The added benefit here is I can just browse the daily Configs from my laptop rather than having to log into consoles.īetween my raspi4 and the OPNsense box, I have everything I need running. I've also set up rsync on all of my devices to send system config and backups direct to OneDrive. It then fails back as soon as the primary comes back. If my primary link goes down, all I need to do it turn on my mobile hotspot and it connects and provide internet to my whole house. I also have the WLAN interface set up as a client which is then set as a gateway and put into a gateway group. One to the public IP and the other to the lan IP. I do this by publishing two public servers. Haproxy with letsencrypt for all of my local and public services with ACL's for security so local services are only available locally. All sensei data and all sysylog is pushed to this raspi for reporting.Įlasticsearch for sensei and for pushing from telegraf for further reporting via pfelk on another box. Telegraf pushing to my raspi 4 with home assistant running TIG. All DNS from my network out is encrypted via doh, dot or dnscrypt. It does the following:Īdguard home as primary DNS that forwards to unbound for reverse DNS so it can find dhcp registered devices. I have OPNsense running on a hp t730 thin client. I run it in an LXC container on another server, so you'll need a place to run it that can store the Influx data. InfluxDB itself was by far the hardest to setup. That helps you get it installed, after that, you need to setup influxdb, which isn't any different in OPNsense as anything else so you can use the ntopng help You just have to check the 'community edition' box in the configuration page in OPNsense (where you configure the interfaces ntopng monitors) and it will work just like the one bundled with OPNsense just one minor version newer. ntopng produces OPNsense packages specifically for this purpose. I used the ntopng enterprise release, since it's a slightly newer version than ntopng's open source release which OPNsense bundled. I expect to parse logs you'll want something like Graylog. I don't use Suricata, so no help with that one.
0 Comments
Leave a Reply. |