OPNsense गाइड

Is guide ka upyog karke OPNsense me Cybora ko native firewall aliases ke saath integrate karein. OPNsense me sabse clean native workflow ye hai ki Cybora ko IP-based URL Table alias ke roop me consume kiya jaye aur phir us alias ko firewall rules me use kiya jaye.

What OPNsense can do with a Cybora feed

  • OPNsense remote IP feeds ko URL Table alias me load kar sakta hai aur alias ko automatically updated rakhta hai.
  • Imported alias ko firewall rules me wahi use kiya ja sakta hai jahan aap normal host ya network alias use karte hain.
  • Ye workflow IP-based Cybora feeds ke liye best hai. Domain ya URL-based enforcement ke liye aam tor par extra DNS ya web-layer controls chahiye hote hain.

Before you start

  • Aisi OPNsense release use karein jo Firewall > Aliases aur URL Table aliases support karti ho.
  • Ensure karein ki firewall aapke Cybora feed URL ko HTTPS ke through reach kar sake.
  • Native OPNsense alias workflow ke liye IP-based Cybora feed use karein.
  • Remote feed plain text me hona chahiye, ek IP address, subnet ya range per line.

Create the alias

  1. Firewall > Aliases par jayen aur ek naya alias add karein.
  2. Alias ka clear naam aur description dein.
  3. Alias type ko URL Tables (IPs) par set karein.
  4. Apna Cybora feed URL content field me paste karein.
  5. Refresh frequency ko apne Cybora plan ke jitna kareeb ho sake utna set karein. Feed ko plan se zyada frequently query na karein. Allowed interval ke andar sirf ek request permitted hai. Excessive polling ki wajah se feed block ho sakta hai.
  6. Alias save karein aur changes apply karein.

Apply the alias in policy

  1. Wahi firewall rule kholen jahan aap imported indicators ko block ya match karna chahte hain.
  2. Cybora alias ko source ya destination ke roop me use karein, apni policy design ke hisab se.
  3. Action ko block, reject ya kisi aur suitable option par set karein.
  4. Rule par logging enable karein taaki live traffic me matches confirm kiye ja sakein.
  5. Updated firewall configuration apply karein.

Validation

  1. Firewall > Diagnostics > Aliases par jaakar loaded alias contents dekhein.
  2. Confirm karein ki alias refresh ke baad Last updated badalta hai.
  3. Find references ya live firewall logs ka use karke verify karein ki alias intended rules me match ho raha hai.
  4. Known matching traffic ke saath test karein aur confirm karein ki rule expected behavior dikha raha hai.

Further reading

होम पर वापस जाएँ