OPNsense MCP Server
by gabrielion
Server Configuration
Describes the environment variables required to run the server.
| Name | Required | Description | Default |
|---|---|---|---|
| AUDIT_LOG | No | Path to a JSONL audit log file | |
| LOG_LEVEL | No | Log level: ERROR, WARN, INFO, DEBUG | INFO |
| READ_ONLY | No | When 'true', all mutation tools are hidden and refused | false |
| AUTO_BACKUP | No | When 'true', snapshot the full config before classified mutations | false |
| BACKUP_PATH | No | Absolute path for storing backup snapshots | ./backups |
| IAC_ENABLED | No | Expose the experimental iac_* tools | false |
| MCP_SSE_HOST | No | Bind address for SSE transport (only loopback values accepted) | 127.0.0.1 |
| MCP_SSE_PORT | No | Port for SSE transport (e.g., 3000) | |
| MCP_TRANSPORT | No | Transport mode: 'stdio' (default) or 'sse' | stdio |
| OPNSENSE_HOST | Yes | The base URL of the OPNsense firewall, e.g., https://your-opnsense:port | |
| MCP_CORS_ORIGIN | No | Deprecated alias for a single allowed origin | |
| AUDIT_LOG_STRICT | No | When 'true', refuse mutation if audit pre-write fails | false |
| AUTO_BACKUP_KEEP | No | Number of backups to retain | 50 |
| OPNSENSE_API_KEY | Yes | The API key for authentication | |
| ALLOWED_RESOURCES | No | Comma-separated list of resource keys for mutation scoping | |
| MCP_ALLOWED_HOSTS | No | Host header allow-list for DNS-rebinding defense | |
| OPNSENSE_SSH_HOST | No | SSH host for SSH-backed features (required if ENABLE_SSH_FEATURES=true) | |
| AUTO_BACKUP_STRICT | No | When 'true', refuse a mutation if the pre-change backup fails | false |
| ENABLE_RAW_API_TOOL | No | Expose the opn_api_call escape hatch | false |
| ENABLE_SSH_FEATURES | No | Enable SSH-backed features | false |
| MCP_ALLOWED_ORIGINS | No | Exact origins allowed for CORS (wildcard or malformed values are fatal) | |
| OPNSENSE_API_SECRET | Yes | The API secret for authentication | |
| OPNSENSE_VERIFY_SSL | No | Whether to verify TLS certificates (set to 'false' for self-signed certs) | true |
| ENABLE_RESTORE_TOOLS | No | Required for restore_backup_ssh | false |
| ENABLE_CONFIGURE_TOOL | No | Expose the runtime configure credential tool | false |
| OPNSENSE_SSH_KEY_PATH | No | Absolute path to the SSH private key | |
| OPNSENSE_SSH_USERNAME | No | SSH username for SSH-backed features |
Capabilities
Server capabilities have not been inspected yet.
Tools
Functions exposed to the LLM to take actions
| Name | Description |
|---|---|
No tools | |
Prompts
Interactive templates invoked by user choice
| Name | Description |
|---|---|
No prompts | |
Resources
Contextual data attached and managed by the client
| Name | Description |
|---|---|
No resources | |
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/gabrielion/OPNSenseMCP'
If you have feedback or need assistance with the MCP directory API, please join our Discord server