Posts tagged: opnsensehttps://waylonwalker.com/tags/opnsense/atom.xml2024-12-03T17:37:52ZAll posts with the tag "opnsense"Waylon Walkermarkata-go💠Using OPNsense with Tailscale · Tailscale Docshttps://waylonwalker.com/thought-439/2024-12-03T17:37:52Z2024-12-03T17:37:52Z!https://tailscale.com/kb/1097/install-opnsense<div class="embed-card embed-card-external">
<a href="https://tailscale.com/kb/1097/install-opnsense" class="embed-card-link" target="_blank" rel="noopener noreferrer">
<div class="embed-card-image">
<img class="glightbox" src="https://tailscale.com/files/images/og-image.png" alt="Using OPNsense with Tailscale · Tailscale Docs — Set up a Tailscale VPN on OPNsense. Get secure communication across your devices without the need for complex configuration." loading="lazy"/ data-glightbox="description: Using OPNsense with Tailscale · Tailscale Docs — Set up a Tailscale VPN on OPNsense. Get secure communication across your devices without the need for complex configuration.">
</div>
<div class="embed-card-content">
<div class="embed-card-title">Using OPNsense with Tailscale · Tailscale Docs</div>
<div class="embed-card-description">Set up a Tailscale VPN on OPNsense. Get secure communication across your devices without the need for complex configuration. </div>
<div class="embed-card-meta">Tailscale · tailscale.com</div>
</div>
</a>
</div>
<p>On reboot of my opnsense router it did not tailscale up. I’m not sure if a key expired or what happened. The fix was to first enable ssh, then ssh in and run tailscale up.</p>
<h2 id="enable-ssh">enable ssh <a href="#enable-ssh" class="heading-anchor">#</a></h2>
<p>In opnsense System > Settings > Administration > Secure Shell > Enable Secure Shell</p>
<h2 id="tailscale-up">tailscale up <a href="#tailscale-up" class="heading-anchor">#</a></h2>
<pre class="chroma"><code><span class="line"><span class="cl">ssh <opnsense ip>
</span></span><span class="line"><span class="cl"><span class="m">8</span> <span class="c1"># to select shell</span>
</span></span><span class="line"><span class="cl">tailscale up
</span></span></code></pre><p>Follow the link to log in.</p>
<h2 id="disable-ssh">disable ssh <a href="#disable-ssh" class="heading-anchor">#</a></h2>
<p>now uncheck secure shell to lock down the opnsense machine.</p>
<p>In opnsense System > Settings > Administration > Secure Shell > Enable Secure Shell</p>
<div class="admonition note">
<p class="admonition-title">Note</p>
<p>This post is a <a href="/thoughts/" class="wikilink" data-title="Thoughts" data-description="These are generally my thoughts on a web page or some sort of url, except a rare few don't have a link. These are dual published off of my..." data-date="2024-04-01" data-preview="These are generally my thoughts on a web page or some sort of url, except a rare few don't have a link. These are dual published off of my...">thought</a>. It’s a short note that I make
about someone else’s content online <a href="/tags/thoughts/" class="hashtag-tag" data-tag="thoughts" data-count="2" data-reading-time="3" data-reading-time-text="3 minutes">#thoughts</a></p>
</div>
Waylon Walkerhello@waylonwalker.comhttps://waylonwalker.com💠How to Configure DNS over TLS (DoT) Using Unbound DNS in OPNsensehttps://waylonwalker.com/thought-303/2024-06-09T15:40:11Z2024-06-09T15:40:11Z!https://homenetworkguy.com/how-to/configure-dns-over-tls-unbound-opnsense/<div class="embed-card embed-card-external">
<a href="https://homenetworkguy.com/how-to/configure-dns-over-tls-unbound-opnsense/" class="embed-card-link" target="_blank" rel="noopener noreferrer">
<div class="embed-card-image">
<img class="glightbox" src="https://homenetworkguy.com/images/how-to/configure-dns-over-tls-unbound-opnsense/padlock-428549_640.jpg" alt="How to Configure DNS over TLS (DoT) Using Unbound DNS in OPNsense — Going beyond the basics of home networking" loading="lazy"/ data-glightbox="description: How to Configure DNS over TLS (DoT) Using Unbound DNS in OPNsense — Going beyond the basics of home networking">
</div>
<div class="embed-card-content">
<div class="embed-card-title">How to Configure DNS over TLS (DoT) Using Unbound DNS in OPNsense</div>
<div class="embed-card-description">Going beyond the basics of home networking</div>
<div class="embed-card-meta">homenetworkguy.com</div>
</div>
</a>
</div>
<p>Setting up DNS overTLS in opnsense has made my dns just a bit more secure and reliable. I recently had an outage of half the internet within my house. This also hit some of my friends and not some. It did not hit my mobile network. What seems to have happened is a dns issue with my isp not resolving some domains. This setup corrected my issue and I was back online more securely.</p>
<div class="admonition note">
<p class="admonition-title">Note</p>
<p>I did try to setup the family resolver and found it was blocking some sites I am ok with. I decided to drop back to the vanilla resolver and let other services within opnsense control blocking where I can caontrol the whitelist myself.</p>
</div>
<div class="admonition note">
<p class="admonition-title">Note</p>
<p>This post is a <a href="/thoughts/" class="wikilink" data-title="Thoughts" data-description="These are generally my thoughts on a web page or some sort of url, except a rare few don't have a link. These are dual published off of my..." data-date="2024-04-01" data-preview="These are generally my thoughts on a web page or some sort of url, except a rare few don't have a link. These are dual published off of my...">thought</a>. It’s a short note that I make
about someone else’s content online <a href="/tags/thoughts/" class="hashtag-tag" data-tag="thoughts" data-count="2" data-reading-time="3" data-reading-time-text="3 minutes">#thoughts</a></p>
</div>
Waylon Walkerhello@waylonwalker.comhttps://waylonwalker.com