WireGuard Site-to-Site VPN: MikroTik hEX ↔ OPNsense 25.7 on AWS
This post upgrades the previous single-PC WireGuard client setup into a site-to-site VPN: Follow-up to: Architecture What changes vs “single […]
AWS, OPNsense, WireGuard
OPNsense
OPNsense, Zabbix
Monitor OPNsense with Zabbix (Active Agent, GUI-only)
TL;DR Install the OPNsense Zabbix Agent plugin → enable it → set Hostname to exactly your Zabbix host name →
BIND, OPNsense
Custom DDNS for Your Home Lab with OPNsense BIND (Python + cron)
TL;DR: This guide shows a small Python script that discovers your public IPv4, updates an A record in the OPNsense
OPNsense
Using the OPNsense API with Python
The OPNsense firewall exposes a REST API for automation and integration. This post shows how to use the API from
HAProxy, OPNsense
Set Up HAProxy for TLS Passthrough with SNI Routing on OPNsense
In this guide, we’ll configure HAProxy on OPNsense to support TLS passthrough with SNI-based routing. This allows secure HTTPS traffic
AWS, OPNsense, WireGuard
WireGuard VPN on OPNsense 25.1
Architecture Overview: This setup runs WireGuard on an AWS EC2-based OPNsense firewall (WireGuard server) in the public subnet (10.0.0.0/20). The
AWS EC2, BIND, OPNsense
Configure BIND on OPNsense 25.1 as Internal DNS Server for AWS VPC
Overview Component Value Internal domain maksonlee.com DNS server IP 10.0.128.4 (OPNsense LAN IP) System DNS 127.0.0.1 (loopback) Forwarder AWS DNS
Let's Encrypt, OPNsense
Let’s Encrypt on OPNsense 25.1 Using DNS-01 with Cloudflare
You’ll need this to allow OPNsense to modify DNS records for validation. You may need to re-login to the WebGUI
AWS EC2, OPNsense
Deploy OPNsense 25.1 Nano on AWS
Architecture Overview: Interface Subnet Private IP Public IP WAN (ena0) test-subnet-public1-ap-south-1a 10.0.0.4 Yes LAN (ena1) test-subnet-private1-ap-south-1a 10.0.128.4 No ⚠️ Do
AWS EC2, OPNsense
Create an EC2 AMI from Official OPNsense 25.1 Nano (raw) Image
This post shows how to convert the official OPNsense 25.1 Nano disk image (.img.bz2) into an EC2 AMI using VM