Topics

106

16.7 Legacy Series / [SOLVED] Netflow Explorer is gone

« on: July 10, 2016, 02:18:18 pm »

Hi Guys,
i have lost the netflow Explorer after my hardware reinstalled .
https://docs.opnsense.org/manual/how-tos/netflow_exporter.html
my hardware is a A10
is it some kind of plug in that need to be installed ?

107

16.7 Legacy Series / [SOLVED] web interface SSL

« on: July 09, 2016, 03:59:45 pm »

Hi Guys,
is it possible to create a trusted certificate with the firewall FQDN on it ?
so when the users go to the http://FQDN or https://FQDN will be secure signed.

thank you

108

16.7 Legacy Series / [SOLVED] Country Blocks

« on: July 09, 2016, 12:24:50 am »

Hi Guys,
we got a lot of chines, Russian Deny attempt in the firewall.
i want to block those attempt .
i found this tutorial https://docs.opnsense.org/manual/how-tos/ips-geoip.html
the issue i have now is the firewall doesn't have a HDD but a 64GB SD.
is this even still possible or the IP GEOIP need right to writ to the SD which is not possible with SD ?
thank you

109

16.1 Legacy Series / [SOLVED] From Cisco to OPNSENSE

« on: July 08, 2016, 04:40:28 pm »

Good day Guys,
i hope someone can help me.
right now we have Cisco Firewall with the 4 Ports, WAN, LAN1, LAN2 , LAN3
we have 2 different switches .

Switch 1 is connected to LAN1 on the Cisco
Switch 2 is connect to LAN 2 on the Cisco
on the Cisco we have QOS for Telephone VOIP

in The cisco we have VLANS , 1,2,3,4,5
when i am connected on the switch 2 i can reach VLAN1, VLAN2,VLAN3 and from the switch 1 side as well.
the tagging on the switches side will remain the same, so i believe OPNSENSE will share the same VLANS, and the switches will understand the VLANS from the OPENSENS.

i've been looking to create the same configuration with 5 VLANS to reach them from two different Switch.
i have created the VLANS on the OPNSENSE.
Should i create some Firewall rules to allow the connections between the VLANS ?
how i am supposed to have 5 VLANS on two different interfaces ? or i don't need to have them on both interface and allow the connections between the VLANS ?

hope someone can put me on the right direction as i am planning to do the migration next week.
a big thank you guys

110

16.7 Legacy Series / [SOLVED] OpenVPN Broke 16.7

« on: July 07, 2016, 12:31:53 pm »

Hi Guys,
i had a OPENVPN server working fine with two factor google.
after the updates seems it stops working .
on the OPENVPN server log shows
PN Server UDP:1194 Client connections
Name/Time    Real/Virtual IP    
UNDEF
Thu Jul 7 12:29:15 2016    84.31.53.127:1657
   
UNDEF
Thu Jul 7 12:29:16 2016    84.31.53.127:28717
   
UNDEF
Thu Jul 7 12:29:12 2016    84.31.53.127:34761
   
UNDEF
Thu Jul 7 12:29:17 2016    84.31.53.127:63258
   
UNDEF
Thu Jul 7 12:29:14 2016    84.31.53.127:49449
   
UNDEF
Thu Jul 7 12:29:13 2016    84.31.53.127:52751
   
UNDEF
Thu Jul 7 12:29:14 2016    84.31.53.127:32173
   
UNDEF
Thu Jul 7 12:29:17 2016    84.31.53.127:38674
   
UNDEF
Thu Jul 7 12:29:06 2016    84.31.53.127:7852

any suggestions why ?
i've rebooted the firewall twice.
on the firewall logs there is nothing about the block or deny .
the firewall is hardware A10 model.

111

16.7 Legacy Series / monitor on 16.7

« on: July 05, 2016, 01:23:19 am »

Hi Guys,
is it possible to configure the FW to send out a email in case of " reboot, WAN is down.... )
i see this option already exist on the notification, but somehow the emails are not sending out.
thank you

112

16.1 Legacy Series / Proxy server

« on: July 03, 2016, 09:38:35 pm »

Hi guys,
i have proxy server configured, everything works fine.
i want to apply the proxy over the openvpn, whenever a user create a openvpn tunnel over the firewall the proxy will apply to the openvpn interface.
we dont want to fource the tunnel over the gateway on the VPN Server, why dont i want to force the tunnel ? because it will route everything behind the firewall and will cause some slawness .
on the proxy interface can't seem to add the openvpn interface .

is this even possible ? if yes hope someone can put me on the right direction.

113

16.1 Legacy Series / OPNsense on Secure Digital Firewall hardware

« on: July 01, 2016, 08:05:06 pm »

Hi Guys,
I am willing to buy a test hardware with a secure digital .
I've heard secure digital aren't gonna work fine with the Linux / opnsens.

thank you for your advise.

114

16.1 Legacy Series / QOS with IP phones

« on: June 30, 2016, 09:58:52 pm »

Hi Guys,
i have OPNsense on a LAB " Planning to go soon on production ".
on the LAB i have 3 VALNS, 1.2.3
VLANS 3 is VOICE Vlan and want to configure QOS on the firewall side.
can't seem to find this option somewhere on the file, i've found the traffic shapping.
is this the way to configure the QOS ? if yes can you please explain how ?

115

16.1 Legacy Series / Deny page proxy

« on: June 30, 2016, 10:37:10 am »

Good morning,
is it possible to edit the deny page of the proxy filter like pfsense ?
like when the user goes to the blocked website wil be redirected to different website or see a kind of warning what we will create ?

116

16.1 Legacy Series / [SOLVED] VLANS questions

« on: June 30, 2016, 01:07:09 am »

Hi guys,
i am on OPNsense 16.1.17-amd64 on VMWARE ESXI 6.0.
i can't seem to find a doc to configure the VLANS.
does the OPNsense 16.1.17-amd64 support VLANS on VMWARE like Pfsense ?
i went to Interface , other type , VLAN and i've create one
i can only find how to create VLANS but not how to configure them.

thank you

117

16.1 Legacy Series / [SOLVED] OPNsense on Vmware

« on: June 29, 2016, 06:51:41 pm »

Hi Guys,
we have managed to get OPNsense on VMware working fine. OPENVPN is configured with two factor authentication. however from time to time have to reboot the firewall becauses its not available over the line.
can't log to the firewall and the only solution is to reboot it .
any suggestions why ?
Firewall has 2GB memory and 10 GB SSD VMware drive.

thank you

118

16.1 Legacy Series / new to OPNSense

« on: June 29, 2016, 12:01:03 am »

Hi Guys,
we are new to the products, we finally our contract with the Cisco and been using pfsense for over 7 years , al our customers are happy with pfsense.
today we have contacted the OPNSense team so they advised us to try it before start deploying it .
the issue now is i can't get the openvpn with two factor authentication .
i've followed the link as explained https://docs.opnsense.org/manual/how-tos/sslvpn_client.html?highlight=vpn but its keeps failing on tls handshake .
on this step :

Code: [Select]

Create a Certificate

After creating the Authority we will also need a certificate. To create a new certificate, go to System->Trust->Certificates and click add or import certificate in the upper right corner of the form.

Fill in the form with (leave the rest default):

Click Save to create the certificate.should we create a user or server certificate this step is unclear


can someone point me why ?