1
17.1 Production Series / Re: Large amount of VLANs causes GUI hang
« Last post by ptha on Today at 09:15:15 AM »I'm searching a bit but didn't found it yet...
Recent Posts
2
Hardware and Performance / UPS and OPNsense
« Last post by Jack V on Today at 08:29:58 AM »I am thinking about buying a UPS for the OPNsense box and what not.
Looking at:
https://tweakers.net/pricewatch/261492/apc-back-ups-es-700va-din.html (Link is in Dutch language)
This one has good reviews and can be connected via USB.
Will this work with OPNsense out of the box or does it need a extra packages installed. -If an extra package need to be installed, will that stick after a OPNsense update?
Looking at:
https://tweakers.net/pricewatch/261492/apc-back-ups-es-700va-din.html (Link is in Dutch language)
This one has good reviews and can be connected via USB.
Will this work with OPNsense out of the box or does it need a extra packages installed. -If an extra package need to be installed, will that stick after a OPNsense update?
3
17.1 Production Series / Re: Large amount of VLANs causes GUI hang
« Last post by weust on Today at 08:23:57 AM »It's a known thing, and there is another topic here about that.
Also, it's been discussed in the IRC channel.
Don't know the details anymore, since I don't use it.
Also, it's been discussed in the IRC channel.
Don't know the details anymore, since I don't use it.
4
Chinese - 中文 / Re: 对于opnsense在国内使用,能增加一些如花生壳,3322等动态域名设置吗
« Last post by tianmo on Today at 08:08:21 AM »对于opnsense,在国内使用,DDNS里全是国外的DDNS,能增加一些国内常见常用的DDNS吗?如花生壳,3322等动态域名吗,个人觉得有需要经过我建议,开发团队已经加入了3322和花生壳。下个17.1.8里应该会加入了。或者你可以直接在命令行输入以下命令直接加入这个补丁包。# opnsense-patch 12810d9
在此也要感谢opnsense开发团队的快速响应。
5
17.1 Production Series / Malware Patrol Lists
« Last post by rhyse on May 25, 2017, 10:59:21 PM »Hi
Firstly thanks for the project.
I am trying to use the Malware Patrol lists in the "Remote ACLs" section of the Web Proxy service, in particular I am looking at thier Ransomware Block lists (Would like their Malicious URL feeds at some point). The issue is I am unable to get the lists into Squid. I think it has to do with the "header" on their files, is there a way to update the the "download" script to cater for this ? (I dont know where to find the script, so I may be able to tinker if I know where it is. But I am no programmer etc)
Files look along the lines of
This one is from a squidguard formated list
===
#
# Malware Patrol - Block List - https://www.malwarepatrol.net
#
# Please do not update this list more often then every day.
#
# Copyright (c) 2014 - Andre Correa - Malware Patrol - Malware Block List
# This information is provided as-is and under the Terms and Conditions
# available in the following address:
#
# https://www.malwarepatrol.net/terms.shtml
#
# Using this information indicates your agreement to be bound by these
# terms. If you do not accept them, please delete this file immediately.
#
# You can report false positives or broken rules/signatures to:
# fp (a t) malwarepatrol.net
#
# Cdmk5j392k2mcldleoqi44m3k1928rma
#
aakwbrbjtqja.co.uk/
aalgiftswdyhvj.net/
aanrhfftgveq.ru/
aasyjiubathqd.info/
...
...
...
yxxebtrcenbm.info/
yynleigitdls.biz/
====
Ths is from a SQUID formated list
====
#
# Malware Patrol - Block List - https://www.malwarepatrol.net
# List for Squid
# Generated at: 20170525195759 UTC
#
# Please do not update this list more often than every hour.
#
# Copyright (c) 2017 - Andre Correa - Malware Patrol - Malware Block List
# This information is provided as-is and under the Terms and Conditions
# available in the following address:
#
# https://www.malwarepatrol.net/terms.shtml
#
# Using this information indicates your agreement to be bound by these
# terms. If you do not accept them, please delete this file immediately.
#
# You can report false positives or broken rules/signatures to:
# fp (a t) malwarepatrol.net
#
# Kn2su6fOsZ5fnhesG2hPPMDDDX3LYM3y
#
^http\:\/\/(.+@)?(.+.)?018fe96b-a-62cb3a1a-s-sites\.googlegroups\.com
^http\:\/\/(.+@)?(.+.)?01iki0sx\.15311223344\.com
^http\:\/\/(.+@)?(.+.)?02307\.net
...
...
