Topics - bobbis

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Topics - bobbis

Pages1 2 3

21.1 Legacy Series / Shaper Pipe Delay not applying ?

January 21, 2021, 03:10:11 AM

Hello,

opnsense 21.1 (nano)amd64

when i try to set on the webinterface, in this case called Pipename: "Download Pipe"(Firewall->Shaper->Pipes:(+Download pipe+), a delay like 10ms to the Pipe, it does not seems to apply the settings.
When i check out the output from

Code Select

ipfw list pipe then the "Download Pipe" or on the screenshot, called Pipe:"10000"... there is no delay, it shows "0 ms" for the "Download pipe".
If i add a pipe manually from the command line:

Code Select

/sbin/ipfw -q pipe 1 config delay 10ms bw 2Mbit/s
then you can see the pipe "00001" has a delay from "10 ms" !

/usr/local/etc/ipfw.rules
...8-< snip

Code Select


#======================================================================================
# define dummynet pipes
#======================================================================================
pipe 10000 config bw 40Mbit/s queue 2 buckets 1 type  fq_codel  delay 10  target 5  interval 100  ecn    quantum 1514   limit 1000   flows 1024
pipe 10001 config bw 1700Kbit/s buckets 1 type  fq_codel  delay 10  target 5  interval 100  ecn    quantum 1514   limit 1000   flows 1024

>-8 snip

after rebooting still "0 ms" ...

21.1 Legacy Series / (Solved) Shaper->Status Page shows a rule twice and maybe date incorrect

January 21, 2021, 12:35:25 AM

hello,

opnsense 21.1(nano)amd64

On the webinterface from the Shaper->Status page i have on rule: called "fast ACK LANNET answer" but under the Status Page of the Shaper the rule is displayed twice and also some dates there (wrong?) with 1970...!?

Rules:

Status Page:

21.1 Legacy Series / service ipfw restart breaks webinterface shaper status

January 20, 2021, 11:37:23 PM

Hello,

opnsense 21.1 (nano)amd64

connected via ssh, entering the command

Code Select

service ipfw restart will break the shaper status page on the webinterface from contiues output of the traffic shaper status. All Dates are now "1970-01-01T01:00:00".
Trying to restart the IPFW Shaper from Dashboard does not help, still no output anymore on the shaper status page.
Only Rebooting the machine helped in this case...

German - Deutsch / Idee für DashBoard -> Service Name anklickbar machen ...

October 07, 2020, 05:57:12 PM

Hallo Entwickler vom webUI,

was toll wäre, wenn ihr dem webUI, im DashBoard es möglich machen könntet, dass man die Service Namen, ( rot makiert auf dem Bildschirmfoto),

anklicken kann und so direkt zum jeweiligen Service Konfiguration Menü kommt.

Danke

German - Deutsch / DDNS IP-Adresse manchmal erst nach neustart der Sense & Modem korrekt

September 16, 2020, 12:55:10 AM

Hallo,

System: OPNsense 20.1.9_1-amd64

ich habe seit längerem mal das Problem auf der Sense, glaube schon seit Version 17, dass ich eine (Dynamische) IP-Adresse, die an einem sogenannten Dyndns Anbieter gesendet wird, manchmal nicht erreichbar. bzw. eine alte IP-Adresse ausgegeben wird, erst wenn ich das Modem und die Sense komplett neustarte, und dann versuche auf die IP-Adresse zuzugreifen, habe ich die aktuelle IP-Adresse. Ich nutze Unbound und DNSCrypt-Proxy für die DNS Auflösungen. Kennt jemand dieses Problem und wenn ja, was kann man dagegen machen ?

Danke

German - Deutsch / Allg. Frage: Wozu Compiler auf einer Firewall ?

September 03, 2020, 08:09:49 PM

Hallo,

System: OPNsense 20.7 Nano

mich würde Interessieren warum unter /usr/bin, eine Menge an Compilern herumliegen, ~~Genauso wie der ganze LLVM "Restmüll" ... round a bout 1GB Speicherplatz Verschwendung.~~
Wäre doch eigentlich, von der Sicherheit eher sinnvoller, sowas nicht auf einer Firewall zu haben !?!

