OPNsense Grundkonfiguration: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
| Zeile 42: | Zeile 42: | ||
==Firewall: Settings: Advanced== | ==Firewall: Settings: Advanced== | ||
Disable reply-to: (x) Disable reply-to on WAN rules | Disable reply-to: (x) Disable reply-to on WAN rules | ||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
==Firewall: NAT: Outbound== | ==Firewall: NAT: Outbound== | ||
| Zeile 62: | Zeile 52: | ||
|- | |- | ||
| WAN || DMZ net || * || ! 10.88.0.0/16 || * || Interface address || * || NO || | | WAN || DMZ net || * || ! 10.88.0.0/16 || * || Interface address || * || NO || | ||
| + | |} | ||
| + | ==Firewall: Rules== | ||
| + | {| class="wikitable" | ||
| + | ! Interface !! Protocol !! Source !! Port !! Destination !! Port !! Gateway !! Schedule !! Description | ||
| + | |- | ||
| + | | DMZ || IPv4 * || DMZ net || * || * || * || * || * || Automatically generated rule | ||
| + | |- | ||
| + | | SERVER || IPv4 * || SERVER net || * || * || * || * || * || Automatically generated rule | ||
| + | |- | ||
| + | | INSIDE || IPv4 * || INSIDE net || * || * || * || * || * || Automatically generated rule | ||
|} | |} | ||
Version vom 16. Februar 2026, 16:11 Uhr
System: Settings: Administration
(x) Enable HTTP Strict Transport Security TCP port 4444 (x) Disable web GUI redirect rule (x) Disable DNS Rebinding Checks (x) Enable Secure Shell (x) Permit root user login (x) Permit password login SSH PORT 2222
System: Gateway: Configuration
WANGW 192.168.4.254 Interface: WAN (x) Upstream Gateway
Interfaces: WAN
( ) Block bogon networks ( ) Block private networks IPv4 Configuration Type: Static IPv4 192.168.4.2xx/24 GW: WANGW
Interfaces: LAN
Description: INSIDE
Interfaces: Assignments
em2: DMZ em3: SERVER
Interfaces: SERVER
Enable (x) IPv4 Configuration Type: Static IPv4 IPv4 address: 10.0.10.1/24
Interfaces: DMZ
Enable (x) IPv4 Configuration Type: Static IPv4 IPv4 address: 10.88.2xx.1/24
Services: Dnsmasq DNS & DHCP
DHCP Range: 172.17.2xx.100 bis 172.17.2xx.200
Interfaces: INSIDE
Enable (x) IPv4 Configuration Type: Static IPv4 IPv4 address: 172.17.2xx.1/24
Firewall
Firewall: Settings: Advanced
Disable reply-to: (x) Disable reply-to on WAN rules
Firewall: NAT: Outbound
| Interface | Source | Source Port | Destination | Destination Port | NAT Address | NAT Port | Static Port | Description |
|---|---|---|---|---|---|---|---|---|
| WAN | INSIDE net | * | * | * | Interface address | * | NO | |
| WAN | SERVER net | * | * | * | Interface address | * | NO | |
| WAN | DMZ net | * | ! 10.88.0.0/16 | * | Interface address | * | NO |
Firewall: Rules
| Interface | Protocol | Source | Port | Destination | Port | Gateway | Schedule | Description |
|---|---|---|---|---|---|---|---|---|
| DMZ | IPv4 * | DMZ net | * | * | * | * | * | Automatically generated rule |
| SERVER | IPv4 * | SERVER net | * | * | * | * | * | Automatically generated rule |
| INSIDE | IPv4 * | INSIDE net | * | * | * | * | * | Automatically generated rule |