16
General Discussion / Re: NordVPN and ipsec config
« on: June 03, 2019, 10:05:37 am »
No one an answer for me?
Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
17
General Discussion / NordVPN and ipsec config
« on: May 31, 2019, 11:11:13 am »
Hi
it is possible to setup NordVPN with ipsec on opnsense via WebUI?
The recommended settings are:
conn NordVPN
keyexchange=ikev2
dpdaction=clear
dpddelay=300s
eap_identity="USERNAME"
leftauth=eap-mschapv2
left=%defaultroute
leftsourceip=%config
right=SERVER
rightauth=pubkey
rightsubnet=0.0.0.0/0
rightid=%SERVER
rightca=/etc/ipsec.d/cacerts/NordVPN.pem
type=tunnel
auto=add
https://nordvpn.com/de/tutorials/linux/ikev2ipsec/
If it isnt possible over WebUI, where should I put the config?
(I know NordVPN works with OpenVPN but dont want OpenVPN)
TiA
Greetz
it is possible to setup NordVPN with ipsec on opnsense via WebUI?
The recommended settings are:
conn NordVPN
keyexchange=ikev2
dpdaction=clear
dpddelay=300s
eap_identity="USERNAME"
leftauth=eap-mschapv2
left=%defaultroute
leftsourceip=%config
right=SERVER
rightauth=pubkey
rightsubnet=0.0.0.0/0
rightid=%SERVER
rightca=/etc/ipsec.d/cacerts/NordVPN.pem
type=tunnel
auto=add
https://nordvpn.com/de/tutorials/linux/ikev2ipsec/
If it isnt possible over WebUI, where should I put the config?
(I know NordVPN works with OpenVPN but dont want OpenVPN)
TiA
Greetz
18
19.1 Legacy Series / Re: NAT on iface group
« on: February 26, 2019, 06:46:02 am »
no answer for me?
19
19.1 Legacy Series / NAT on iface group
« on: February 21, 2019, 12:01:28 pm »
Hi All!
I have created a 'extern' interface group with 2 WAN interfaces (have cable and vdsl).
And now if I set a NAT port forward rule to this extern interface, it works only on cable WAN and not on vdsl WAN...
It is a bug?
Greetz
I have created a 'extern' interface group with 2 WAN interfaces (have cable and vdsl).
And now if I set a NAT port forward rule to this extern interface, it works only on cable WAN and not on vdsl WAN...
It is a bug?
Greetz
20
18.7 Legacy Series / NAT on interface groups
« on: January 25, 2019, 11:34:24 am »
Hi All!
I have created a 'extern' interface group with 2 WAN interfaces (have cable and vdsl).
And now if I set a NAT port forward rule to this extern interface, it works only on cable WAN and not on vdsl WAN...
It is a bug?
Greetz
I have created a 'extern' interface group with 2 WAN interfaces (have cable and vdsl).
And now if I set a NAT port forward rule to this extern interface, it works only on cable WAN and not on vdsl WAN...
It is a bug?
Greetz
21
General Discussion / Re: is someone running opnsense as XEN PV domU?
« on: January 23, 2019, 10:05:49 am »
Hi
did you managed to find anything out about how to run opnsense as pv domU?
Greetz
did you managed to find anything out about how to run opnsense as pv domU?
Greetz
22
German - Deutsch / CARP und ntpd
« on: December 31, 2018, 03:05:04 pm »
Hi
ich habe ein Problem mit CARP Iface und NTPD.
Meine Hosts im LAN sollen die CARP IP nutzen um zu den ntpd auf der opnsense zu connecten.
Ich lasse den ntpd auch auf dem CARP Iface 'lauschen' aber meine Hosts können nicht dorthin connecten, lustigerweise ntpdate schon...
Die Coonfig sollte ok sein, da auf dem 'normalen' (nicht CARP) Iface alles so tut wie es soll.
Was kann das Problem sein?
(spezielle FW Rules gibt es dort nicht)
TiA
Greetz
ich habe ein Problem mit CARP Iface und NTPD.
Meine Hosts im LAN sollen die CARP IP nutzen um zu den ntpd auf der opnsense zu connecten.
Ich lasse den ntpd auch auf dem CARP Iface 'lauschen' aber meine Hosts können nicht dorthin connecten, lustigerweise ntpdate schon...
Die Coonfig sollte ok sein, da auf dem 'normalen' (nicht CARP) Iface alles so tut wie es soll.
Was kann das Problem sein?
(spezielle FW Rules gibt es dort nicht)
TiA
Greetz
23
General Discussion / Lets Encrypt and HA
« on: November 28, 2018, 11:52:52 am »
Hi All,
I use CARP/HA with 2 opnsense instances (apu2c4 and xen vm).
It is possible to setup Lets Encrypt on both? I use it for my HA Proxy setup.
Greetz
I use CARP/HA with 2 opnsense instances (apu2c4 and xen vm).
It is possible to setup Lets Encrypt on both? I use it for my HA Proxy setup.
Greetz
24
Hardware and Performance / Re: 19" Hardware
« on: November 24, 2018, 01:03:38 pm »
I have something like that @home:
https://varia-store.com/images/products/popup/1287391.jpg
and it would be nice to have the appliance there.
At this time I have an apu2c4 for this but it is to slow for this what I want to do with it.
I'm looking for something like the apu but 19" and with more performance..
https://varia-store.com/images/products/popup/1287391.jpg
and it would be nice to have the appliance there.
At this time I have an apu2c4 for this but it is to slow for this what I want to do with it.
I'm looking for something like the apu but 19" and with more performance..
25
Hardware and Performance / Re: 19" Hardware
« on: November 24, 2018, 10:24:02 am »
I prefere router hardware because of power consumption... as I wrote it will be used @home...
26
Hardware and Performance / 19" Hardware
« on: November 24, 2018, 09:37:56 am »
Hi All
Im looking for 19" Router for opnsense. I want to use it @home so it shouldnt be to expensive.
I want to use 2 internet accounts with it:
Cable 1Gbit down/100mbit up
VDSL 250mbit down/40mbit up
It should be powerfull enough to do VPN (ipsec) above 100mbit, proxy with ssl inspection and IPS
It should have at least 4 Ethernet Ports.
Any proposals?
TiA
Im looking for 19" Router for opnsense. I want to use it @home so it shouldnt be to expensive.
I want to use 2 internet accounts with it:
Cable 1Gbit down/100mbit up
VDSL 250mbit down/40mbit up
It should be powerfull enough to do VPN (ipsec) above 100mbit, proxy with ssl inspection and IPS
It should have at least 4 Ethernet Ports.
Any proposals?
TiA
27
General Discussion / ipv6 fw rule with dynamic prefix
« on: September 25, 2018, 08:46:48 am »
Hi
how can I set a ipv6 firewall rule with a dynamic prefix?
Greetz
how can I set a ipv6 firewall rule with a dynamic prefix?
Greetz
28
General Discussion / carp and ipv6
« on: September 13, 2018, 07:25:53 am »
Hi All,
I have ipv6 configured on my wan with ra to my lan. I use a second opnsense with carp for redundancy. It is ok to configure ipv6 on the second opnsense same as on the first?
I think dhcpv6 on wan is ok but what about RA -> lan?
Greetz
I have ipv6 configured on my wan with ra to my lan. I use a second opnsense with carp for redundancy. It is ok to configure ipv6 on the second opnsense same as on the first?
I think dhcpv6 on wan is ok but what about RA -> lan?
Greetz
29
General Discussion / Re: Multi WAN and ipv6
« on: September 11, 2018, 05:21:08 pm »
cool and for what version it is on the roadmap?