Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
med-mastodon.com is one of the many independent Mastodon servers you can use to participate in the fediverse.
Medical community on Mastodon

Administered by:

Server stats:

416
active users

med-mastodon.com: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.7

#opnsense

4 posts4 participants0 posts today
Public
Danie van der Merwe

6 OPNsense plugins that make a home network a joy to use

“When you finally get tired of your ISP router, one of the most-recommended replacements is making your own with a custom OPNsense firewall. This puts the power back in your hands, limits what your ISP can do to your connection, and gives you plenty ...continues

See gadgeteer.co.za/6-opnsense-plu

Close-up of network devices and cables, showcasing a gaming console, HDMI ports, and lit indicators on a patch panel.
GadgeteerZA · 6 OPNsense plugins that make a home network a joy to use“When you finally get tired of your ISP router, one of the most-recommended replacements is making your own with a custom OPNsense firewall. This puts the
#networking#OPNsense#security
Public
Teapot Ben

Looking for advice from #opnsense users - I'm looking to make the jump from openWRT, and eyeing up hardware.

A Trigkey g5 has caught my eye, an Intel n100 mini PC with two 2.5gb Intel i225-V NICs (rev 3 I believe from comments)

Already got a managed switch to hook it into.

Don't suppose anyone has already tested this model with OPNsense, or has any good advice about running it on similar mini PC hardware? Thanks

Public
Ariel (now with DNS!)

Took a while but I've discovered what I want/need for IPv6 dynamic iBGP peering with Cilium just isn't possible without hacking around OPNsense a bit.

Well, at least I *know* now it's not doable. Tweaking settings semi-blindly and poking logs wasn't exactly fulfilling.

As is par for the course I've found the GitHub issue for it closed by a stalebot.

#IPv6#BGP#Networking
Replied to Ariel (now with DNS!)
Public
Kristof

@arichtman If you've put it in aliasses for the WAN connection, the private networks shouldn't matter .. you should never receive traffic from private networks on your wan port :)

Happy testing! I've been using #opnsense aliasses for certain routing decisions as well. I've set up a script to resolve domain names > dump the IP's in a csv > read them and route accordingly (over VPN). Soo much fun to have with that little box.

Continued thread
Public *
D_70WN 🌈 🏳️‍⚧️

The hardware was refurbished, including a quick analysis of the equipment. I quickly realized that modern and up-to-date network firewall firmware could be installed on both devices without much effort and high costs. Since #BSDRP , #OPNSense and #pfSense no longer support x86 (i586/i686) architectures, the choice fell on the current #OpenWrt and #DDWRT versions for x86 (i586/i686) architectures. 2/3

#Cybersecurity#OTSecurity#ICS
Public *
John Federico ⌘

My aging #Ubiquiti Edgerouter-X is failing. So, I spent 3 hours yesterday trying to set up a new #Unifi Gateway Max without success. I'm returning it.

I decided to just get a #miniPC with dual 2.5Gbe and install #Opnsense on it. (This guy: a.co/d/431PbIV)

I'm hoping it arrives early because I'm not sure the Edgerouter will last until next month. I've also never used Opnsense, so this will be another grand experiment.

Maybe I'll install it in a VM on Proxmox for now so I can FAFO.

a.coAmazon.com: AOOSTAR Intel Twin Lake N150(Upgraded N100) Mini PC, Mini Desktop Computer with LPDDR5 12GB RAM 512GB M.2 2242 SSD, Mini Computers 4K Triple Display/Dual 2.5G LAN/WiFi5/BT5 for Office/Business : ElectronicsAmazon.com: AOOSTAR Intel Twin Lake N150(Upgraded N100) Mini PC, Mini Desktop Computer with LPDDR5 12GB RAM 512GB M.2 2242 SSD, Mini Computers 4K Triple Display/Dual 2.5G LAN/WiFi5/BT5 for Office/Business : Electronics
Public *
Alexander Dunkel

#OPNsense users, it is time to migrate your legacy #IPSEC VPN tunnels to the new connection setup. The Legacy IPSEC feature will be deprecated in 26.1.

I have updated my IPSEC post [1] with the new connection settings. The migration was not straightforward and required some changes, but it is not complicated either.

A little gem here is the #CIDR subnet mask notation used for Policy Based Routing, which allows multiple subnets (#VLANs) on both sides to be automatically routed, without the need for ongoing changes to tunnel settings.

[1]: du.nkel.dev/blog/2021-11-19_pf

du.nkel.devIPSEC between OPNsense and pfSense - du.nkel.devA personal code notes blog
Public
Ben
So, last night, my OPNsense router just stopped routing anything to WAN, I think. Even SSHing into it and pinging 8.8.8.8 didn't work. I rebooted the router and it came up fine and brought connectivity back up, but Spectrum gave me a new IPv6 Prefix and a new IPv4 WAN address.

Not the end of the world, I have ddclient set up on my server, but I still had to go through and manually update my IPv6 prefix in a few places (IPv6 DNS in router advertisements since I have two Pi Holes as well as a Wireguard instance with its own IPv6 /64 network).

I never had any issues on Google Fiber but since moving it's one after another :(

#internet #OPNsense #Spectrum #HomeNetworking
Public
EaterOfSnacks

My #OpnSense router upgrade tanked today. However I managed to download an image with my phone as a hotspot and began the reinstall process ... Only to find that the installer was happy to use the existing settings off the hard drive! I'd like to thank whichever genius came up with that idea. It saved hours of fiddling around and Just Worked(TM) #BSD

ExploreLive feeds
About