"Recent posts
#21
General Discussion / Re: Device Monitor - a tool fo...
Last post by hacesoft - Today at 01:56:14 PMQuote from: Seimus on Today at 01:27:06 PMLooks interesting, and remembers me on NetalertX.
Few questions here:QuoteRequirements
1. OPNsense 24.x or newer
2. Working SMTP configuration (System → Settings → Notifications)
3. SSH access enabled (System → Settings → Administration → Secure Shell)
4. Root password
2. Working SMTP configuration (System → Settings → Notifications)
Would it be possible to have as well notifications via webhook e.g to support ntfy instances?
3. SSH access enabled (System → Settings → Administration → Secure Shell)
4. Root password
Does this work only with a Root account? Or does this work with any active admin account with proper permissions?
Regards,
S.
Good day, it definitely wouldn't be a problem to use a webhook to send data instead of email notifications. I have something similar planned at home, where I will be sending data to a protocol center that I have on my NAS in BSD format (RFC 3164). I have the ROOT account disabled on the firewall, and I have my own Admin account on which the plugin works nicely.
#22
25.7, 25.10 Series / Re: Wiregaurd no handshake
Last post by Seimus - Today at 01:35:44 PMThe only guide to follow should be the one in the docs. I did use it and its working.
Dont you have a backup of the config? Or a snapshot to revert to prior you wiped the config?
Do you have properly configured the Instances and Peers on OPN?
Do you have properly configured the key on OPN and the client (remote side)?
Do you have proper rules to allow Wireguard connection on the interfaces its reaching it (WAN most likely)?
If the remote client is reaching the WG instance e.g OPN, and has proper rules, the handshake may fall cause of wrong keys.
Regards,
S.
Dont you have a backup of the config? Or a snapshot to revert to prior you wiped the config?
Do you have properly configured the Instances and Peers on OPN?
Do you have properly configured the key on OPN and the client (remote side)?
Do you have proper rules to allow Wireguard connection on the interfaces its reaching it (WAN most likely)?
If the remote client is reaching the WG instance e.g OPN, and has proper rules, the handshake may fall cause of wrong keys.
Regards,
S.
#23
General Discussion / Re: Device Monitor - a tool fo...
Last post by Monviech (Cedrik) - Today at 01:29:13 PMHello,
there is a new hostdiscovery service on the OPNsense roadmap that uses a rust written daemon that captures arp and ndp messages via pcap to build a database of known devices.
https://github.com/opnsense/hostwatch
https://github.com/opnsense/core/pull/9354
So something comparable is a core feature soon and integrated into a few components like aliases and captive portal.
So as feedback, you could use the existing sqlite database of the hostwatch service since its in core anyway if you want your own GUI around it.
there is a new hostdiscovery service on the OPNsense roadmap that uses a rust written daemon that captures arp and ndp messages via pcap to build a database of known devices.
https://github.com/opnsense/hostwatch
https://github.com/opnsense/core/pull/9354
So something comparable is a core feature soon and integrated into a few components like aliases and captive portal.
So as feedback, you could use the existing sqlite database of the hostwatch service since its in core anyway if you want your own GUI around it.
#24
General Discussion / Re: Device Monitor - a tool fo...
Last post by Seimus - Today at 01:27:06 PMLooks interesting, and remembers me on NetalertX.
Few questions here:
2. Working SMTP configuration (System → Settings → Notifications)
Would it be possible to have as well notifications via webhook e.g to support ntfy instances?
3. SSH access enabled (System → Settings → Administration → Secure Shell)
4. Root password
Does this work only with a Root account? Or does this work with any active admin account with proper permissions?
Regards,
S.
Few questions here:
QuoteRequirements
1. OPNsense 24.x or newer
2. Working SMTP configuration (System → Settings → Notifications)
3. SSH access enabled (System → Settings → Administration → Secure Shell)
4. Root password
2. Working SMTP configuration (System → Settings → Notifications)
Would it be possible to have as well notifications via webhook e.g to support ntfy instances?
3. SSH access enabled (System → Settings → Administration → Secure Shell)
4. Root password
Does this work only with a Root account? Or does this work with any active admin account with proper permissions?
Regards,
S.
#25
General Discussion / Device Monitor - a tool for au...
Last post by hacesoft - Today at 01:01:40 PMHello everyone! 👋
I've created my first OPNsense plugin:
https://github.com/hacesoft/opnsense-devicemonitor
And would like to share it with you. It's called Device Monitor - a tool for automatic network device monitoring and detection.
What the plugin does:
🔍 Automatic network device scanning (ARP + DNS)
📊 Online/offline status display
🔔 Email notifications for new device detection
🏷� Manufacturer identification using OUI database
📈 Dashboard with device overview
Technical details:
Python daemon with configurable scan interval
MVC architecture following OPNsense standards
REST API for control
Czech and English translations
The plugin is fully functional, but definitely not perfect. I would love to hear your feedback:
What could I improve?
What features would be useful?
Where did I make mistakes or violate best practices?
Any suggestions for improvements!
I'm open to constructive criticism and looking forward to your insights. Thanks for your time! 🙏
#26
Zenarmor (Sensei) / Re: CVE-2025-14847 vulnerabili...
Last post by sy - Today at 11:41:27 AMHi Hugo,
Zenarmor has stopped to support MongoDB. Please switch it to Elasticsearch or SQLite DB.
Zenarmor has stopped to support MongoDB. Please switch it to Elasticsearch or SQLite DB.
#27
Zenarmor (Sensei) / Re: Show WAN Interfaces Cannot...
Last post by sy - Today at 11:40:24 AMHi,
Thanks for reporting this. Yes, it seems there is a UI bug here. It will be fixed with the upcoming release.
Thanks for reporting this. Yes, it seems there is a UI bug here. It will be fixed with the upcoming release.
#28
Zenarmor (Sensei) / Re: Zenarmor Packet Engine Not...
Last post by sy - Today at 11:29:52 AMHi @GuruLee,
It seems you've resolved this by adjusting the tunable settings correctly. Are you still experiencing any issues?
It seems you've resolved this by adjusting the tunable settings correctly. Are you still experiencing any issues?
#29
Zenarmor (Sensei) / Re: Zenarmor doesn't show host...
Last post by sy - Today at 11:28:02 AMHi,
I think the issue has been resolved with the latest update. Do you still have an issue on this?
I think the issue has been resolved with the latest update. Do you still have an issue on this?
#30
General Discussion / Re: Clients use wrong IPv6 Gat...
Last post by Patrick M. Hausen - Today at 11:07:41 AMStart here:
SLAAC: https://www.rfc-editor.org/rfc/rfc4862
Multihoming: https://www.rfc-editor.org/rfc/rfc7157
SLAAC: https://www.rfc-editor.org/rfc/rfc4862
Multihoming: https://www.rfc-editor.org/rfc/rfc7157
