# OPNsense

I was a pfSense guy for years, but OPNsense is pretty rad.

If you give your firewall a DNS record like yourfw.yourdomain.com, if you try to login to it with https://yourfw.yourdomain.com you might get a warning about a DNS rebind attack. Login to it by IP, then go to System > Settings > Administration and put the FQDN in the Alternate Hostnames field.

I mean, I would never forget my root password, but if you did, follow this article which has you boot into single user mode and then (assuming ZFS):

/sbin/mount -u /
/sbin/zfs mount -a
opnsense-shell password
# enter new password twice
reboot