Die Funktionen der Open Source Firewall OPNsense können durch zahlreiche Plugins erweitert werden.
Die folgende Tabelle zeigt die verfügbaren Plugins mit den zugehörigen Versionsnummern (Stand OPNsense Version 25.1.1):
| Plugin | Version | Beschreibung |
|---|---|---|
| os-acme-client | 4.11 | ACME Client |
| os-apcupsd | 1.2_3 | APCUPSD - APC UPS daemon |
| os-beats | 1 | Send logs, network, metrics and heartbeat to Elasticsearch |
| os-bind | 1.34_2 | BIND domain name service |
| os-c-icap | 1.9 | c-icap connects the web proxy with a virus scanner |
| os-cache | 1.0_1 | Webserver cache |
| os-caddy | 2.0.4_2 | Modern Reverse Proxy with Automatic HTTPS, Dynamic DNS and Layer4 Routing |
| os-chrony | 1.5_3 | Chrony time synchronisation |
| os-clamav | 1.8.1 | Antivirus engine for detecting malicious threats |
| os-collectd | 1.4_1 | Collect system and application performance metrics periodically |
| os-cpu-microcode-amd | 1.1 | AMD CPU microcode updates |
| os-cpu-microcode-intel | 1.1 | Intel CPU microcode updates |
| os-crowdsec | 1.0.12 | Lightweight and collaborative security engine |
| os-ddclient | 1.28 | Dynamic DNS client |
| os-debug | 1.7 | Debugging Tools |
| os-dec-hw | 1.1_3 | Deciso hardware specific information |
| os-dmidecode | 1.2 | Display hardware information on the dashboard |
| os-dnscrypt-proxy | 1.16 | Flexible DNS proxy supporting DNSCrypt and DoH |
| os-etpro-telemetry | 1.8 | ET Pro Telemetry Edition |
| os-freeradius | 1.9.28_1 | RADIUS Authentication, Authorization and Accounting Server |
| os-frr | 1.49 | The FRRouting Protocol Suite |
| os-ftp-proxy | 1.0_4 | Control ftp-proxy processes |
| os-gdrive-backup | 1 | Backup configurations using Google Drive |
| os-git-backup | 1.1_1 | Track config changes using git |
| os-google-cloud-sdk | 1.0_1 | Google Cloud SDK |
| os-grid_example | 1.1 | A sample framework application |
| os-haproxy | 4.6_1 | Reliable, high performance TCP/HTTP load balancer |
| os-helloworld | 1.4_1 | A sample framework application |
| os-hw-probe | 1.0_1 | Collect hardware diagnostics |
| os-igmp-proxy | 1.5_6 | IGMP-Proxy Service |
| os-intrusion-detection-content-et-open | 1.0.2_2 | IDS Proofpoint full ET open ruleset complementary subset for ET Pro Telemetry edition |
| os-intrusion-detection-content-et-pro | 1.0.2_1 | IDS Proofpoint ET Pro ruleset (needs a valid subscription) |
| os-intrusion-detection-content-ptopen | 1 | IDS Positive Technologies ESC ruleset |
| os-intrusion-detection-content-snort-vrt | 1.2 | IDS Snort VRT ruleset (needs registration or subscription) |
| os-iperf | 1.0_2 | Connection speed tester |
| os-lcdproc-sdeclcd | 1.1_1 | LCDProc for SDEC LCD devices |
| os-lldpd | 1.2 | LLDP allows you to know exactly on which port is a server |
| os-maltrail | 1.10_1 | Malicious traffic detection system |
| os-mdns-repeater | 1.2 | Proxy multicast DNS between networks |
| os-munin-node | 1.1_1 | Munin monitoring agent |
| os-ndp-proxy-go | 1.1 | IPv6 Neighbor Discovery Protocol (NDP) Proxy |
| os-ndproxy | 1.1 | Neighbor Discovery Proxy |
| os-net-snmp | 1.6 | Net-SNMP is a daemon for the SNMP protocol |
| os-netbird | 1.1 | Peer-to-peer VPN that seamlessly connects your devices |
| os-netdata | 1.2_1 | Real-time performance monitoring |
| os-nextcloud-backup | 1.0_1 | Track config changes using NextCloud |
| os-nginx | 1.35_4 | Nginx HTTP server and reverse proxy |
| os-node_exporter | 1.2 | Prometheus exporter for machine metrics |
