Messages

Hia good start to block torrent is blocking file downloads and every file URL that ends with .torrent or .exe, i tried to block .torrent .exe file via Access Control List on web Proxy but

i was able to block .exe but .torrent file or extension cant block, this one was working before the update to OPNsense 16.7.14-amd64

Note: before the update its working fine


Blocking .exe


with torrent:



OPNSense ACL:


any suggestion how to block other p2p

Hi pr3p,

I'm afraid Layer7 has been removed from OPNsense, later also from pfSense. It was unmaintained and there is no viable replacement.

This requires a commercial DPI engine used by commercial firewall vendors.


Cheers,
Franco

Hi franco any update on OPNSense to block p2p or to block torrent application or extension, i was able to block torrent extension via web proxy enabled with.

http://prntscr.com/e10k7p

And for DPI or deep packet inspection - is it possible to add on opnsense features?

@franco im having problem again with the insight status after updating to latest release

Versions   OPNsense 16.7.14-amd64
FreeBSD 10.3-RELEASE-p14
OpenSSL 1.0.2j 26 Sep 2016

Problem:

-No data appearing on insight - http://prnt.sc/e0i502
-version of python was already applied  - http://prnt.sc/e0i4gq


Thank and looking for your fast response.

Solved the problem i clear/reset the rdd data and netflow data on setting and all good now thanks.

Cheers,
pr3p

@franco im having problem again with the insight status after updating to latest release

Versions   OPNsense 16.7.14-amd64
FreeBSD 10.3-RELEASE-p14
OpenSSL 1.0.2j 26 Sep 2016

Problem:

-No data appearing on insight - http://prnt.sc/e0i502
-version of python was already applied  - http://prnt.sc/e0i4gq


Thank and looking for your fast response.

It's difficult without your setup and netflow setting, when it started doing this or if it was always like this?


Cheers,
Franco

With my 1st server its working fine with one dsl line and one fiber, but on 2nd server with 7 DSL connected please refer below for the netflow.

1st Server: 
Netflow: http://prntscr.com/e074p5
Insight: http://prntscr.com/e076az


2nd Server:
Netflow: http://prntscr.com/e0751i
Insigh: http://prntscr.com/e075q7


Regards,
pr3p

16.7.14 is going live in a minute. Python downgrades automatically.

Ok thanks for the update franco, the netflow statistic is very important to us, and i have a problem also on im not getting stats or report on LAN ( in) only out same with other interface.

http://prnt.sc/e05zhf



OPNsense 17.1.b_91-amd64  - reporting insight also not working on beta kindly check thanks

Sorry, I tend to mix up "install" and "add". I've corrected my post accordingly.

thanks franco after adding the package do i need to reinstall?

Thanks franco  ;D cheers

@franco the package already on the repo

http://prnt.sc/dzjmmp

System Info:
http://prntscr.com/dzjmzr

Hi recently my reporting insight was working fine, after updating to the latest release its kinda buggy now, report graphs has no data available, i already disabled and enable the interface on netflow - capture



Below is the generated reports for 30days.



Thanks and looking for your fast response.

Hi moshen you can check the previous topic/problem here https://forum.opnsense.org/index.php?topic=3950.0 i


Regards,
pr3p

Another problem i encountered on one of my server it doesnt generate report with multiwan DSL connection. ( i have 6 DSL Line connected) WAN




Packets in and Bytes In has no data generated.

to all devs and contributor it is possible to generate reports on data usage like this one.


Data usage generated on Kerio Control:
http://kb.kerio.com/product/kerio-control/quick-start-with-kerio-control-1558.html




Regards,
pr3p

Hello guys im having problem on the generated reports. my opnsense setup is multiwan ( with 4 dsl connected dynamic) and set all to tire 1.

Problem: i've notice that insight generated reports on interface working fine but for the Top Usage ports/sources (bytes) on lan has a problem, there is no generated reports on packets in.




My setting on netflow:


Let me know if there's something wrong on my config, thanks and looking for your fast response.


My other server (Stable Server) it seems to be working fine.



Regards,
pr3p

Im having problem with web proxy i already disabled the exe on "Block specific MIME type reply"  blocklist and ACL but i cant still download exe files

-i restarted the squid server several times, before its working fine before updating the patch for acl's and




Config on ACL


Config on Remote Control List



Problem even i already edited the categories on blocklist still not applying the config for example, i disabled manga's, shopping,wares and etc but some site still on block.




Regards,
pr3p

Hmm, verify=False is required for self-signed HTTPS servers. This needs to be added. I tested HTTP downloads, with Shalla and it worked  for both with and without the patch provided by Ad.

Can confirm that it takes longer than it should, but eventually the categories show up in the entry. We'll get to the bottom of this.

In the meantime, things that could go wrong on the side are non-working resolution from the firewall itself or requiring a proxy to connect.


Cheers,
Franco

Ok thanks franco, i'l check this one