Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - chemlud

Pages: 1 ... 7 8 [9] 10 11 ... 166

121

Hardware and Performance / Re: Wifi 6 mini pcie cards?

« on: July 19, 2024, 05:15:10 pm »

it's feasible on paper, at best...

122

Hardware and Performance / Re: Wifi 6 mini pcie cards?

« on: July 18, 2024, 01:24:11 pm »

I prefer a raspberry pi 2b and a wifi stick with built-in (!!) firmware in current RaspiOS Bullseye. Actually two of them for seamless wifi throughout the house. Choose the wifi stick wisely.

Setup of the bridge with NetworkManager is quite straight-forward.

https://www.raspberrypi.com/documentation/computers/configuration.html#use-your-raspberry-pi-as-a-network-bridge

You have control over the OS of your AP ;-).

No configuration needed in opnsense.

123

German - Deutsch / Re: plötzlich hat kein LAN-Client mehr Zugang zum Internet (DNS-Fehler?)

« on: July 18, 2024, 01:18:01 pm »

Quote from: Pitti3303 on July 18, 2024, 05:17:08 am

.... Die internen Geräte haben in dieser Situation keine IPv4 Adresse mehr vom dhcp bekommen. Der DHCPv4 läuft aber laut Dashboard. Ein Neustart des dhcpd hilft dann nicht.

Alle leases expired?!?!? Auf einmal?!?!?

Was ist im DHCP-Log?

Wie ist das konfiguriert? Jede MAC bekommt eine fixe IP? Oder totally random?

124

German - Deutsch / Re: plötzlich hat kein LAN-Client mehr Zugang zum Internet (DNS-Fehler?)

« on: July 17, 2024, 07:05:57 pm »

Am "Client im LAN" mal

Code: [Select]

ping google.com
probieren. Wenn DNS funktioniert, wird er eine IP im ping anzeigen, sonst nicht.

In der GUI wird unbound "grün" angezeigt, wenn "kein Indernetz"?

125

Hardware and Performance / Re: Wifi 6 mini pcie cards?

« on: July 17, 2024, 01:59:08 pm »

I use an ARM device with wifi stick in access point mode running linux (bridged with eth0). I have one opnsense with wifi as WAN, but that's a different piece of cake.

wifi as an access point on opnsense directly: I don't think you will find a single thread on this forum supporting this setup, not to speak of wifi 6

https://wiki.freebsd.org/dev

https://www.freebsd.org/releases/14.0R/hardware/

https://docs.netgate.com/pfsense/en/latest/wireless/hardware.html

126

German - Deutsch / Re: WebGUI nach Neustart oder Shutdown nicht erreichbar

« on: July 17, 2024, 09:59:20 am »

Quote from: Baender on July 17, 2024, 09:42:11 am

Das Problem ist mit dem Setzen auf "All" behoben. Kann ich denn über Firewall Regeln einschränken, dass das WebGUI nur über LAN erreichbar ist?

Auf LAN ist die anti lock-out rule gesetzt, damit du auf LAN an die GUI kommst. Kann man aber durch spezifischere Regel für einzelne Clients ersetzen, ala:

Code: [Select]

allow ipv4/TCP SOURCE:specific clients alias PORT:any DESTINATION:LAN address PORT:443 

block ipv4/TCP SOURCE:LAN net PORT:any DESTINATION:LAN address PORT:443

Auf WAN ist ja sowieso verboten, was nicht ausdrücklich erlaubt ist.

Bei deinen weiteren interen Interfaces (IOT oder Gast oder sonstwas) musst du zuerst mal den Traffic zu LAN und allen weiteren interen Interfaces ganz oben blocken. Und um nicht an die GUI zu kommen:

Code: [Select]

block ipv4/TCP SOURCE:IOT net PORT:any DESTINATION:IOT address PORT:443
für jedes interne Interface entsprechend. Und unter der Voraussetzung das unsichere, experimentelle network stacks (aka ipv6) komplett geblockt werden, auf allen Interfaces.

Happy networking....

127

24.7 Production Series / Re: Dashboard re-write - Which plugins do survive?

« on: July 16, 2024, 06:00:12 pm »

Quote from: franco on July 16, 2024, 05:27:53 pm

Might look into one of these plugins after initial 24.7. Tickets welcome of course.

Cheers,
Franco

Lufthansa? Where do you want to travel?

128

24.7 Production Series / Re: Dashboard re-write - Which plugins do survive?

« on: July 16, 2024, 05:20:00 pm »

Thanks for reply!

The SMART thing is fun, but optional... WOL dito.

:-)

129

24.7 Production Series / Dashboard re-write - Which plugins do survive?

« on: July 16, 2024, 04:59:32 pm »

Hy!

Read the release notes for 24.7.RC1 and found this gem:

Quote

o The dashboard has been replaced. Widgets from the old format are no longer supported and need to be rewritten by the respective authors.

Is there an overview, which widgets are available as of now? Who are the maintainers of the remaining widgets and are there any re-writes to be expected? Timelines, maybe, at least preliminary? ;-)

130

23.7 Legacy Series / Re: Unbound does not resolve an us.to domain

« on: July 13, 2024, 07:57:12 pm »

...have here frequent suricata DNS blocks for .to domains

131

23.7 Legacy Series / Re: Unbound does not resolve an us.to domain

« on: July 13, 2024, 06:39:45 pm »

Suricata @work?

132

23.7 Legacy Series / Re: Unbound does not resolve an us.to domain

« on: July 13, 2024, 02:20:35 pm »

Blocklists activated in unbound?

133

23.7 Legacy Series / Re: Unbound does not resolve an us.to domain

« on: July 13, 2024, 11:19:55 am »

The Domain was NOT .home.arpa but unbound added it to the search anyway? Correct?

134

23.7 Legacy Series / Re: Unbound does not resolve an us.to domain

« on: July 13, 2024, 10:53:19 am »

I've seen such unbound requests for local hosts with .home.arpa added in the logs and never really understood what was going on in unbound.

What is set in System -> Settings -> General as the Domain?

135

German - Deutsch / Re: DDclient spdyn Problem

« on: July 11, 2024, 12:28:07 pm »

klingt unschlau...

Pages: 1 ... 7 8 [9] 10 11 ... 166