Netgate SG-1000 microFirewall

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - javcasta

Pages: [1] 2 3 4 5 ... 45
1
Español / Re: problema con script ejecutando en pfsense
« on: May 05, 2017, 08:41:48 am »
Hola

Pués a mi me funciona sin comillas:

Desde la shell, directamente:


Quote
root@pfSense:/tmp/nevera#set INPUTDOMAIN=pfsense.com
root@pfSense:/tmp/nevera#host -4 $INPUTDOMAIN | grep "$INPUTDOMAIN has address" | cut -d " " -f 4
208.123.73.69
root@pfSense:/tmp/nevera#

Salu2

2
General Questions / Re: Close connection via SSH / WebGUI?
« on: April 26, 2017, 07:31:59 pm »
Hi.

You yourself have answered the question in Excel form.

:)

Regards

3
General Questions / Re: Close connection via SSH / WebGUI?
« on: April 25, 2017, 05:09:41 am »
Hi

Kill the State?

What do you mean with that? Deactivating the WAN interface?

I think there is a gui way for do it:

Via GUI:      Diagnostics / States / Reset States > Mark " Reset the firewall state table" & click RESET Button (take carefull, because reset all firewall states conexions)


Regards

4
Feedback / Not telephone, only email
« on: April 11, 2017, 10:28:31 am »
Hi.

Warning to navigators

Somebody, from Texas ( +19727284XXX ) call me. I live at Spain, I do not know anybody (in person, not virtual) from Texas. I guess its posible somebody from this fórum/pfsense/netgate/etc... call me :)

I only answer via e-mail ;)

Regards

5
Español / Re: Bloquear el passwod de admin
« on: April 07, 2017, 05:21:41 am »
Hola.

Sudo por la consola

Creo que debes jugar con las ACL del portal Web.




Se me olvida a veces que pfSense es orientado a la usabilidad (web gui y administración "amable" o easy) :)
Deformación de querer saber hacer las cosas vía cli/shell ;)

Para hacer lo que comenta j.sejo1:

https://doc.pfsense.org/index.php/User_Manager

Por ejemplo.




Creo un usuario: pedrovpn, creo un grupo llamado openvpngroup, asigno al usuario pedrovpn a ese grupo y le doy permisos para WebCf - OpenVPN bla,bla,bla,...etc  y WebCfg - System certificate Manager...



Salu2

6
Español / Re: Bloquear el passwod de admin
« on: April 06, 2017, 03:02:06 pm »
Hola.

Buenas, estoy intentando bloquear el password de admin para el manejo de la pagina web, es decir que se puedan crear usuarios pero no se pueda modificar el password de administrador de esa manera podemos delegar seguramente la creacion de VPNs a alguien que no valla a dañar la configuración del sistema.

Yo probaría a instalar el paquete para pfSense: sudo.

Aquellas personas que trabajen con FreeBSD/Unix/Linux ya se podrán imaginar para que sirve :)

Quote
sudo allows delegation of privileges to users in the shell so commands can be run as other users, such as root.

En la doc online de pfSense amplian info:
https://doc.pfsense.org/index.php/Sudo_Package

Salu2

7
pfBlockerNG / User c0210021 needs help
« on: April 01, 2017, 06:50:21 am »
Hi.

The user c0210021 needs help

Quote
c0210021
Newbie
*
Posts: 0
Karma: +0/-0
[applaud] [smite]
View Profile  Email  Personal Message (Offline)
(No subject)
« Sent to: javcasta on: March 30, 2017, 11:42:09 pm » ReplyQuoteDelete
Hi javcasta,

I read you post.  I installed pfblockerng, download the php script, run and set porn category on.

The domain can block, however, the sub domain not block



https://goo.gl/photos/WTojCzY3XdLsCKET7

What's wrong of my setting?  Please teach me!

you can see the setting in the following links

https://goo.gl/photos/H29khTeCeoFEpkpm7

Best regards,

John

Porn category is like a ocean ... too much big the IPv4 or DNSBL lists (RAM and CPU consumer) :)

Regards

8
Español / notificar logins desde http y https
« on: March 29, 2017, 04:06:46 pm »
Hola.

¿Alguien sabria cómo hacer lo mismo pero para notificar comienzo de sesiones WEB GUI (notificar logins desde http y https )?

No es buena idea tocar el fichero /usr/local/www/index.php , pero pfSense notifica los inicios de sesión http/https a la shell, ¿Donde está el servicio o disparador o script que lo notifica a la consola?.

Bueno, ya me enteraré... ;)

Salu2

9
pfBlockerNG / Re: External DNSBL
« on: March 29, 2017, 03:50:48 pm »
Hi.

From : The pfSense book ( by pfSense Team ).

Quote
12.11 How Do I Block access to a Web Site?
...
12.11.1 Using DNS
If using the built in DNS Forwarder, an override can be entered under Services DNS Forwarder to resolve the website you want to block to an invalid IP (such as 127.0.0.1).

You can also use OpenDNS for content filtering, asdescribed in ../thirdparty/free-content-filtering-with-opendns

OK, OpenDNS... that is the alternative. :)

I am tired to stop/start/restart Unbound (DNS/Resolver), watchdog not work it in this scenario, or use only one WAN interface. Do not worry, all have solution ;)

I now dedicate pfBlockerNG to IPv4 list filtering only.

When the solution arrives (pfSense ¿2.4?) I will again activate the DNSBL at pfBlockerNG.

