Messages

Dear Beloved Zenarmor Users,

OPNsense allows you to create Let's Encrypt certificates using the ACME client, a plugin included in the repository. Let's Encrypt certificates are advantageous due to their cost-free nature and the ease with which they can be created for your domains.

The primary aim of Let's Encrypt and the ACME protocol is to facilitate the establishment of an HTTPS server that acquires a browser-trusted certificate autonomously, without requiring any human intervention. This is achieved through the implementation of a certificate management agent on the web server.

In this tutorial, we will explain how you can change a self-signed certificate with a Let's Encrypt certificate on your OPNsense firewall.

https://www.zenarmor.com/docs/network-security-tutorials/how-to-change-self-signed-certificates-with-ca-signed-certificate-on-opnsense

Best Regards,

Zenarmor Team

Dear OPNsense Community,

Certificates on OPNsense are used to establish confidence between peers. OPNsense enables the creation of certificates directly from the front end to simplify their use. Furthermore, it enables the creation of certificates for many uses without using the "openssl" command line program.

In this guide, we outline OPNsense certificate management topics.
https://www.zenarmor.com/docs/network-security-tutorials/how-to-manage-certificates-on-opnsense

Best Regards,

Zenarmor Team

Dear Beloved Zenarmor Users,

DDclient is a Perl client that is used to update dynamic DNS entries for accounts on a Dynamic DNS Network Service Provider. This software operates on a wide range of UNIX operating systems and has undergone testing on GNU/Linux and FreeBSD. The supported capabilities include functioning as a daemon, both manual and automated updates, static and dynamic updates, optimized updates for multiple addresses, MX records, wildcards, abuse avoidance, retrying unsuccessful updates, and transmitting update status to syslog and via e-mail.

In this tutorial, we will guide you through dynamic DNS configuration on the OPNsense firewall using ddclient plugin and Cloudflare.

https://www.zenarmor.com/docs/network-security-tutorials/how-to-configure-dynamic-dns-on-opnsense

Best Regards
Zenarmor Team

[The Beginner's Guide for OPNsense]

Hello OPNsense enthusiasts and cybersecurity professionals,

We're thrilled to announce the release of "The Beginner's Guide for OPNsense", a comprehensive ebook designed to help both newcomers and seasoned users maximize the potential of their OPNsense setups. Brought to you by Zenarmor, this guide is a testament to our commitment to the OPNsense community and our belief in open-source security solutions.

What's Inside?

• Step-by-step instructions on configuring and optimizing OPNsense.
• Best practices for network security and performance.
• Insights into advanced features to elevate your OPNsense experience.

Whether you're setting up OPNsense for the first time or looking to deepen your understanding of its capabilities, this guide is packed with valuable information to enhance your cybersecurity strategy.

Download your free copy here:

https://www.zenarmor.com/opnsense-beginner-guide-form?utm_source=website&utm_medium=opnsenseforum&utm_campaign=beginnersguide

We're excited to contribute to the OPNsense community and look forward to your feedback. Dive into the ebook and let's strengthen our networks together!

Zenarmor Team

Dear beloved Zenarmor Users,

All DNS queries are routed in plaintext. Your ISP or a hacker can intercept transmissions via UDP and TCP protocol 53 in plaintext to compromise the site's DNS queries and responses. For this reason, we should encrypt our DNS queries for security purposes. DNS over TLS (DoT) is a security protocol that utilizes Transport Layer Security (TLS) to encrypt DNS traffic and is one of the most common DNS security solutions.

This tutorial will help you configure the OPNsense DNS resolver to encrypt all DNS queries in order to prevent surveillance and enhance your online privacy and security.

https://www.zenarmor.com/docs/network-security-tutorials/how-to-configure-dot-on-opnsense

Best Regards,

Zenarmor Team

Dear beloved Zenarmor Users,

IPSec is a collection of communication protocols that provide secure connections over a network. The phrase "IPsec" is an abbreviation where "IP" represents "Internet Protocol" and "sec" represents "secure."

OPNsense provides VPN connectivity for both branch offices and remote users (Road-Warrior). Setting up a single, secure private network that connects several branch offices to a central location is simply accomplished using the OPNsense web user interface.

This guide will explain the process of configuring an IPsec site-to-site VPN tunnel using an OPNsense firewall.

https://www.zenarmor.com/docs/network-security-tutorials/how-to-configure-ipsec-site-to-site-vpn-tunnel-on-opnsense

Best Regards,

Zenarmor Team

Dear Beloved Zenarmor Users,

CrowdSec is a lightweight, open-source program that identifies individuals exhibiting violent tendencies and prevents them from accessing your systems. The design of the system is user-friendly and provides easy access while still offering strong security measures.

In its most fundamental configuration, the CrowdSec module functions exclusively on a single server, safeguarding only the services hosted on the OPNsense system. Furthermore, it restricts the barring of malicious IP addresses, which are curated by the CrowdSec community.

In this tutorial, we will do basic CrowdSec installation on a single OPNsense system.

https://www.zenarmor.com/docs/network-security-tutorials/how-to-install-and-configure-crowdsec-on-opnsense

Best Regards,

Zenarmor Team

Dear Beloved Zenarmor Users,

High availability (HA) refers to the capacity of an IT system, component, or application to function consistently and without interruption at a superior level for a certain duration. The high-availability architecture is designed to provide optimal performance and effectively manage various workloads and faults while minimizing or eliminating any interruptions in service.

