一键导入
opnsense-firewall-audit
Audit OPNsense firewall rules for security issues — overly permissive rules, disabled rules, unused aliases
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Audit OPNsense firewall rules for security issues — overly permissive rules, disabled rules, unused aliases
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
Live integration test for all OPNsense MCP tools — read + safe writes with cleanup
Check ACME certificate expiry and renew if needed — lists all certs, shows days remaining, triggers renewal
OPNsense configuration backup management — list, download, and revert backups
Dashboard-style health overview of the OPNsense firewall — system status, services, firmware, interfaces, DHCP
Diagnose network connectivity issues using OPNsense firewall tools — ping, traceroute, DNS lookup, ARP, firewall states and logs
Manage OPNsense DNS host overrides — add, list, delete records and verify resolution
| name | opnsense-firewall-audit |
| description | Audit OPNsense firewall rules for security issues — overly permissive rules, disabled rules, unused aliases |
Perform a security audit of the OPNsense firewall configuration.
audit, firewall, review rules, security check, firewall review, permissive, rules audit, security audit
opnsense_fw_list_rules — all filter rulesopnsense_fw_list_aliases — all aliases (host groups, networks, ports)Check for these security concerns:
Critical
Warning
Info
opnsense_diag_fw_states — active connection states (look for unexpected connections)opnsense_diag_fw_logs (limit: 200) — recent blocks (look for patterns)## Firewall Audit Report
### Summary
- Total rules: {count}
- Enabled: {count} | Disabled: {count}
- Aliases: {count}
- Active states: {count}
### Critical Findings
{List critical issues with rule details and remediation}
### Warnings
{List warnings with context}
### Informational
{List info items}
### Blocked Traffic Patterns (Last 200 Entries)
- Top blocked sources: {list}
- Top blocked destinations: {list}
- Top blocked ports: {list}
### Recommendations
1. {Prioritized action items}