Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
Web Proxy Filtering and Caching
(Moderator:
fabian
) »
Several Proxy Profiles possible
« previous
next »
Print
Pages: [
1
]
Author
Topic: Several Proxy Profiles possible (Read 2070 times)
philipp86720
Newbie
Posts: 5
Karma: 0
Several Proxy Profiles possible
«
on:
October 03, 2023, 09:06:12 am »
Hi. Coming from a Sophos UTM, I'm looking for the feature "proxy profiles". That means, that I would like to define several profiles for different computer groups. E.g.: Servers are allowed to access internet by transparent proxy without any limitations, but clients I need two profiles:
1. Transparent proxy for updating antivirus definitions
2. Non-Transparent proxy for websurfing (proxy defined in Firefox)
I don't want any other applications to "call home" or get updates from the web.
Any idea, how that can be done with opnsense?
Regards
«
Last Edit: October 03, 2023, 09:56:45 am by philipp86720
»
Logged
philipp86720
Newbie
Posts: 5
Karma: 0
Re: Several Proxy Profiles possible
«
Reply #1 on:
November 12, 2023, 11:27:09 pm »
Nobody?
Logged
liquiddragon
Newbie
Posts: 3
Karma: 0
Re: Several Proxy Profiles possible
«
Reply #2 on:
November 21, 2023, 11:11:11 pm »
I'm in much the same situation. We are migrating from Sophos UTM as I'm sick of the price increases and poor customer support for said price increases.
There are a number of things that the UTM could do that opnsense doesn't do as well, but over all I'm very happy with Opnsense. However not having multiple profiles for the proxy is a causing some issues.
We usually have Servers, Clients and Mobile devices all on separate networks. The servers all have the required certificates for SSL inspection. The clients may or may not have the required certificates depending on the site, and the mobiles never have the required certificates. It would be nice to do full inspection for the servers, and logging only for the other networks for reporting.
However we have had to resort to full SSL inspection for the servers, and just not process SSL at all for clients. Not ideal but its the only solution I could get to work.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
Web Proxy Filtering and Caching
(Moderator:
fabian
) »
Several Proxy Profiles possible