Messages

1

Tutorials and FAQs / Re: HOWTO - Routing Opnsense traffic over SurfsharkVPN

« on: April 26, 2022, 07:56:51 pm »

Seems dns related. If i add the interface in unbound under the list of served interfaces it works.
However i want to use specific dns fw for this interface and i define them manually on the clients.

Still working on understanding the issue

2

Tutorials and FAQs / Re: HOWTO - Routing Opnsense traffic over SurfsharkVPN

« on: April 19, 2022, 10:13:28 pm »

Mine looks active, but no internet for clients as well.
Investigating

3

Hardware and Performance / Re: need help with USB Realteck wifi

« on: April 15, 2022, 05:48:01 pm »

problem fixed. post can be closed

4

Hardware and Performance / Re: Topton N5105 based system

« on: April 14, 2022, 12:59:35 pm »

you can look at Qotom as well
https://de.aliexpress.com/item/1005003913498579.html?spm=a2g0o.productlist.0.0.51ea5086KRgiRI&algo_pvid=78642af0-9b33-4158-89d4-2e6c98f44f27&algo_exp_id=78642af0-9b33-4158-89d4-2e6c98f44f27-7&pdp_ext_f=%7B%22sku_id%22%3A%2212000027454036325%22%7D&pdp_pi=-1%3B163.38%3B-1%3B-1%40salePrice%3BEUR%3Bsearch-mainSearch

I use one with i3 and runs perfectly

5

Hardware and Performance / Re: need help with USB Realteck wifi

« on: April 13, 2022, 11:01:14 pm »

thank you @pmhausen
just loaded the module and restarted.

usbconfig dump_device_desc:
ugen1.3: <Realtek 802.11ac NIC> at usbus1, cfg=0 md=HOST spd=HIGH (480Mbps) pwr=ON (500mA)

  bLength = 0x0012
  bDescriptorType = 0x0001
  bcdUSB = 0x0200
  bDeviceClass = 0x0000  <Probed by interface class>
  bDeviceSubClass = 0x0000
  bDeviceProtocol = 0x0000
  bMaxPacketSize0 = 0x0040
  idVendor = 0x0b05
  idProduct = 0x1853
  bcdDevice = 0x0000
  iManufacturer = 0x0001  <Realtek>
  iProduct = 0x0002  <802.11ac NIC>
  iSerialNumber = 0x0003  <123456>
  bNumConfigurations = 0x0001

Now I don't know how to create the interface:
ifconfig wlan0 create wlandev <..> does not work.

6

Hardware and Performance / Re: FYI: Alfa Network AWUS036NHRv2 USB-to-WiFi adapter works flawlessly on 22.1.2

« on: April 13, 2022, 05:18:12 pm »

does it show up automatically in the UI as new adapter or new interface?

7

Hardware and Performance / need help with USB Realteck wifi

« on: April 13, 2022, 04:51:42 pm »

Hi all,

I try to initialize an USB wifi (asus ac68) based on realtek chip.
looks like it has been detected:
ovpnc1: link state changed to UP
ugen1.3: <Realtek 802.11ac NIC> at usbus1 (disconnected)
ugen1.3: <Realtek 802.11ac NIC> at usbus1

but I can't see it as interface. how do I initialize it?
any guide is welcome

Thank you

8

Zenarmor (Sensei) / Sensei on OPNsense - Application based filtering

« on: March 11, 2022, 07:51:41 am »

Set this on all internal interfaces.
If you need more, use suricata on wan

9

General Discussion / DHCP issue on VLAN

« on: March 01, 2022, 04:07:12 pm »

Hi all,

I have a stupid problem.
I have 3 VLANS :
     Lan_Wifi tag 10 - 172.16.20.0/24
     Guest_Wifi tag 20 - 172.16.30.0/24
     Iot_wifi tag 30 - 172.16.40.0/24

Vlan 10 and 30 work perfectly. Every network has its own dhcp server.
Guest_Vlan which maps to a Wifi_Guest SSID, and has a DHCP server associated with it as well. The customers of this network are set not to have access internally, only internet access.
everytime I add a new customer, It gets the ip from the pool, the gw and dns. however is does 0 traffic.
If I add the device in the list of DHCP Static Mappings they start working as expected.
Once the client gets the ip from the dhcp server serving Wifi_Guest network, the client appears in the leases list as Offline


All other dhcp networks have mapping for every entry
Any clue why is this happening? I miss something for sure

thank you

10

Virtual private networks / Re: wireguard point to point guidance - solved

« on: February 17, 2022, 03:12:28 pm »

It can be closed
I made a mistake when I added the route.
all works now
thank you

11

Virtual private networks / Re: wireguard point to point guidance

« on: February 10, 2022, 10:29:55 pm »

something doesn't match

the tunnel is up:
peer: VSS+lopy56*********
  endpoint: 24.4.223.185:51823
  allowed ips: 10.100.92.0/31, 192.168.123.0/24
  latest handshake: 23 seconds ago
  transfer: 2.88 MiB received, 2.87 MiB sent

Firewall A internal networks 172.16.10.0/24, 172.16.20.0/24
Firewall B internal network 192.168.123.0/24
Tunel network is : 10.100.92.0/31

without any additional fw rules ping fails

ping 192.168.123.1                                                       
PING 192.168.123.1 (192.168.123.1): 56 data bytes
Request timeout for icmp_seq 0

With the additional rule where I define the gateway same behaviour

Firewall A rules on Lan:
   IPv4 *   *   *   FirewallBLan    *   WIREGUARD_GW   *   FW B LAN access VPN
where FirewallBLan is Firewall B (192.168.123.0/24)

What am I missing?

12

Virtual private networks / Re: wireguard point to point guidance

« on: February 10, 2022, 09:37:48 am »

it works. the tunnel is up. the interface has been created.
Now I need to figure out how to route traffic through the tunnel

thank you

13

Virtual private networks / Re: wireguard point to point guidance

« on: February 09, 2022, 11:37:31 am »

thanks for sharing this.
let me go through this and see how it turns out

14

Virtual private networks / wireguard point to point guidance

« on: February 09, 2022, 09:37:16 am »

Hello,

Did anyone managed to set a point-to-point Wireguard VPN?
Can you please point me to some docs (the one on opnsense is incomplete i believe)

Thanks

15

Tutorials and FAQs / Re: HOWTO - Routing Opnsense traffic over SurfsharkVPN

« on: January 21, 2022, 11:19:34 am »

something happen after the last update.
I cannot route 1 internal IP through the VPN tunnel anymore.
Does it work for the rest of you?