plugins
plugins copied to clipboard
opnsense
net/sslh: Initial plugin version
This is to address the discussion about a plugin for sslh and resolves https://github.com/opnsense/plugins/issues/1630. This is such a plugin.
- Includes setting listen addresses, and protocol targets.
- Includes some other advanced settings
- Service start/stop/restart control
Thanks all for the review and comments! I resolved the comments that were straight forward and changes were made. I left the others open which I thought there might be more to say.
FYI, I'm planning on revisiting this soon, and re-working parts to address the topics brought up.
@agh1467 if you ping again I will merge, up to you if you want to change something now or merge first
Super interested 3rd party here who runs OPNSense & REALLY wants this feature. What is the state of this? If I'm reading/understanding this correctly, this change was approved but is not in the current build & is awaiting minor comments?
As an (overly) excited 3rd party, having this capability in OPNSense would be huge and I'm super thankful that it seems to be so close! I'm just making sure it's not lost just before the finish line!
I know I'm a few days late to the party, but regarding the removal of transparent mode: The official docs have a section for FreeBSD here, so it's not entirely impossible. Unfortunately it involves ipfw instead of pf. Maybe it can be added on top of pf or adapted.
@haarp Thanks for citing that. I'll have to see if there is an equivalent functionality, and translate it accordingly. It could be added back in then.
Any news on the transparent option? It's necessary for things like fail2ban to work properly to be able to resolve the remote IP