| os-nrpe | 1.1_1 | Execute nagios plugins |
| os-ntopng | 1.3 | Traffic Analysis and Flow Collection |
| os-nut | 1.9_1 | Network UPS Tools |
| os-openconnect | 1.4.6 | OpenConnect Client |
| os-openvpn-legacy | 1 | OpenVPN legacy support |
| os-OPNProxy | 1.0.5_4 | OPNsense proxy additions |
| os-postfix | 1.24 | SMTP mail relay |
| os-puppet-agent | 1.2 | Manage Puppet Agent |
| os-qemu-guest-agent | 1.3 | QEMU Guest Agent for OPNsense |
| os-radsecproxy | 1.1 | RADIUS proxy provides both RADIUS UDP and TCP/TLS (RadSec) transport |
| os-realtek-re | 1 | Realtek re(4) vendor driver |
| os-redis | 1.1_3 | Redis DB |
| os-relayd | 2.9_2 | Relayd Load Balancer |
| os-rfc2136 | 1.9_4 | RFC-2136 Support |
| os-rspamd | 1.13_2 | Protect your network from spam |
| os-sftp-backup | 1.1_2 | Backup configurations using SFTP |
| os-shadowsocks | 1.3 | Secure socks5 proxy |
| os-siproxd | 1.3_3 | Siproxd is a proxy daemon for the SIP protocol |
| os-smart | 2.4 | SMART tools |
| os-squid | 1.4 | Squid is a caching proxy for the web |
| os-sslh | 1.0_1 | sslh configuration front-end |
| os-strongswan-legacy | 1 | IPsec legacy support |
| os-stunnel | 1.0.6_1 | Stunnel TLS proxy |
| os-sunnyvalley | 1.5_1 | Vendor Repository for Zenarmor (Enterprise Security Modules - NGFW, SSE, SASE, f.k.a Sensei) |
| os-tailscale | 1.3 | VPN mesh securely connecting clients using WireGuard |
| os-tayga | 1.3 | Tayga NAT64 |
| os-telegraf | 1.12.13 | Agent for collecting metrics and data |
| os-tftp | 1 | TFTP server |
| os-theme-advanced | 1.1 | Theme based on AdvancedTomato GUI |
| os-theme-cicada | 1.4 | The cicada theme - dark grey onyx |
| os-theme-flexcolor | 1 | Theme with 3 different color schemes: black as default, light and dark-light |
| os-theme-rebellion | 1.9.3 | A suitably dark theme |
| os-theme-tukan | 1.3 | The tukan theme - blue/white |
| os-theme-vicuna | 1.5 | The vicuna theme - blue sapphire |
| os-tinc | 1.7_4 | Tinc VPN |
| os-tor | 1.1 | The Onion Router |
| os-turnserver | 1.1 | The coturn STUN/TURN Server |
| os-udpbroadcastrelay | 1.0_5 | Control udpbroadcastrelay processes |
| os-upnp | 1.8 | UPnP IGD & PCP/NAT-PMP Service |
| os-virtualbox | 1.0_1 | VirtualBox guest additions |
| os-vmware | 1.5_1 | VMware tools |
| os-vnstat | 1.3_1 | Network traffic monitor |
| os-wazuh-agent | 1.2_3 | Agent for the open source security platform Wazuh |
| os-wol | 2.5_3 | Wake on LAN Service |
| os-xen | 1.2_1 | Xen guest utilities |
| os-zabbix6-agent | 1.18 | Zabbix monitoring agent |
| os-zabbix6-proxy | 1.16 | Zabbix monitoring proxy |
| os-zabbix7-agent | 1.18 | Zabbix monitoring agent |
| os-zabbix7-proxy | 1.16 | Zabbix monitoring proxy |
| os-zabbix72-agent | 1.18 | Zabbix monitoring agent |
| os-zabbix72-proxy | 1.16 | Zabbix monitoring proxy |
| os-zabbix74-agent | 1.18 | Zabbix monitoring agent |
| os-zabbix74-proxy | 1.16 | Zabbix monitoring proxy |
| os-zerotier | 1.3.2_6 | Virtual Networks That Just Work |
 |
Autor: Werner Fischer Werner Fischer arbeitet im Product Management Team von Thomas-Krenn. Er evaluiert dabei neueste Technologien und teilt sein Wissen in Fachartikeln, bei Konferenzen und im Thomas-Krenn Wiki. Bereits 2005 - ein Jahr nach seinem Abschluss des Studiums zu Computer- und Mediensicherheit an der FH Hagenberg - heuerte er beim bayerischen Server-Hersteller an. Als Öffi-Fan nutzt er gerne Bus & Bahn und genießt seinen morgendlichen Spaziergang ins Büro.
|
wiki
