Messages

FWIW, I have the same log entry.

That said, when I check the function of Unbound (or better put the DNS server, meaning me, using GRC Spoof)....everything comes back fine....

Great question....I believe though that the preconfigured drop down choices have the URLs built into the .conf file (or maybe a .conf.add)

As for the question of refreshing, I believe you need to create a cron to do that....at least I did (the cron job tab has a prepopulated task for doing exactly this)

The link below may come in handy as well....:

https://forum.opnsense.org/index.php?topic=9245.0

Thank you!  So in that case though, if all browsers are forcing to the https, is the only real value for incoming emails or such? 

No.

Few months (or years, can't remember), major browser providers or security companies decided that HTTP(s) connection should be primary connection for web browsing (which it has been quite a while now).

You still can make HTTP connections, you just have to manually type http:// at the start of the address (right click eicar link and choose copy link address and paste it on your browsers address field), or add :80 to the end off the TLD (top level domain, which are .com, .net .uk and so on)

Thanks very much!  This is great.  So if that's the case (https forcing, which is something even in my gross naivety knew...haha) then what real value is realtime ClamAV providing?  The odd ocassion that say some site may not be 's'.....since if damn near every site is 's' and someone (looking at wife and kids here) DLs something and that won't get scanned because it's an 's' site based file....what's the point?

I'm clearly missing something but enjoy the education!   

Thank you!  So in that case though, if all browsers are forcing to the https, is the only real value for incoming emails or such? 

Hello all....new to OPNsense and migrated from the Merlin-based ASUS solutions.  So far loving the cool factor, although I'm far from a networking guru....

I got lots of ?s but I'll start with ClamAV.  I followed the guides and believe I have the Forward Proxy set correctly (as it was auto populated anyhow) but I can still DL the Eicar files....only thing stopping me is my client based solution (Sophos on Debian).

Not sure what's up....any help would be wonderful as I'm new to this....

I have other ?s as well regarding Unbound and Suricata but those can wait...lol   thanks in advance...