Topics

Running the latest Adguard on OPNsense 25.7.10-amd64, Protectli VP2430

Clean install of OPNsense. Added the community plug-in for Adguard, configured with Unbound as per the how-to here. Updated to the latest Adguard via the Adguard admin page.

Ran fine for a few weeks, then one night it just stopped responding to DNS requests from clients on my network. I tried re-booting, then finally disabled it altogether and moved Unbound back to port 53.

I'd really like to get it working again. Any suggestions where I should look?

Hi all, opnsense noob here.

I'm on opnsense 25.7.10, using dnsmasq for DHCP, the Adguardhome service running on port 53 for DNS, and unbound disabled. Client DNS is running fine, and the router's own DNS lookups work fine as long as I have "Allow DNS server list to be overridden by DHCP/PPP on WAN" checked in System -> Settings -> General. If I un-check that option, clients continue to work but lookups coming from the router itself always fail because the domain names are getting the ".internal" local domain name appended.

For example, if I do a check for updates the router can't access "pkg.opnsense.org" because the domain name is changed to "pkg.opnsense.org.internal".

I'm sure this is something simple - what am I doing wrong?

Hi all, this is my first time working with OPNsense. I'm running OPNsense 16.7.7-amd64 and so far my experience has been very positive. Nice work team!

I am running into some trouble with OpenVPN server configuration. I've been using the VPN how-to document as a guide (https://docs.opnsense.org/manual/how-tos/sslvpn_client.html). I am setting it up for certificate + user name/pwd authentication (no TOTP).

The first time I tried it, everything worked as expected and my VPN client authenticated, but I got my firewall rules wrong so no traffic was allowed. While I was trying to find that problem, in the course of deleting and re-creating VPN servers / users / certificates I now have got myself to a state where when I try to export client configurations, no clients are listed under "Client Install Packages". Instead, it says "Authentication Only (no cert)".

The help topic here says "If you expect to see a certain client in the list but it is not there, it is usually due to a CA mismatch between the OpenVPN server instance and the client certificates found in the User Manager". I only have a single CA, and it was used for all the certs and is selected in the VPN server config.

I am pretty sure I have set up the CA, server cert, user account, and user cert correctly. I've deleted and re-created CA, certs, user account and VPN server several times with the same result. What am I missing?

Thanks in advance for your assistance.