German - Deutsch / [Offtopic] Was ist das für ein Kabel ?

August 14, 2020, 08:04:19 PM

Hiii ;-)

ich habe gerade beim kramen ein altes, nie benutzes Kabel entdeckt was auf der einen Seite ein RJ45 Anschluss hat und auf der anderen Seite, würde sagen Com Port (9 Männliche Pins) Anschluss.
Ich habe mal ein paar Fotos von dem Kabel hochgeladen

Bilder Verlinkung funktioniert nicht mit ImgBB \[img\]http://einlinkzumbild\[/img\] @ Forum Webmaster ?

https://ibb.co/wcvCW1X
https://ibb.co/mFYp4K1
https://ibb.co/zVnN2dz

Vielleicht kann mir einer sagen genau das für ein Kabel ist und was ich damit machen kann?
Dankeschön

General Discussion / feature request: automatically scroll on top for big pages after clicked save

May 21, 2020, 06:11:27 AM

Hello

Is it possible to add a behavior to the WebUI like that if you have clicked on the save button after a configuration change and the page is big in case of UI content, (that the save button and the apply button doesnt fit together onto one screen at the same time), so that the apply button is not visible on screen, it would be nice that the WebUI can automactily scroll on top of the page so that is easylier to press apply after save !?

bobbis

General Discussion / How to prevent unbound from updating/overwriting /etc/resolv.conf ?

May 21, 2020, 05:56:29 AM

Hello

is it possible to prevent unbound to updating or overwriting the /etc/resolv.conf ? I had no luck while i try to set under Unbound->General->Custom options from the WebUI.

Code Select

resolve_conf="/dev/null"
resolve_conf="none" 
resolve_conf: "/dev/null"
resolve_conf: "none"
resolve_conf: none

It doesnt matter wich line from the code i used into the unbound custom option. Is one line of code above is written into custom options, unboud doesn't (re)start.

What is the correct option to prevent unbound from updating or overwriting /etc/resolv.conf ?
bobbis

#10

20.1 Legacy Series / Alarm clock messages spams my terminal

May 21, 2020, 05:44:27 AM

Hello
If my computer is connected via SSH to OPNsense 20.1 nano and unbound has failed to (re)start, from WebUI, can easiely happend if entering wrong stuff inside the unbound DNS->General->"Custom options" section, click on save and then apply.
If that happend, that unbound fails to (re)start then my terminal gets spammed with a "Alarm clock" message, every where also while reading a man page, this really sucks! Little above 50 spam Messages in nearly five minutes! I dont know how to disable this "Alarm clock" message. If someone knows it, please post howto disable this message!

click for bigger image

bobbis

#11

Documentation and Translation / OPNsense 20.1.6-amd64 Nano, WebUI, mixed translations

May 19, 2020, 10:26:57 PM

mixed translation on "OPNsense 20.1.6-amd64 Nano" appears if german is set as default language into the WebUI !

Both browsers chromium on the left side and firefox on the right side of the image,

großes Bild
https://i.imgur.com/1byZbpt.png

bobbis

#12

German - Deutsch / Wireless LAN nur bei Gebrauch aktivieren, ist das möglich?

April 27, 2020, 02:26:14 PM

Hallo,

ich frage mich gerade ob es den nicht möglich ist, wenn man ein USB-Wireless LAN hat, dieses auf der sense (nano 20.1.4) entsprechend konfiguriert ob es den nicht möglich wäre, dass Wireless LAN nur zu aktivieren wenn man es benötigt?
Geht das irgend wie ? Ich möchte es nicht die ganze Zeit anhaben, nur wenn ich mit dem Mobile Telefon mal ins Netz möchte!

Danke

#13

German - Deutsch / Zugriff auf Kabelmodem am WAN Anschluss klappt nicht

April 06, 2020, 07:43:13 PM

Hallo,

ich benutzte ein "Compal CH7467CE Modem" was im Bridged Modus läuft mit OPNsense (NanoBSD 20.1.3).
Konfiguriert ist die WAN Schnittstelle als DHCP, bekommt die IP vom Modem, LAN hat eine statische IP Konfiguration 192.168.123.0/24. "Block private networks" ist ausgeschaltet.

