"Recent posts
#91
German - Deutsch / Re: Verständnisfrage zu Portfo...
Last post by meyergru - December 01, 2025, 04:08:12 PMMit einem vServer wird das wohl eher schwierig... Virtualisierung per Proxmox auf einem Virtualisierungshost? Ich meinte schon einen echten Root-Server.
#92
German - Deutsch / Re: Verständnisfrage zu Portfo...
Last post by osmom - December 01, 2025, 04:03:52 PMHallo Awado,
der letzte Vorschlag von Mergu mit einem neuen vServer ist wohl besser als die vorhandene Installation auszudünnen. Vor allem kannst du zuerst mit dem Billgsten vServer bei Hetzner starten und dann nach Bedarf upgraden.
der letzte Vorschlag von Mergu mit einem neuen vServer ist wohl besser als die vorhandene Installation auszudünnen. Vor allem kannst du zuerst mit dem Billgsten vServer bei Hetzner starten und dann nach Bedarf upgraden.
#93
Virtual private networks / Re: OPNsense as OpenVPN Server...
Last post by ita.tc - December 01, 2025, 03:56:52 PMHi viragomann,
thanks for your response. I don't know how I missed including that information in my original post. I can't even get a connection, it always ends in a time out. Sadly I locked myself out of the device (as mentioned) and the current client log I have only reflects that complete unavailability.
Should this setup even work in theory? I suspect some kind of NAT issue but I'm absolutely not sure.
thanks for your response. I don't know how I missed including that information in my original post. I can't even get a connection, it always ends in a time out. Sadly I locked myself out of the device (as mentioned) and the current client log I have only reflects that complete unavailability.
Should this setup even work in theory? I suspect some kind of NAT issue but I'm absolutely not sure.
#94
General Discussion / Re: Problems with NRPE
Last post by Patrick M. Hausen - December 01, 2025, 03:56:44 PMIn the OP no command named "bfd_state" is defined in the configuration. That's why "check_users" works but "bfd_state" doesn't.
#95
General Discussion / Re: Problems with NRPE
Last post by michaelsage - December 01, 2025, 03:52:28 PMDid you manage to fix this? In the lastest version of OPNSense I am having the same issue with one plugin (check_procs) it executes fine locally, but when I try and run it over NRPE from my Nagios server, I get unable to read output.
Thanks
Thanks
#96
German - Deutsch / Re: Frage bzgl. Unmanaged Swit...
Last post by osmom - December 01, 2025, 03:42:11 PMAus deiner Beschreibung ist mir der Sinn des 3 Switches nicht ganz klar. Du kannst doch über den neuen Kabelkanal 2 Leitungen zwischen Opensense und deinem bestehenden Switch legen.
Da dein Powerline laut deiner Beschreibung nach schwach ist, besprich doch mit deinem Hauselektriker ob der Einbau eines Pasekopplers nicht die bessere Investition wäre. z.B. https://shop.allnet.de/ALLNET-ALL16881-Powerline-Phasenkoppler-Signalbruecke-3-Pha/112411
Da dein Powerline laut deiner Beschreibung nach schwach ist, besprich doch mit deinem Hauselektriker ob der Einbau eines Pasekopplers nicht die bessere Investition wäre. z.B. https://shop.allnet.de/ALLNET-ALL16881-Powerline-Phasenkoppler-Signalbruecke-3-Pha/112411
#97
25.7, 25.10 Series / Re: "The release type "opnsens...
Last post by Maurice - December 01, 2025, 03:35:57 PMQuote from: LGDL on November 30, 2025, 07:54:37 PMJust not sure why this update would not be included in the installer.
The installer images get updated twice a year and don't contain any changes made since the last major release. That's a little different to other software where you can typically download an installer for the latest version.
If you need to install the latest version directly, you'd have to build your own image (or use opnsense-bootstrap).
Cheers
Maurice
#98
25.7, 25.10 Series / Re: "Danger Unexpected error, ...
Last post by Jose - December 01, 2025, 03:32:07 PMHi, this was also posted here as well, I've been monitoring my firewall since however all seems to be working fine so far.
Regards
Regards
#99
General Discussion / Re: Is public-dns.info still a...
Last post by Patrick M. Hausen - December 01, 2025, 03:26:07 PMQuote from: meyergru on December 01, 2025, 03:06:35 PMSince not all names are contained in the list without wildcards, it does not even work when I use that and set Mozilla to use DoH, because "mozilla.cloudflare-dns.com" ist not contained in the list and does not resolve to the same IPs as cloudflare-dns.com. Thus, it is not blocked.
Hagezi's list I linked to contains e.g. "cloudflare-dns.com^" which at least in AdGuard Home means "cloudflare-dns.com" and any subdomain thereof. So mozilla.cloudflare-dns.com is covered.
#100
General Discussion / Re: referer protection
Last post by Maurice - December 01, 2025, 03:14:08 PMQuote from: Zugschlus on December 01, 2025, 10:48:04 AMSome of the older Forum Threads suggest that I should enter the name of the wiki as another alternate hostname in OPNsense. That CAN'T be correct advice, can it?
It actually is correct advice. The Alternate Hostnames are used for two separate features: DNS rebinding checks and HTTP_REFERER checks (as indicated in the UI).
By entering the hostnames of OPNsense itself, DNS rebinding checks pass.
But for HTTP_REFERER checks to pass, you'd also have to enter the hostnames of websites which link to OPNsense, like your wiki.
Would it make sense to have separate fields for DNS rebinding hostnames and HTTP_REFERER hostnames? Maybe.
Cheers
Maurice
