Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
Seriously considering migrating from pfsense to open sense but need some info.
« previous
next »
Print
Pages: [
1
]
Author
Topic: Seriously considering migrating from pfsense to open sense but need some info. (Read 2749 times)
relink2013
Newbie
Posts: 4
Karma: 0
Seriously considering migrating from pfsense to open sense but need some info.
«
on:
April 07, 2019, 01:49:00 am »
So the pfsense box I’ve been using for the last several years is starting to fail, I suspect a hardware issue. So I’m going to be building a new firewall soon and I’m giving serious thought to opensense.
There are a few must have things in order for me to be able to switch though, and I’m sure opensense can do them all, I just don’t know how.
1. DNS over TLS, I have been using dns over tls since it launched with cloud flares 1.1.1.1 service. But I can’t find any tutorials on setting it up with open sense.
2. I need to be able to import my Suricata settings, I have spent a LONG time tuning Suricata to remove false positives and I really do not want to start over again.
3. Sending only specific IPs through a VPN. I have PIA setup as a gateway on my pfsense box, and all I need to do is create a simple LAN rule to send specific Clients through the VPN tunnel instead of the WAN. I actually don’t remember how I did this, and I cannot find a tut on how to do it in opensense.
4. PFblockerNG, Or alternative that can block ads, and block entire counties.
I’m honestly really hopeful that I can make the switch, but these things are must haves. Hope you guys can help out, your community seems to be much more active and friendly so fingers crossed. 😁
«
Last Edit: April 07, 2019, 03:27:28 am by relink2013
»
Logged
fabian
Hero Member
Posts: 2769
Karma: 200
OPNsense Contributor (Language, VPN, Proxy, etc.)
Re: Seriously considering migrating from pfsense to open sense but need some info.
«
Reply #1 on:
April 07, 2019, 07:39:35 am »
1)
https://forum.opnsense.org/index.php?topic=7811.0
4) Should be available as a Firewall alias type
Logged
franco
Administrator
Hero Member
Posts: 17661
Karma: 1611
Re: Seriously considering migrating from pfsense to open sense but need some info.
«
Reply #2 on:
April 07, 2019, 12:29:20 pm »
2) Suricata integration was rewritten from scratch. Sorry.
3) Assign your OpenVPN to an interface (OPTx) and use that interface in the firewall rules with this particular gateway set. Works the same way on both projects.
Cheers,
Franco
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: Seriously considering migrating from pfsense to open sense but need some info.
«
Reply #3 on:
April 07, 2019, 03:34:53 pm »
Dnscrypt-proxy plugin can encrypt DNS and has DNSBL also included
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
Seriously considering migrating from pfsense to open sense but need some info.