Wenn ich von der Konsole aus versuche die IP-Adresse des Modem zu pingen, in dem Falle 192.168.0.100 sehe ich von den Firewall log im webUI nur folgendes:

Code Select

WAN		Apr 6 19:34:53	10.64.0.195	192.168.0.100	icmp	let out anything from firewall host itself

und die Ausgabe auf der Konsole:

Code Select

ping -c1 192.168.0.100
PING 192.168.0.100 (192.168.0.100): 56 data bytes

--- 192.168.0.100 ping statistics ---
1 packets transmitted, 0 packets received, 100.0% packet loss

Da das WAN Interface ja seine IP-Adresse vom Modem bzw. ISP erhält ist ja die IP-Adresse in einem völlig anderen Subnetz als das des Modems(192.168.0.100) ... deswegen scheitert es ja auch mit großer Sicherheit.

So nun meine Frage: Was muss man auf der Sense einstellen das man das Modem unter 192.168.0.100 erreicht und nebenbei auch ins WAN-Netz(inet) kommt ?

Versucht hatte ich unter VLAN der WAN Schnittstelle eine zusätzliche Virtuelle Schnittstelle anzuhängen mit einer Subnetz Konfiguration für das Modem inklusive Gateway (192.168.0.100) aber funktioniert auch nicht.

Danke

#14

German - Deutsch / OPNsense WAN DHCP Kabel Internet, aktuelle IP Anzeigen ?

April 06, 2020, 07:26:26 PM

Hallo,

wie kann man den seine tatsächliche IP-Adresse sehen, wenn die sense (NanoBSD Version 20.1.3) hinter einem Compal CH7467CE Modem im Bridged Modus hängt? Konfiguriert habe ich das WAN Interface (IPv4/IPv6) per DHCP.

Ausgabe von ifconfig

Code Select

em0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> metric 0 mtu 1500
        options=2098<VLAN_MTU,VLAN_HWTAGGING,VLAN_HWCSUM,WOL_MAGIC>
        ether 90:a1:ba:aa:65:eb
        hwaddr 90:a1:ba:aa:65:eb
        inet6 fe80::92a1:aaff:fe27:65eb%em0 prefixlen 64 scopeid 0x2
        inet 10.64.0.195 netmask 0xffffe000 broadcast 10.64.31.255
        nd6 options=23<PERFORMNUD,ACCEPT_RTADV,AUTO_LINKLOCAL>
        media: Ethernet autoselect (1000baseT <full-duplex>)
        status: active

Unter inet steht 10.64.0.195, aber meine tatsächliche IP-Adresse zur Zeit ist : 77.64.144.233

Läuft das im Kabelnetz anders mit der IP-Adressen Zuweisung als bei herkömmlichen DSL, ich wage mich zu erinnern das bei Kabel Internet man eigentlich in einem eigenen IP-Pool vom Provider hängt ?

Danke

#15

German - Deutsch / OPNsense 20.1.1 Unbound + DNSCrypt-Proxy Temporärer Fehler bei der Namensauflösu

February 16, 2020, 07:42:57 PM

Hallo,

zur Zeit benutze ich OPNsense 20.1.1 Nano (amd64) mit Unbound und DNSCrypt-Proxy (Konfiguration) , was mir in den letzen Tagen öfters mal passiert das auf einmal die Namesauflösung nicht mehr bzw. nur teilweise funktioniert. In den Logs steht nichts besonderes außer die vom DNSCrypt-Proxy:

Auszug vom LOG ... ist komplett als Anhang enthalten.

