"
In AdGuard Home you could do something like this:
And in Unbound:
Code Select
'rewrites':
- 'domain': *.logs.roku.com
'answer': 127.0.0.1
And in Unbound:
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
#3
German - Deutsch / Re: IPSEC zwischen OPNSense und Watchguard
June 09, 2026, 09:34:02 AM
Das ist nicht "zicken". Das ist entweder eine einzige Phase 2 SA mit mehreren Prefixen oder eine Phase 2 SA pro Prefix. Implementierungen können das eine oder das andere unterstützen oder beides. Watchguard offensichtlich nur letzteres.
#4
26.1, 26,4 Series / Re: What happened to the plugins?
June 08, 2026, 04:17:12 PM
Why was this switch introduced in the first place? This must be the most frequent support request on the forum, currently. IMHO the old UI wasn't broken ;-)
#5
German - Deutsch / Re: Unbound unter OpenVPN
June 05, 2026, 10:25:51 AM
Das trifft auf jede Firewall zu, die auf einem Standard BSD oder Linux aufsetzt und keine FIB pro Interface verwendet. Damit sind best practices vielleicht nicht immer 1:1 übertragbar?
#6
26.1, 26,4 Series / Re: NUT 2.8.5_1: upsc, upscmd, and upsrw segfault after successful query; OPNsense N
June 04, 2026, 04:59:17 PM
Known problem. Downgrade and lock the NUT package.
https://forum.opnsense.org/index.php?topic=51916.msg267114#msg267114
https://forum.opnsense.org/index.php?topic=51916.msg267114#msg267114
#7
General Discussion / Re: Business license question regarding activation
June 03, 2026, 08:06:35 PM
May I suggest sending these questions via email to sales@? 🙂
#8
26.1, 26,4 Series / Re: Opnsense randomly (?) crashes
June 03, 2026, 04:36:36 PM
Does your device have a serial console? If yes, connect a PC with a terminal program and let that run until the next crash. The serial console output will not be cleared on reboot unlike VGA/HDMI.
#9
26.1, 26,4 Series / Re: Maltrail new version 0.86 => 1.4
June 03, 2026, 03:29:49 PM
You wait until it's integrated in OPNsense and a new OPNsense version is published.
#10
German - Deutsch / Re: Unbound unter OpenVPN
June 03, 2026, 11:34:11 AMQuote from: trixter on June 03, 2026, 11:06:51 AMWarum sollte ich etwas per ACL oder auch FW Regel beschränken, was ich auch einem Interface nicht anbieten und daher auch komplett ausschalten kann?
Weil deine Vorstellung von "auf einem Interface anbieten oder nicht" nicht der Realität entspricht.
Wenn du von z.B. LAN aus DNS-Requests an "any" oder "this firewall" erlaubst, dann kannst du von LAN aus jede IP-Adresse der Firewall ansprechen und dort deine Requests hin schicken. Die sind alle lokal aus Sicht der Firewall und werden in der Hinsicht identisch behandelt. Die Firewall interessiert, zu was für einem Interface die Anfrage hereinkommt, nicht, welche IP-Adresse verwendet wird.
Deshalb ist der Vorschlag die Management-IP-Adresse zu benutzen auch nicht abwegig. Damit kommt man nicht ins Managagement-Netz. Damit kann man genau vom LAN eine DNS-Anfrage an die Firewall schicken und sonst nichts. Die IP-Adresse ist wie gesagt völlig wurst, so lange sie eine lokale der Firewall ist.
So funktioniert das nunmal.
#11
26.1, 26,4 Series / Re: "Inverting destinations is only allowed for single targets" rule error
June 02, 2026, 08:28:30 PM
If you have an active connection which you intend to block the problem is possibly not that your aliases are not updated in a timely fashion, but that you need to flush the firewall states.
An active TCP connection that once was permitted stays that way because of the stateful firewall, even if you change the rules.
Of course flushing the firewall states will disrupt all active connections which is exactly why it does not happen by default.
An active TCP connection that once was permitted stays that way because of the stateful firewall, even if you change the rules.
Of course flushing the firewall states will disrupt all active connections which is exactly why it does not happen by default.
#12
26.1, 26,4 Series / Re: 26.1.9 - Nut netclient no longer functional (SEGV)
June 02, 2026, 04:53:52 PM
Same as in 26.1.8 - revert nut back to 26.1.7:
https://forum.opnsense.org/index.php?topic=51916.msg267114#msg267114
https://forum.opnsense.org/index.php?topic=51916.msg267114#msg267114
#13
Hardware and Performance / Re: Battery Replacement: DEC740 / DEC750 (Netboard A10 Gen3)
June 02, 2026, 01:01:39 PM
Your main board definitely calls for someone with a soldering iron and the matching skills.
#14
General Discussion / Re: [SOLVED]Packet received by interface but blocked before firewall
June 02, 2026, 12:04:26 AM
What are these devices, what OS are they running, and what is the API for network communication? The socket interface for IP/UDP/TCP is completely oblivious of MAC addresses and the OS just does everything necessary.
Just curious ;-)
Kind regards,
Patrick
Just curious ;-)
Kind regards,
Patrick
#15
General Discussion / Re: Extended Blocklists are not accessible after upgrading to the Business version
June 01, 2026, 08:47:54 PM
@Monviech can you shed some light on this? The documentation still lists Extended Blocklist as a BE feature, if I am not mistaken.
