OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of Reuti »
  • Show Posts »
  • Topics
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Topics - Reuti

Pages: [1]
1
23.7 Legacy Series / OpenVPN “Redirect Gateway” setting
« on: August 23, 2023, 01:01:53 pm »
With the legacy setup of OpenVPN one had the option to enable resp. disable “Redirect Gateway” with a toggle.

In the new instances implementation it’s instead a list of options. My question is:

Is “Redirect Gateway” now always active and one can only select the required option(s), or will “Redirect Gateway” only be active, if at least one option is selected? Chosing “default” does not seem to the have same effect as ommiting all options but specifying --redirect-gateway on its own according to OpenVPN’s documentation.

-- Reuti

2
23.7 Legacy Series / [SOLVED] OpenVPN instance defaults to SHA1 / enforce group not working
« on: August 09, 2023, 02:45:22 pm »
After converting my OpenVPN setting to the new instance based setup, two questions remain:

a) The new default for authentication seems to be SHA1, when I would like to go to my former setting SHA-512 I have to enable “advanced mode” – is this intended?

b) When “Enforce local group” is left to “none” it’s working fine. If I select a defined group “remote” for the remote users it states in the log file “OpenVPN '2' requires the local group 2001. Denying authentication for user X”, despite the fact that user X is a member of group “remote”.

-- Reuti

3
21.7 Legacy Series / [SOLVED] OpenVPN Client Export doesn’t find local defined server any longer
« on: October 20, 2021, 05:49:25 pm »
Hi All,

I recently updated OPNsense to 21.7.3_3. Now I face the issue, that "VPN => OpenVPN => Client Export" doesn’t show any linked users any longer. This might be the result, as already the first field "Remote Access Server" does not list the local OpenVPN server. Even entering the name shows only that it can't find it: 'No results matched "…"'

I have two OPNsense servers running and both face the same issue.

Nevertheless: already exported users are still able to connect to OpenVPN.

Did I miss any new setting which is required to use this export of the certificates of the server and user now?

-- Reuti

4
20.7 Legacy Series / syslogd or syslog-ng?
« on: July 31, 2020, 02:23:09 pm »
Hi,

With one of the last updates to 20.1.8 IIRC in the output of the patch procedure the steps were listed to get now syslog-ng as new default in OPNsense working. With the update to 20.7, now syslogd does get started as default again. I have two questions regarding this behavior:

  • Is syslog-ng the official log daemon in OPNsense, or is it just a matter of taste which to prefer?
  • Even with /etc/rc.local in place, syslog-ng is not started by default but syslogd. How can I make syslog-ng the default again?

Code: [Select]
root@opnsense:/etc # cat rc.conf
syslog_ng_enable="YES"
syslogd_enable="NO"
Kind regards -- Reuti

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2