^http\:\/\/(.+@)?(.+.)?zzzwcbpvsn\.centade\.com
====
I have had a look at the resultant files that get created and essentially (I dont have a copy to hand), it doesn't get past the "header"
EDIT
====
Resultant File Example Below
====
root@unfw01:/usr/local/etc/squid/acl # cat squidguard
.#
.# terms. if you do not accept them, please delete this file immediately.
.# please do not update this list more often than every hour.
.# available in the following address:
.# using this information indicates your agreement to be bound by these
.# generated at: 20170525175853 utc
.# copyright (c) 2017 - andre correa - malware patrol - malware block list
.# fp (a t) malwarepatrol.net
.# this information is provided as-is and under the terms and conditions
.# list for squidguard - urls
.# kn2su6fosz5fnhesg2hppmdddx3lym3y
root@unfw01:/usr/local/etc/squid/acl #
====
Malware Patrol provide a working example at the following location: http://www.malware.com.br/MalwarePatrolDownload.sh
Any help/advise is appreciated
Thanks
Firstly thanks for the project.
I am trying to use the Malware Patrol lists in the "Remote ACLs" section of the Web Proxy service, in particular I am looking at thier Ransomware Block lists (Would like their Malicious URL feeds at some point). The issue is I am unable to get the lists into Squid. I think it has to do with the "header" on their files, is there a way to update the the "download" script to cater for this ? (I dont know where to find the script, so I may be able to tinker if I know where it is. But I am no programmer etc)
Files look along the lines of
This one is from a squidguard formated list
===
#
# Malware Patrol - Block List - https://www.malwarepatrol.net
#
# Please do not update this list more often then every day.
#
# Copyright (c) 2014 - Andre Correa - Malware Patrol - Malware Block List
# This information is provided as-is and under the Terms and Conditions
# available in the following address:
#
# https://www.malwarepatrol.net/terms.shtml
#
# Using this information indicates your agreement to be bound by these
# terms. If you do not accept them, please delete this file immediately.
#
# You can report false positives or broken rules/signatures to:
# fp (a t) malwarepatrol.net
#
# Cdmk5j392k2mcldleoqi44m3k1928rma
#
aakwbrbjtqja.co.uk/
aalgiftswdyhvj.net/
aanrhfftgveq.ru/
aasyjiubathqd.info/
...
...
...
yxxebtrcenbm.info/
yynleigitdls.biz/
====
Ths is from a SQUID formated list
====
#
# Malware Patrol - Block List - https://www.malwarepatrol.net
# List for Squid
# Generated at: 20170525195759 UTC
#
# Please do not update this list more often than every hour.
#
# Copyright (c) 2017 - Andre Correa - Malware Patrol - Malware Block List
# This information is provided as-is and under the Terms and Conditions
# available in the following address:
#
# https://www.malwarepatrol.net/terms.shtml
#
# Using this information indicates your agreement to be bound by these
# terms. If you do not accept them, please delete this file immediately.
#
# You can report false positives or broken rules/signatures to:
# fp (a t) malwarepatrol.net
#
# Kn2su6fOsZ5fnhesG2hPPMDDDX3LYM3y
#
^http\:\/\/(.+@)?(.+.)?018fe96b-a-62cb3a1a-s-sites\.googlegroups\.com
^http\:\/\/(.+@)?(.+.)?01iki0sx\.15311223344\.com
^http\:\/\/(.+@)?(.+.)?02307\.net
...
...
^http\:\/\/(.+@)?(.+.)?zzzwcbpvsn\.centade\.com
====
I have had a look at the resultant files that get created and essentially (I dont have a copy to hand), it doesn't get past the "header"
EDIT
====
Resultant File Example Below
====
root@unfw01:/usr/local/etc/squid/acl # cat squidguard
.#
.# terms. if you do not accept them, please delete this file immediately.
.# please do not update this list more often than every hour.
.# available in the following address:
.# using this information indicates your agreement to be bound by these
.# generated at: 20170525175853 utc
.# copyright (c) 2017 - andre correa - malware patrol - malware block list
.# fp (a t) malwarepatrol.net
.# this information is provided as-is and under the terms and conditions
.# list for squidguard - urls
.# kn2su6fosz5fnhesg2hppmdddx3lym3y
root@unfw01:/usr/local/etc/squid/acl #
====
Malware Patrol provide a working example at the following location: http://www.malware.com.br/MalwarePatrolDownload.sh
Any help/advise is appreciated
Thanks
6
17.1 Production Series / Large amount of VLANs causes GUI hang
« Last post by ptha on May 25, 2017, 09:56:31 PM »I setup'ed 150 vlans total of 152 interfaces. This causes the GUI interface to stop responding.
When I put off the interface listing on the dashboard I can at least login, but still everything is super slowly responding...