Regards.

====

Edited:

Maybe implement a pkg update for minors updates, and not wait for the next release?? Its only an idea ;)

11
pfBlockerNG / External DNSBL
« on: March 27, 2017, 07:47:03 am »
Hi.

While continuing the issue with Bind: https://redmine.pfsense.org/issues/7326

(I guess it will be solved in the next release of pfsense... ¿2.4?)

 "Ergo" issues with Unbound/DNS Resolver and DNSBL pfBlockerNG, I have decided to give a chance to try a external DNSBL of my LAN from pfblockerNG to one of these external DNSBLs:

Quote
* OpenDNS/Cisco Umbrella

https://www.opendns.com/

208.67.220.220
208.67.222.222

===
* Yandex DNS - https://dns.yandex.com/advanced/
   Basic   Safe   Family
IPv4   Preferred DNS   77.88.8.8   77.88.8.88   77.88.8.7
Alternate DNS   77.88.8.1   77.88.8.2   77.88.8.3
IPv6   Preferred DNS   2a02:6b8::feed:0ff   2a02:6b8::feed:bad   2a02:6b8::feed:a11
Alternate DNS   2a02:6b8:0:1::feed:0ff   2a02:6b8:0:1::feed:bad   2a02:6b8:0:1::feed:a11

Basic   Safe   Family
Quick and reliable DNS   ✔   ✔   ✔
Protection from infected sites      ✔   ✔
Protection from fraudulent sites      ✔   ✔
Protection from bots      ✔   ✔
Blocking adult sites         ✔
Blocking adult advertising         ✔
Yandex Family Search         ✔

===
* Comodo Secure DNS - https://www.comodo.com/secure-dns/

8.26.56.26 and 8.20.247.20.

===
* Alternate DNS - https://alternate-dns.com/setup.html#gr

DNS level ad-blocker
23.253.163.53


Which would be the most recommended? Are there any other alternatives to these external DNSBLs?

Regards.

12
HI.

One way or solution:

-Necessary condition: have configured and operative: System> advanced> notifications> e-mail.

Create (or modify if exists) the file  /etc/ssh/sshrc file with the content:

Code: [Select]
ipfrom=`echo $SSH_CONNECTION | cut -d " " -f 1`
ippf=`echo $SSH_CONNECTION | cut -d " " -f 3`
theport=`echo $SSH_CONNECTION | cut -d " " -f 4`
echo "User $USER just logged in from $ipfrom to $ippf at port $theport || date: `date` || who: `who`" | /usr/local/bin/php /usr/local/bin/mail.php -s"`hostname`"

And when you login to pfSense shell via ssh (interactive or not interactive shell) the system will notify with email:

Quote
User root just logged in from 10.2.0.10 to 10.2.0.254 at port 22 || date: Wed Mar 22 15:58:25 CET 2017 || who: root             ttyv0        Mar 14 13:23

root             pts/0        Mar 22 15:51 (10.2.0.10)

Regards.

Spanish ref: https://forum.pfsense.org/index.php?topic=112308.msg704419#msg704419

13
Hi
Great stuff and I am about to give it a go.

Why are you using /usr/games?  I understand that /tmp is transient but surely a better place would be /var/lib/BL for lists and /usr/local/BL for your code.

You could put everything under /usr/local/shallalist, so /usr/local/shallalist/{bin, tmp, lib} for code, downloads and working, lists.

Cheers
Jon

[edit]  Nice piece of work.  Just had a go and it works flawlessly.  Thank you.

hi Jon, thanks :)

The path /usr/games It's like a wink or a joke to the scripters and developers  ;D

This script is obsolete or deprecated from the moment the next version of pfBlockerNG is released.

We are waiting for pfBlockerNG 2.1.1_7 !!!!!!!!!!! (GREAT TOOL!!!)

Regards

14
Hola.

Encontré una solución a:

pfSense – Notificar via email Alerta de acceso a shell interactiva y NO interactiva.

Procedimiento:


-Condición necesaria: Tener configurado y operativo: System > Advanced > Notifications > E-Mail

Se crea (o se modifica si existiese) el fichero sshrc en /etc/ssh ( /etc/ssh/sshrc ) con el contenido:

Code: [Select]
ipfrom=`echo $SSH_CONNECTION | cut -d " " -f 1`
ippf=`echo $SSH_CONNECTION | cut -d " " -f 3`
theport=`echo $SSH_CONNECTION | cut -d " " -f 4`
echo "User $USER just logged in from $ipfrom to $ippf at port $theport || date: `date` || who: `who`" | /usr/local/bin/php /usr/local/bin/mail.php -s"`hostname`"

Y ya sea por un login vía SSH interactivo (con shell) o no interactivo (sin shell, como cuando se ejecuta un comando remoto vía ssh), el sistema nos enviará un e-mail con los datos:

Quote
User root just logged in from 10.2.0.10 to 10.2.0.254 at port 22 || date: Wed Mar 22 15:58:25 CET 2017 || who: root             ttyv0        Mar 14 13:23

root             pts/0        Mar 22 15:51 (10.2.0.10)

Salu2



15
Hi

Beautiful, thank you very much, karma for you  :-*

Pay attention to the next release of pfBlockerNG. It will bring many new features, including categories from the list of shallalist ... and many more things :). Great tool!!!

Regads.

Pages: [1] 2 3 4 5 ... 45