000 resolved the issue.

11

Intrusion Detection and Prevention / Snort Rule Set and Rules

« on: September 08, 2020, 02:26:49 am »

Question about rule-sets and rules, if you disable all rule-sets under Download Tab in Intrusion and Detection shouldn't that disable all the rules associated w/ that rule-set under rules and vice-versa (enable rulesets will enable all rules)?

I disabled all the snort rule-sets and I assumed that would disable all the rules, but I still see the rules as enabled and receiving alerts.

I was able to disable the snort rulesets and rules, now the rules tab is clear. I went back and enabled 3 snort rule-sets, enabled and downloaded rules however, no rules are showing under the rules tab even though I have 3 rule-sets enabled and installed. Having a challenge understanding the logic.

Thanks

12

Zenarmor (Sensei) / Re: Sensei on OPNsense - Application based filtering

« on: September 06, 2020, 06:44:43 pm »

Update: I was able to resolve the issue by reinstalling 1.6Beta3 however, when I re-apply my premium key I receive the following error, "We couldn't verify your activation key..." I opened up a support ticket/email.

I assume this is the correct thread to post in specific to opnsense and sensei. The issue I am having is specific to my ring cameras and sensei. I am unable to pull up the live video from the ring app on either my PC or mobile devices unless I enter bypass mode in sensei.

I have checked the policy and I don't have any setting that would block ring as far as I can tell however, when I look at the sensei logs I see the following, see attached file.


What's odd is that the sensei log/reports secure web browsing is blocked, but when I look at the policies this is not the case.

Lastly, I decided to reinstall sensei and now I receive the following error during hardware check, unable to complete hardware check. I am running a Corei7 and 32GB RAM and didn't have any issues during the initial install.

13

20.7 Legacy Series / Re: VLAN Help (Solved)

« on: September 06, 2020, 12:14:42 am »

Well after hours and hours of troubleshooting and clearing states, I rebooted all my APs, switch, and FW/OPNSense and now it's working 

No idea what was going on, any ideas?

14

20.7 Legacy Series / Re: VLAN Help

« on: September 05, 2020, 11:51:11 pm »

Check the interface configuration if you have the "block private networks" checkbox enabled.

Thanks for the reply, that box is unchecked.

15

20.7 Legacy Series / VLAN Help (Solved)

« on: September 05, 2020, 11:00:57 pm »

I setup VLAN20 and assinged to my LAN interface, enabled, created DHCP scope, and created firewall rules under the VLAN20 interface named IOT.

The clients get a DHCP address in the correct network, 192.168.20.0/24,but I can't access the other VLAN or the internet. Looking at the firewall logs I see the following:
 
2020-09-05T15:51:57   filterlog[78388]   6,,,0,em1_vlan20,match,block,in,4,0x0,,128,20785,0,none,17,udp,64,192.168.20.100,192.168.20.1,65037,53,44

Here is the firewall rule I created just to test:

IPv4 *   IOT net   *   *   *   *   *

 
What am I missing?

Thanks