I know it is a bit rough to say, but PFsense had the same thing going until they fixed it somewhat half a year ago. I would massively prefer Opnsense over PFsense so would it be possible to fix this matter?
I would supply gladly more details and such.
Cheers,
Peter
When I put off the interface listing on the dashboard I can at least login, but still everything is super slowly responding...
I know it is a bit rough to say, but PFsense had the same thing going until they fixed it somewhat half a year ago. I would massively prefer Opnsense over PFsense so would it be possible to fix this matter?
I would supply gladly more details and such.
Cheers,
Peter
7
General Discussion / 17.1 installation
« Last post by flanny16 on May 25, 2017, 09:47:23 PM »Hello forum,
Searched here on the forum and went through the wiki but did not find the answer to my questions, so bear with me.
So I have downloaded the OPNsense-17.1.4-OpenSSL-cdrom-i386.iso and burned it to CDROM, very straightforward.
I then proceed to boot it up and I then choose, "multi user" however, I am then not presented with the "installer", like in version 16.7 ? [confused]
It then proceeds and i get to a login, choose root and enter the "password" and get to the menu but where and how do I install opnsense to the local hard drive? Do I do it from shell?
Did something change in the installation process?
Searched here on the forum and went through the wiki but did not find the answer to my questions, so bear with me.
So I have downloaded the OPNsense-17.1.4-OpenSSL-cdrom-i386.iso and burned it to CDROM, very straightforward.
I then proceed to boot it up and I then choose, "multi user" however, I am then not presented with the "installer", like in version 16.7 ? [confused]
It then proceeds and i get to a login, choose root and enter the "password" and get to the menu but where and how do I install opnsense to the local hard drive? Do I do it from shell?
Did something change in the installation process?
8
16.7 Legacy Series / Unbound + DHCP + Subdomains
« Last post by nlaird80 on May 25, 2017, 08:58:07 PM »I cannot seem to determine if DHCP and Unbound can be setup to behave like I would prefer.
I have the OPN system on the domain arl.lab.xyz with hostname opnsense.
I have the LAN DHCP server setup to provide the domain lan.arl.lab.xyz
I have another interface called DEV setup to provide the domain dev.arl.lab.xyz
Both are different interfaces to different networks with different subnets naturally.
When I query DNS I can ask for opnsense.arl.lab.xyz no problem.
I have a client (client1) on the lan interface, so it's DHCP lease says it's client1.lan.arl.lab.xyz HOWEVER when I query DNS, this is invalid. It appears to be setting them as client1.arl.lab.xyz and ignoring the subdomain used in the DHCP server.
Is this a bug in the DHCP server setting values in unbound? All leases on all interfaces just get assigned to the domain of the system itself.
I have the OPN system on the domain arl.lab.xyz with hostname opnsense.
I have the LAN DHCP server setup to provide the domain lan.arl.lab.xyz
I have another interface called DEV setup to provide the domain dev.arl.lab.xyz
Both are different interfaces to different networks with different subnets naturally.
When I query DNS I can ask for opnsense.arl.lab.xyz no problem.
I have a client (client1) on the lan interface, so it's DHCP lease says it's client1.lan.arl.lab.xyz HOWEVER when I query DNS, this is invalid. It appears to be setting them as client1.arl.lab.xyz and ignoring the subdomain used in the DHCP server.
Is this a bug in the DHCP server setting values in unbound? All leases on all interfaces just get assigned to the domain of the system itself.
9
17.1 Production Series / Re: SIP please help
« Last post by liberomic on May 25, 2017, 08:27:28 PM »Hi All,
I have the same issue after upgrade 17.1.7 with 3CX PBX, in pflog all session are accepted.
The registration to sip provider working fine but the calls will be blocked.
I have reinstalled my old firewall at a moment......
Regards,
Liberomic
I have the same issue after upgrade 17.1.7 with 3CX PBX, in pflog all session are accepted.
The registration to sip provider working fine but the calls will be blocked.
I have reinstalled my old firewall at a moment......
Regards,
Liberomic
10
Spanish - Español / Instalacion OPNSense
« Last post by raul.baca on May 25, 2017, 06:22:40 PM »Estimados Compañeros,
Quisiera pedirles ayuda con algo con el OPNSense ya que eh descargado la versión actual no puedo instalarla en mi HD ya que tan solo me manda de frente al Booteo de CD alguien que aya podido instalarlo correctamente, quedo atento a sus comentarios. gracias.
Quisiera pedirles ayuda con algo con el OPNSense ya que eh descargado la versión actual no puedo instalarla en mi HD ya que tan solo me manda de frente al Booteo de CD alguien que aya podido instalarlo correctamente, quedo atento a sus comentarios. gracias.