Messages

1

General Discussion / Re: implement new network setup, DHCP WAN address with additional static subnet

« on: February 25, 2022, 05:25:24 pm »

This already assumes that a subrange like /30 or /29 can be assigned using DHCP. Is that supported by DHCP in the first place ?

No, the subnet will not be assigned using DHCP. Only the IP address of the router will be assigned. This IP is not part of the subnet!

It is like this:

Code: [Select]

     WAN / Internet
            |
            |  Cable-Provider
            |
      .-----+-------.
      |  HFC Modem  |  (Bridge)
      '-----+-------'
            |
            |  WAN
            |
      .-----+------.   <--- IP assigned by ISP/DHCP
      |  Router    |
      '-----+------'
            |
            |  Public IP subnet (/29)
            |
      .-----+----.
      | opnSense |
      '-----+----'

I want to combine the router and the opnSense in one...

2

General Discussion / implement new network setup, DHCP WAN address with additional static subnet

« on: February 22, 2022, 11:49:56 am »

Hi there

I need to setup an additional site and I have the following requirements:

• The IP address range will be routed through a static IP address that will be assigned to the router with MAC reservation.
• Behind this static IP address, the subnet for the IP range is implemented by the customer (5 public IP addresses are available in this subnet).

I get a static range /29, (i.e. 55.66.77.88) whereas:

• .88 => the first address will be the network address
• .89 => the second address is the local gateway
• .90-94 => the 3rd to 7th address can be used as desired
• .95 => the last address is for broadcast

How do I need to setup opnSense to use this subnet with a private LAN subnet and NAT routing?
I guess the WAN is simply DHCP.
Do I need to add Virtual IPs fot the static subnet?

Thanks for your hints!

3

Hardware and Performance / Re: pfSense will support Intel Quickassist, what about OPNsense?

« on: February 22, 2022, 12:15:12 am »

OPNsense 22.1.1_3-amd64

According to https://www.freebsd.org/cgi/man.cgi?query=qat I added the loader.conf data to tunables.

I have a Sophos SG 125 Rev.3, powered by Intel Atom C3508.
So I added

• qat_load => YES
• qat_c3xxxfw_load => YES

After a reboot, dmesg gives me:

Code: [Select]

qat0: <Intel C3000 QuickAssist PF> mem 0xdd240000-0xdd27ffff,0xdd200000-0xdd23ffff irq 18 at device 0.0 on pci1
Does it work? No Idea... I can tell my IPSEC tunnel is working...

4

Hardware and Performance / Re: pfSense will support Intel Quickassist, what about OPNsense?

« on: February 21, 2022, 11:46:34 pm »

Yes, current plan is 22.1.

@franco: any update, now that 22.1 is out?

5

General Discussion / DHCP server vendor class settings

« on: January 04, 2021, 12:05:17 pm »

Hi there,

I'm looking for information on how to define vendor class settings to be set for DHCP server on LAN.

It looks like it is not possible using the web Interface.
Any manual modifications to dhcpd.conf seeem to be overwritten automatically...

Maybe adding the possibility in the web interface to define an include file for dhcpd.conf?

Code: [Select]

include "/mypath/myfile.conf";

6

German - Deutsch / Re: Upgrade: wo kann ich etwas im Filesystem speichen, das nicht überschrieben wird?

« on: October 29, 2020, 01:57:04 pm »

danke!

7

German - Deutsch / Upgrade: wo kann ich etwas im Filesystem speichen, das nicht überschrieben wird?

« on: October 29, 2020, 11:19:35 am »

Hallo zusammen

Ich möchte irgendwo im Filesystem meiner opnSense ein PHP Skript für Cron speichern, das bei einem künftigen Upgrade nicht gelöscht/überschrieben wird.
Ist das möglich? Falls ja, wo im Filesystem/Pfad?

Vielen Dank für die Antworten!

8

General Discussion / Re: path for custom files that is never overwritten

« on: October 09, 2020, 09:43:53 am »

No idea?

9

General Discussion / path for custom files that is never overwritten

« on: October 06, 2020, 01:45:18 pm »

Hi there

Where in my local path can I store custom files (php) on a full OPNsense install and keep them safe even after an upgrade of the system?

Thanks for clarification.

10

Hardware and Performance / Re: OPNsense on WatchGuard xtm530

« on: June 23, 2020, 09:54:02 am »

Yes, it works fine.

You should update the BIOS to an unlocked version (search with Google, you will find guides mentioning pfSense).
then, probably the best is to install a SSD or HDD and install using an USB Stick.

Alternatively you can install it to a CF card.

You should also upgrade the CPU, as it is slow (Celeron) and RAM.

11

Development and Code Review / Re: Update for dynDNS plugin - Cloudflare

« on: March 03, 2020, 11:42:23 am »

OK, I have managed to create a pull request...

12

Development and Code Review / Update for dynDNS plugin - Cloudflare

« on: February 26, 2020, 11:30:55 pm »

Hi there

I have worked on the Cloudflare plugin:
Now it supports setting of TTL (seems to be broken in current plugin, since Cloudflare has set this to mandatory, see issue #1668) and it supports the use of an API token.

I don't have a GitHub account. Maybe someone can check my work and merge it?

See attached file

Thanks!

13

German - Deutsch / Verkaufe 3x Watchguard XTM5

« on: January 31, 2020, 03:55:33 pm »

Hallo zusammen

Keine Ahnung, ob ich das hier posten darf. Leider gibt es keine geeignete Kategorie.

Ich habe 3x Watchguard XTM5 Firewalls mit opnSense zu verkaufen.

• 19" Rackeinbau
• 8GB RAM
• Intel Xeon CPU L5420 @ 2.50GHz (4 cores)
• 8GB SSD
• 6x Gigabit LAN

Versand in EU oder CH.

Bitte bei Interesse PN mit Preisvorschlag.

14

German - Deutsch / Re: 19 Zoll Hardware Axiomtek

« on: December 20, 2019, 10:43:04 am »

Ich habe selbst eine Axiomtek NA580 im Einsatz:

• Intel XEON E3-1275 v5 3,6 GHz
• 8GB DDR4-2133 ECC
• 250GB mSATA Samsung 850 EVO

Funktioniert tadellos.

15

German - Deutsch / Re: Fiber 7 via Swisscom und Opnsense

« on: November 14, 2019, 11:06:41 am »

Und?