Code Select

[2020-02-16 19:28:37]	127.0.0.1	in-addr.arpa	DS	SERVER_TIMEOUT	2517ms	freetsa.org
 	[2020-02-16 19:28:36]	127.0.0.1	154.76.144.in-addr.arpa	DS	PASS	36ms	soltysiak
 	[2020-02-16 19:28:36]	127.0.0.1	154.76.144.in-addr.arpa	DS	PASS	367ms	soltysiak
 	[2020-02-16 19:28:36]	127.0.0.1	arpa	DNSKEY	SERVER_TIMEOUT	2501ms	freetsa.org
 	[2020-02-16 19:28:35]	127.0.0.1	76.144.in-addr.arpa	DS	PASS	39ms	v.dnscrypt.uk-ipv4
 	[2020-02-16 19:28:35]	127.0.0.1	arpa	DNSKEY	SERVER_TIMEOUT	2594ms	freetsa.org
 	[2020-02-16 19:28:35]	127.0.0.1	144.in-addr.arpa	DNSKEY	PASS	168ms	soltysiak
 	[2020-02-16 19:28:35]	127.0.0.1	144.in-addr.arpa	DS	PASS	33ms	soltysiak
 	[2020-02-16 19:28:35]	127.0.0.1	in-addr.arpa	DNSKEY	PASS	176ms	ev-va
 	[2020-02-16 19:28:35]	127.0.0.1	in-addr.arpa	DS	PASS	37ms	v.dnscrypt.uk-ipv4
 	[2020-02-16 19:28:35]	127.0.0.1	arpa	DNSKEY	SERVER_TIMEOUT	2504ms	freetsa.org

Code Select

 ping -c1 nadgames.com
ping: nadgames.com: Temporärer Fehler bei der Namensauflösung

Ist halt immer doof, dann manual den DNSCrypt-Proxy übers webUI bzw. per SSH neuzutarten ... kann der DNSCrypt-Proxy sich nicht selber wieder fangen? Ist das ein BUG oder gewollt ?

Danke

#16

20.1 Legacy Series / [System: Log Files: Web GUI] shows a lot of Connection reset by peer Messages

February 14, 2020, 12:41:30 PM

Hi,

OPNsense 20.1 Nano Image (amd64)

The log output from System: Log Files: Web GUI shows only this one and repeadly the same Message:

Code Select

2020-02-14T12:35:39	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:35:39	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:35:39	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:34:05	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:32:49	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:32:49	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:32:49	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:32:49	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:32:49	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:32:49	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:32:49	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:31:05	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:30:34	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:30:34	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:30:34	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:30:34	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:30:34	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:30:34	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:28:43	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:28:43	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:28:43	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:28:43	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:27:47	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:27:47	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:27:47	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:27:47	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:25:30	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:25:30	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:25:30	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:25:30	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:25:14	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:25:14	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:24:38	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:24:38	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:24:38	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:24:38	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:23:19	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:23:19	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:23:19	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:23:19	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:22:28	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:21:23	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:21:23	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:21:23	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:21:22	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:46	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:46	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:46	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:44	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:44	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:44	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:42	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:42	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:42	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:39	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:32	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:32	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:32	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:32	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:23	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:23	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:17	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:03	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:02	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:02	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:02	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:02	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:20:02	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:19:52	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:19:52	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:19:50	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:19:50	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:19:32	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:19:32	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:19:32	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:18:51	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:18:51	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:18:51	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:17:48	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:17:47	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:17:47	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:17:33	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:17:33	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:17:33	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:16:47	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:16:47	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:16:47	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:16:47	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:16:47	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:16:47	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:16:46	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:15:08	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:15:08	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:15:08	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:15:08	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:15:08	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:15:07	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:14:57	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:14:57	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:14:57	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:14:57	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:14:50	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:14:50	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:14:50	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:13:54	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:13:54	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:13:54	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:13:52	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:11:55	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:11:38	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:11:38	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:11:38	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T12:03:29	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:44:26	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:44:26	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:44:26	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:44:26	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:44:25	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:43:35	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:43:35	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:43:35	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:43:35	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:43:35	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:43:34	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:43:34	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:43:34	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:43:02	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:43:02	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:42:44	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:42:16	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:42:04	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:42:04	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:42:04	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:42:04	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:42:04	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:42:04	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:42:04	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:41:49	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:41:17	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:41:16	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:41:07	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:40:00	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:40:00	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:40:00	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:39:59	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:39:59	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:39:59	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:39:59	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:37:23	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:37:23	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:37:23	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:37:23	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:36:56	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:36:56	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:36:37	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:36:37	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:36:19	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:36:19	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:35:59	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:35:59	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:35:59	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:34:54	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:34:41	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:34:41	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:34:41	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:34:41	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:34:41	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:34:41	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:34:17	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:34:17	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:34:17	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:34:04	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:34:04	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:34:03	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:32:07	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:32:07	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:32:07	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:32:06	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:32:06	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:32:06	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:32:06	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:32:05	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:13:48	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:13:48	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:13:48	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:13:48	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:13:48	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:13:48	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:13:48	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:04:24	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:04:24	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:04:24	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:04:24	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:04:24	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:03:09	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:03:09	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:03:09	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:03:09	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:03:08	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:02:22	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:02:22	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:02:22	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:02:06	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:02:06	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:02:06	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:02:05	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:02:00	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T11:01:56	lighttpd[2795]: (mod_openssl.c.1762) SSL: -1 5 54 Connection reset by peer
2020-02-14T10:51:20	lighttpd[2795]: (server.c.1488) server started (lighttpd/1.4.55)

