Messages

now back to my real issue

once I activate SSL inspection (ca internally create and the certificate exported and loaded on my mac as trusted) I got no traffic.
I followed the docs + my previous PfSense XP = still not successful :)
From time to time even the HTTP traffic freeze and I need to manually restart squid.
I pretty sure I miss something somewhere. I would appreciate if someone has any suggestion. Everything helps.

Thx

Thx franco

Hi guys,

my system version is OPNsense 17.7.11-amd64

I have a small issue. by following the step by step guide :
https://wiki.opnsense.org/manual/how-tos/proxytransparent.html
on the SSL nat rule I see some mismatching:
NAT reflection   Enable (NAT + Proxy) doesn't exist as an option.
both http/https nat rule are created. proxy is transparent. the certificate has been set to trust locally.

if there is something I missed I would be grateful if you can guide me.

Thank you

thanks for the reply franco.

Hi all,

I need an andvice.
I have web proxy + remote dns blacklist loaded.
proxy binds to LAN interfaces & it's set as transparent HTTP.
How can i make sure that nobody will bypass it without defining the proxy on each network client and uncheck the transparent mode.
Can I somehow redirect all 80/443 trafin internally from some firewall rules?

Thx in advance

if i'm not mistaken there is an option there to specify the cache file size.
For SSD i would like to keep all cache in RAM. i don't know if this is an option

thx for the reply.
i manage to make it work with the an ubnt switch.

thanks

Hi all,

I have a pretty weird question.
I intend to bypass a switch and aggregate 2 gigabit(lacp) from my opnsense firewall directly to a LAGG (LACP) on FreeNAS.
Is there a way I can simulate this connection via some software switch emulation on the opnsense box?
The problem is ubnt switch (edge switch) is not able to match the lacp on FreeNAS and I can't aggregate the 2 connections.

Thanks in advance.
M

any possibility to see pfblokerNG in this major release?

Hi all,

Quick design question:
I have 2k+ websites/forums and I use Netscaler as load balancer in front for apache/Nginx/u name it

We reduce costs and we may thing to switch to pf sense/opnsense for this. My question is how many machines I can use (is there any limitation in this possible setup in terms of virtual servers definitions)
How many machines I can use in a CARP setup for this?


Thank you
M

thanks for the answer

Hi guys,

I may miss this but it will be quite good if opnsense can have something like pfblokerNG implemented.
Is there any ? or any plan for this?

test are going well.
need to understand how it uses the CPU's based on this I can scale my systems.
@ the moment I'm trying to migrate from pfsense to opnsense and working on chef integration :)

Testing it today on 1Gbps constant traffic network. 8 core c2758, 8gb ram ecc + ssd. The only issue I see is that only core 1-4 are used till 90% rest of them sleeping. Is there something I missed in the configuration? I suspect not.

manage to connect pfsense with AD 2012...i guess opnsense will have this too...