"
Ahhh so what is really the difference is that Unbound is an authoritative DNS, whereas Dnsmasq will forward to an authoritative source. Now that makes sense. Staying with Unbound then.
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
#797
Intrusion Detection and Prevention / Re: Suricata 5 Beta - Can We Upload to OPNSense
June 03, 2019, 05:23:22 PM
No worries...and thanks for all the efforts. I am learning alot about OPNsense!
#798
19.1 Legacy Series / Re: Cannot Login to GUI
June 03, 2019, 05:22:34 PM
Not sure what it was. Rebooted the firewall and all was good again.
#799
19.1 Legacy Series / Re: Curl Vulnerability
June 03, 2019, 05:21:59 PM
Agreed...and I was really not asking if there was an update but more if we could install the updated Curl, which looks to be available.
#800
19.1 Legacy Series / Re: Unbound vs Dnsmasq
June 03, 2019, 05:20:59 PM
So I do not enable Dnsmaq and I am good...thanks!
#801
19.1 Legacy Series / Curl Vulnerability
June 02, 2019, 10:05:49 PM
Hello all,
I did a security audit of my system and its showing that Curl has multiple vulnerabilities. Is there a new pkg that addresses these?
Thanks,
Steve
I did a security audit of my system and its showing that Curl has multiple vulnerabilities. Is there a new pkg that addresses these?
Thanks,
Steve
#802
Zenarmor (Sensei) / Re: Sensei on OPNsense - Application based filtering
June 02, 2019, 07:05:56 PM
I would agree on what Suricata shows. I am actually trying to find some kind of front end that visualizes the Suricata data. Working with Elastic Search right to see where it can get me.
#803
General Discussion / Re: Best log viewer?
June 02, 2019, 05:28:06 PM
Does the filter get implemented on the OPNsense firewall?
#804
19.1 Legacy Series / Cannot Login to GUI
June 02, 2019, 05:08:24 PM
OK I am sure I did something but for the life of me I am not sure what I did.
When I connect my PC to the LAN port of my firewall I can login to the GUI with no issues. If I connect the PC to a switch, which in turn connects to the LAN port of my firewall, It times out and does not let give me the login screen. Why would this be happening...what option did I enable that I should not have?
Steve
When I connect my PC to the LAN port of my firewall I can login to the GUI with no issues. If I connect the PC to a switch, which in turn connects to the LAN port of my firewall, It times out and does not let give me the login screen. Why would this be happening...what option did I enable that I should not have?
Steve
#805
General Discussion / Re: Firewall Logs - What is Everyone Doing?
June 02, 2019, 05:04:45 PM
Thank you sir!
#806
Zenarmor (Sensei) / Re: Sensei on OPNsense - Application based filtering
June 02, 2019, 04:37:27 PM
@mb does Sensei augment what Suricata brings to the table or are they aimed at totally different things. It seems to me there is overlap and I am trying to understand if I should use one or the other or both.
#807
19.1 Legacy Series / Re: Call for testing: New netmap enabled kernel
June 02, 2019, 12:18:54 AM
So since there was no new kernel in 19.1.7 and 19.1.8 that means I need to install the new netmap via CLI correct? The netmap in plugins is still old?
#808
Zenarmor (Sensei) / Re: Sensei on OPNsense - Application based filtering
June 01, 2019, 10:41:17 PM
Thanks @mb.
What does Sensei replace?
What does Sensei replace?
#809
Zenarmor (Sensei) / Re: Sensei on OPNsense - Application based filtering
June 01, 2019, 10:17:31 PM
Is Sensei available from the plugins section or do we need to do a CLI install? I would very much like to try it out.
#810
General Discussion / Firewall Logs - What is Everyone Doing?
June 01, 2019, 07:08:33 PM
Hello all,
I am new to OPNsense and clearly there are logs that I would like to be able to review, from time to time, so make sure there is nothing getting through that I do not want. Keeping the logs on the firewall, long term, does not seem like a good idea. I am thinking of building a dedicated syslog server, to take in logs from the firewall and other network devices.
A couple of questions:
1) Do you have a syslog server app that you would recommend?
2) Is there a front end to Suricata that would allow me insight into what is going on from an IDS/IPS perspective?
3) Do you run NTOPNG on the OPNsense firewall or do you run it independently of the firewall?
Thanks,
Steve
I am new to OPNsense and clearly there are logs that I would like to be able to review, from time to time, so make sure there is nothing getting through that I do not want. Keeping the logs on the firewall, long term, does not seem like a good idea. I am thinking of building a dedicated syslog server, to take in logs from the firewall and other network devices.
A couple of questions:
1) Do you have a syslog server app that you would recommend?
2) Is there a front end to Suricata that would allow me insight into what is going on from an IDS/IPS perspective?
3) Do you run NTOPNG on the OPNsense firewall or do you run it independently of the firewall?
Thanks,
Steve