... not sure what is going on ...
regards

#17

General Discussion / Firewall "LiveView" from webUI is there something similiar for console ?

February 14, 2020, 11:11:56 AM

Hi, i like the Overview of the Firewall "Live View" on the webUI.

Is there something like the same for the console also ?

Thanks

#18

Web Proxy Filtering and Caching / [DNSCrypt-Proxy] - Question about a NX / Log entry (_ta-4f66NULL)

February 14, 2020, 11:07:40 AM

Hi, in the Log/NX logfile of DNSCrypt-Proxy it show sometimes

Code Select

[2020-02-14 11:03:25]	127.0.0.1	_ta-4f66	NULL
[2020-02-14 10:51:50]	127.0.0.1	_ta-4f66	NULL

What does this mean ?
THanks

#19

German - Deutsch / Frage zu Firewall Regel

February 13, 2020, 08:47:26 PM

Hallo,

ich habe eine Regel unter LAN angelegt:

Code Select

IPv4 TCP LAN Netzwerk * * 80 (HTTP) * * Allow LAN to HTTP
damit sollten alle klients vom LAN's in "Internet" auf Port 80 HTTP zugreifen können.
Wenn ich in der "Liveansicht" nachschaue sehe ich folgendes zu dieser Regel:

Code Select

>	wan    Feb 13 20:50:15	192.168.200.10:49959	144.76.154.165:80    tcp	let out anything from firewall host itself	[i]
>	lan    Feb 13 20:50:15	192.168.3.33:45220	144.76.154.165:80    tcp	Allow LAN to HTTP	[i]
>	lan    Feb 13 20:50:15	192.168.3.33:36687	192.168.3.1:53       udp	Allow DNS, LAN to FW	[i]

Wenn ich es ganz genau gezielt Regeln möchte, den Zugriff, dann sollte man doch eigentlich 2 Regeln benötigen für das obige Prinzip. Weil zu sehen ist erste Anfrage DNS, dann Zugriff von "LAN" Interface auf das "Internet" und dann das "WAN" Interface Zugriff auf das "Internet" (alle Port 80)

Also eine Regel die den Zugriff vom "LAN" Interface auf das "WAN" Interface zulässt und eine 2te Regel die dann vom "WAN" auf das "Internet" zulässt ... !?!?!?!

192.168.200.10 = WAN Interface
192.168.3.1 = OPNsense
192.168.3.33 = Klient-PC

Wobei ich aber auch nicht verstehe warum erst das "LAN" Interface korrekter Weise auf das "Internet" zugreift und dann das "WAN" Interface übernimmt ... ist mir ein Rätsel diese Ablauffolge... vielleicht kann mich mal jemand aufklären was ich nicht so ganz verstehe im zusammen hang von der Liveansicht und den Regeln ...
Danke

#20

General Discussion / how can i boot from a second harddrive connected via usb2.0

February 12, 2020, 01:27:53 PM

Hello,
I have an CF-Card inside of my system, the bios is buggy and looses boot settings of a device if it is removed, so in meantime the system only boots headslees from the internal CF-Card.

Id like to know how can i boot from "boot:" or from loader promt the second harddrive connected via USB2.0.
If i am at the loader prompt from OPNsense 19.7.x the command "lsdev" only shows the internal CF-Card.. so what can i do from the second harddrive ? Thanks

Pages1 2 3