nawasara/opnsense
Composer 安装命令:
composer require nawasara/opnsense
包简介
OPNsense firewall control plane for the Nawasara superapp framework — health/traffic/gateway monitoring, WireGuard/OpenVPN self-service with SSO-bound expiring accounts, and firewall rule/alias management via the OPNsense REST API.
README 文档
README
OPNsense firewall control plane untuk Nawasara superapp — monitoring health/traffic/gateway, VPN self-service (WireGuard/OpenVPN dengan akun ber-SSO
- masa berlaku), dan manajemen firewall via OPNsense REST API.
Client pattern sama nawasara/proxmox: HTTP Basic + Vault + self-signed TLS,
tanpa sidecar.
Status
Fase A (Monitoring) — scaffolded. Dashboard read-only: status appliance
(CPU/RAM/disk/uptime/suhu) + gateway (WAN up/down + latency). Fase B (VPN) & C
(Firewall) menyusul — lihat docs/nawasara-opnsense/.
Setup
- Kredensial di Vault (group
opnsense, multi-instance):host(mis.https://10.10.10.1:64443),api_key,api_secret,verify_ssl- Generate API key di OPNsense: System ‣ Access ‣ Users → API keys →
+
- Seed permission:
php artisan db:seed --class="Nawasara\Opnsense\Database\Seeders\PermissionSeeder" - Sync jalan otomatis tiap
sync_intervalmenit (default 2), atau tombol Sync di UI.
Permissions
Read-only (auto-grant developer): opnsense.monitor.view, opnsense.vpn.view,
opnsense.firewall.view, opnsense.sync.execute.
Write-risk (assign eksplisit): opnsense.vpn.manage, opnsense.vpn.renew,
opnsense.vpn.export, opnsense.firewall.manage, opnsense.firewall.apply.
Catatan teknis
- Endpoint casing berubah di OPNsense 25.7 (camelCase → snake_case). Client pakai
snake_case (26.x). Cek
getVersion()sebelum andalkan casing tertentu. - CPU & traffic hanya via SSE stream di OPNsense — sync pakai snapshot counter, bukan stream.
- Firewall write (Fase C) staged config — wajib
apply, auto-rollback 60 detik.
统计信息
- 总下载量: 0
- 月度下载量: 0
- 日度下载量: 0
- 收藏数: 0
- 点击次数: 1
- 依赖项目数: 0
- 推荐数: 0
其他信息
- 授权协议: MIT
- 更新时间: 2026-07-02