1️⃣ Verify Status
Go to
Zenarmor → Dashboard
Check:
- Engine status: Running
- Monitored interface: LAN
- Last update time
→ If all look fine, Zenarmor is ready.
2️⃣ Create and Apply Policies
Navigate to:
Zenarmor → Policies
Click Add Policy:
- Name:
Office_Network_Policy - Mode: Active or Monitor
- Interface: LAN
🔹 Application Control
Block or allow specific app categories:
- Social Media (Facebook, TikTok)
- Streaming (YouTube, Netflix)
- Games (Steam, Epic Games)
👉 Start in Monitor mode to evaluate before enforcing.
🔹 Web Controls
Enable or block website categories:
- Adult, Gambling, Streaming, Shopping
Use Whitelist / Blacklist for exceptions.
🔹 Security Controls
Activate:
- Threat Intelligence feeds
- DNS & IP reputation blocking
- Malware domain prevention
🔹 Bandwidth Control (Business edition)
Assign limits per app type:
| App | Limit | Priority |
|---|---|---|
| VoIP | 2 Mbps | High |
| Web | 2 Mbps | Medium |
| FTP | 1 Mbps | Low |
3️⃣ Deploy Policy
Click Save & Deploy → confirm Active status.
You can verify results under Reports.
4️⃣ Analyze Reports
Go to:
Zenarmor → Reports
Useful dashboards:
- Top Applications
- Top Users
- Blocked Connections
- Threat Intelligence Alerts
Use time filters to drill down into specific hours or VLANs.
5️⃣ Advanced Tips
| Feature | Recommendation |
|---|---|
| Threat Intel | Always enable |
| Update | Daily auto-update |
| Policy Profiles | Use per VLAN/department |
| Storage | Use Elasticsearch for large data |
| Integration | Combine with OPNsense Firewall + Traffic Shaper |
6️⃣ Best Practices
- Start in Monitor mode → then Active.
- Roll out policies gradually per VLAN.
- Review weekly reports and adjust.
- Combine L3/L4 (firewall) with L7 (Zenarmor) for full security coverage.
✅ 7️⃣ Conclusion
After setup, your OPNsense firewall now supports:
- Deep application-level visibility
- Content-based blocking
- Real-time reporting and threat defense
Together, OPNsense + Zenarmor form a powerful NGFW solution
suitable for modern enterprise environments.