"Recent posts
#1
General Discussion / Re: Some sites think I live in...
Last post by OPNenthu - Today at 05:47:45 PMI don't know if this applies to you but if you used a VPN (assuming it set your exit node to e.g. Canada), then your browser may have cookies and DNS caches still hanging around and causing sites to misplace you in that region long after you've disconnected from the VPN. This used to happen to me sometimes when I used VPN apps on my client. It's probably a good idea to do VPN browsing in a private or incognito browser window.
CDNs might also cause some troubles, I guess.
CDNs might also cause some troubles, I guess.
#2
General Discussion / Re: Some sites think I live in...
Last post by meyergru - Today at 05:06:47 PMYou cannot fix that on your end. It might be that your ISP inherited an IP netblock that once was located in Canada.
Different geolocation services may yield different results, so depending on which are used by the sites you visit, some may think you are in Canada and some may already know the correct location. You can check your WAN IP against some publicly available services like ipinfo.io (https://ipinfo.io/) or Maxmind (https://www.maxmind.com/en/geoip-demo). Note, however, that there are other services as well.
Probably, you can ask your ISP to ask those service suppliers to correct their data. The only other way of fixing it would be to use a VPN service that can put you in the USA when you select an appropriate exit node.
This has nothing to do with how OpnSense does the geolocation - it does not matter to external sites. BTW: You can choose between Maxmind (https://docs.opnsense.org/manual/how-tos/maxmind_geo_ip.html) and IPinfo (https://docs.opnsense.org/manual/how-tos/ipinfo_geo_ip.html) there, with IPinfo usually being more accurate - but it does not fix the problem on the sites you visit.
Different geolocation services may yield different results, so depending on which are used by the sites you visit, some may think you are in Canada and some may already know the correct location. You can check your WAN IP against some publicly available services like ipinfo.io (https://ipinfo.io/) or Maxmind (https://www.maxmind.com/en/geoip-demo). Note, however, that there are other services as well.
Probably, you can ask your ISP to ask those service suppliers to correct their data. The only other way of fixing it would be to use a VPN service that can put you in the USA when you select an appropriate exit node.
This has nothing to do with how OpnSense does the geolocation - it does not matter to external sites. BTW: You can choose between Maxmind (https://docs.opnsense.org/manual/how-tos/maxmind_geo_ip.html) and IPinfo (https://docs.opnsense.org/manual/how-tos/ipinfo_geo_ip.html) there, with IPinfo usually being more accurate - but it does not fix the problem on the sites you visit.
#3
General Discussion / Re: boost-libs: missing redis
Last post by franco - Today at 05:05:16 PMI'd just reinstall boost-libs from the GUI. The reference to redis is likely coincidental.
Cheers,
Franco
Cheers,
Franco
#4
General Discussion / Some sites think I live in Can...
Last post by coffeecup25 - Today at 04:51:10 PMSome sites I connect to started thinking I live in Toronto, Canada, rather than the Midwest USA where I have always lived. Not all. Some that appear to make an effort to geolocate me get my actual location right.
I think I am using Unbound / AdGuard Home for my DNS. Ipconfig on Windows shows my router as the DNS server. I followed instructions for Adguard Home that claim I am using Unbound for DNS.
This Canada thing is an annoyance. Is there any way to fix it? I suppose I could write down a list of external DNS servers on my KEA DNS page. But, after a debate a few months ago, I like things this way now.
I think I am using Unbound / AdGuard Home for my DNS. Ipconfig on Windows shows my router as the DNS server. I followed instructions for Adguard Home that claim I am using Unbound for DNS.
This Canada thing is an annoyance. Is there any way to fix it? I suppose I could write down a list of external DNS servers on my KEA DNS page. But, after a debate a few months ago, I like things this way now.
#5
General Discussion / Re: Is public-dns.info still a...
Last post by meyergru - Today at 04:47:13 PMNot a single IPv6 in that list (as the comment already suggests) - but worse, the IPv4 ones used by Mozilla are not in that list, either:
The RPZ-type lists could be used in Unbound, but there is no automation in OpnSense.
Code Select
Name: mozilla.cloudflare-dns.com
Address: 172.64.41.4
Name: mozilla.cloudflare-dns.com
Address: 162.159.61.4
Name: mozilla.cloudflare-dns.com
Address: 2a06:98c1:52::4
Name: mozilla.cloudflare-dns.com
Address: 2803:f800:53::4
The RPZ-type lists could be used in Unbound, but there is no automation in OpnSense.
#6
General Discussion / Re: Is public-dns.info still a...
Last post by Patrick M. Hausen - Today at 04:38:10 PMQuote from: keeka on Today at 04:36:45 PMI went looking for an IP list rather than a domain blocklist
https://github.com/hagezi/dns-blocklists?tab=readme-ov-file#bypass_ips
#7
General Discussion / Re: Is public-dns.info still a...
Last post by keeka - Today at 04:36:45 PMQuote from: meyergru on Today at 04:09:48 PMAnd that may also be circumvented by using the IP on itself, since AG Home is never asked.
My thoughts also. When I attempted to block DoH, I went looking for an IP list rather than a domain blocklist, assuming at least some clients will attempt to reach a DoH server directly without first resolving a hostname.
#8
General Discussion / Re: OPNSense with apcupsd plug...
Last post by rabinnh - Today at 04:35:56 PMSorry, I showed the command after I had edited it. Prior to editing it had "-h".
#9
25.7, 25.10 Series / Re: Firewall: Log Files: Live ...
Last post by Kayakero - Today at 04:34:47 PMQuote from: pfry on Today at 02:48:57 PMQuote from: Kayakero on Today at 12:25:41 PMTime is truncated and Source and Destination have a lot of wasted space. That's at least how I see it.
Source and Destination have extra whitespace for "Lookup hostnames".
Heh: Perhaps a good application for a template?
Hostnames are two different new columns when you check it.
templates are just for the filters I think. There's no template for shown columns nor you can add or remove dynamically at least from what I've tested.
I'm and an old school guy from the times of "static html" .. where the browser adjusted the windows real state space in a smart way when rendering or adjusting size.
Now everything of course is dynamic, and refreshing live and columns moving and adjusting width each refresh won't be a good user experience.
So I suppose you have to make a trade off. I'm not complaining.
#10
General Discussion / Re: Help me to navigate to PPP...
Last post by franco - Today at 04:33:48 PMYes it was fixed more than half a year ago.
Cheers,
Franco
Cheers,
Franco
