⚠

High Risk:This skill has significant security concerns. Review the findings below before installing.

opnsense-admin

⚠Caution·Scanned 2/18/2026

High-risk skill for OPNsense firewall administration via API and ssh. It requires credentials (OPNSENSE_KEY/OPNSENSE_SECRET or ~/.opnsense/credentials), makes network calls to https://${OPNSENSE_HOST}:${OPNSENSE_PORT}/api/..., and runs ssh/shell scripts such as ./scripts/service-control.sh.

from clawhub.ai·v80f7417·21.6 KB·0 installs

Scanned from 1.0.3 at 80f7417 · Transparency log ↗

$ vett add clawhub.ai/transcendenceia/opnsense-adminReview security findings before installing

OPNsense Admin Skill

⚠️ WARNING: This tool grants HIGH PRIVILEGE access to your firewall. By using it, you declare you are a responsible adult. See full disclaimer

Complete OPNsense firewall administration for AI agents. Automate backups, monitor security, manage services, and troubleshoot network issues via API and SSH.

🚀 Quick Start

# Clone the skill
gh repo clone Transcendenceia/opnsense-admin-skill

# Configure credentials
cat > ~/.opnsense/credentials << EOF
OPNSENSE_HOST=192.168.1.1
OPNSENSE_KEY=your_api_key
OPNSENSE_SECRET=your_api_secret
EOF

# Check status
./scripts/opnsense-api.sh status

📋 Features

🔥 Firewall Management - Rules, NAT, aliases, diagnostics
🛡️ IDS/IPS (Suricata) - Intrusion detection and prevention
🌐 DNS (Unbound) - DNS resolver, blocklists, DNS over TLS
📊 Monitoring - Service status, traffic analysis
💾 Automated Backups - Scheduled backups with retention
🔧 Service Control - Start/stop/restart via SSH

📖 Documentation

See SKILL.md for complete documentation.

🔧 Requirements

OPNsense 26.1 or later
API access enabled
SSH access (optional, for service management)
curl and jq installed

📝 License

MIT License - see LICENSE file.

🤝 Contributing

Contributions welcome! Please open issues and pull requests.

⚠️ Disclaimer

This is an unofficial skill. Not affiliated with Deciso B.V. or the OPNsense project.