Tagging traffic in OPNsense based on policy actions?

[jlficken]

Is this possible as it's something I used a lot in Untangle so that I could send say BitTorrent traffic out over a VPN without having to know the clients IP beforehand?

I'd tag the traffic and then Tunnel VPN would look for that tag and send the traffic out over an established tunnel.

[sy]

Hi,

Zenarmor does not route specific traffic to designated destinations. Have you consulted this with OPNsense topics?

[Seimus]

ZA is a NGFW/IPS/IDS, its function is to inspect and understand traffic and/or patterns. Routing as such is done on OPNsense.

what do you mean by tagging? How to you TAG the traffic? Where do you TAG it?

Regards,
S.

[jlficken]

ZA is a NGFW/IPS/IDS, its function is to inspect and understand traffic and/or patterns. Routing as such is done on OPNsense.

what do you mean by tagging? How to you TAG the traffic? Where do you TAG it?

Regards,
S.

In Untangle it's under the Events application that you can tag hosts when the traffic matches a specific criteria:



Then you go over to the Tunnel VPN application and create a rule to route that traffic over a specific tunnel (or any available tunnel) based off of the tag that was assigned in the above step.


You can route/block traffic in OPNsense using tags as well as I use that for the WireGuard Killswitch where a the rule that tells the traffic to go over the WireGuard tunnel (based on IP) sets a local tag of NO_WAN_EGRESS and then the KillSwitch rule checks for that tag and blocks the traffic if the Destination is the WAN rather than a tunnel.

I just don't see a way to have something like Zenarmor set a tag so that I can do something like Untangle does.