An impressive capability of OPNsense is the ability to establish a redundant firewall with an automated fail-over option. OPNsense employs the Common Address Redundancy Protocol (CARP) to enable hardware failover.

This tutorial will explain how to configure high availability on OPNsense firewall systems.

https://www.zenarmor.com/docs/network-security-tutorials/how-to-configure-ha-on-opnsense

Best Regards

Zenarmor Team

[device identification and management]

Dear  valued Zenarmor users,

We have reached the end of another successful year at Zenarmor, with the third and final major release of Zenarmor for 2023 ready for you to download. Like with all the previous major releases this year, Zenarmor 1.16 includes new, fresh capabilities and tools that will ultimately help you create a formidable defense against bad actors and improve your overall network security posture, regardless of where you choose to deploy Zenarmor, on-prem or in the cloud.

In this release, we are proud to introduce a new device identification and management capability, giving you improved visibility and control of the devices using your network, as well as Community ID flow hashing support to easily correlate device logs with connection logs, giving you full end-to-end visibility of the process on the device initiating the connection on your network to its final destination on the internet.

For more, read the blog post: https://www.zenarmor.com/post/not-just-an-update-zenarmor-1-16

Best Regards
Zenarmor Team

Dear beloved Zenarmor users,

We are delighted to hear about your enthusiasm for our upcoming release and are excited to share it with you. Rest assured, the wait will be rewarding. Our dedicated team has devoted countless hours to perfecting this new version, ensuring that it exceeds your expectations. Prepare to be amazed by the significantly improved functionality, performance, and user experience.

While the software is still in the final stages of development, we are almost ready to bring you a product filled with innovative features that will surely enhance your experience. Additionally, this release will introduce fundamental features of a next-generation firewall, marking a significant step forward in our technology. Stay tuned for the imminent arrival of our most advanced and user-friendly version yet!

The upcoming release of Zenarmor 1.16, with its advanced features like Device Identification, Device Access Control, and Community ID flow hashing, promises to elevate network security.

However, to fully leverage these enhancements and mitigate potential misconfiguration issues, this guide outlines essential best practices for administrators to effectively implement and optimize the new configuration settings.

https://www.zenarmor.com/post/getting-ready-for-zenarmor-1-16

Best Regards

Zenarmor Team

Hi WhiteTiger,

Zenarmor has a powerful web filtering and application control mechanism with a rich and up-to-date threat intelligence database.
Especially essential and advanced security rules safeguard your clients against malicious websites that contain malware, virus. Antivirus protection and sandboxing feature will be available in the future releases.
https://www.zenarmor.com/roadmap

Zenarmor runs independently from OPNsense fw rules and plugins.
You can easily configure captive portal on OPNsense and integrate it with Zenarmor for user-based filtering.
https://www.zenarmor.com/docs/network-security-tutorials/how-to-configure-captive-portal-on-opnsense
https://www.zenarmor.com/docs/guides/user-based-filtering-using-opnsense-captive-portal

Bests

[Blocked Threats]

Hi starfox101,
With the forthcoming release 1.16, the firewall dashboard will provide direct access to Live Sessions for "Blocked Threats" and "Detected Threats," expediting traffic analysis and threat detection.

A display will appear when you select the quantity of blocked threats, which is Threats Live Sessions filtering blocked connections. You can then simply exclude the Blocked filter in order to view detected threats that have not been blocked by selecting the equals (=) symbol on the applied filter parameter.

For more information:
https://www.zenarmor.com/docs/opnsense/reporting-analytics/live-session-explorer#adding-a-generic-filterexclusion-on-the-live-session-explorer

Bests

[ZENARMOR23U]

Special offer for new subscriptions!
Use the code ZENARMOR23U at checkout and get 20% off on new annual Zenarmor plans.

This offer is valid until December 7th, 23:59 PT, and is non-refundable.

Please note:

• Valid only for new annual plans, not existing subscriptions or renewals.
• Non-refundable once purchased.

Seize this opportunity to enhance your cybersecurity at a special rate!

https://dash.zenarmor.com/checkout?utm_source=website&utm_medium=opnsns&utm_campaign=bf&utm_term=discount&utm_content=form

Dear valued users,

The official release of Zenarmor 1.16 is just around the corner, promising some exciting new capabilities. Today, we will take a sneak peek at one of the new capabilities introduced in this release called Community ID Network Flow Hashing, or Community ID for short.

In this article, we are going to show you exactly how to do this by using Community ID to match the network traffic session logs created by Zenarmor with the Sysmon event logs generated on a Windows client in order to build a complete end-to-end picture of a network connection, from the application or process initiating the connection on the Windows client to its final destination endpoint.

https://www.zenarmor.com/post/threat-hunting-with-zenarmor-community-id-feature

Bests,
Zenarmor Team

Hi Alex,
Could you try to run the next command on CLI?
/usr/local/opnsense/mvc/app/library/OPNsense/Zenarmor/CLI.php settimestamp

Bests
Bekir