Setup info:
OPNsense install in Proxmox VE. Proxmox on ZFS and OPNsense install as VM, file system of OPNsense is ZFS too. The rest of the setup information is shown below in pictures.
Proxmox setup:
(https://i.postimg.cc/vcp4k45S/2024-05-24-13-55-29.png) (https://postimg.cc/vcp4k45S)
(https://i.postimg.cc/6Tp4vJ9z/2024-05-24-13-55-51.png) (https://postimg.cc/6Tp4vJ9z)
(https://i.postimg.cc/nCss349D/2024-05-24-13-56-35.png) (https://postimg.cc/nCss349D)(https://i.postimg.cc/ThNLj71x/2024-05-24-13-56-42.png) (https://postimg.cc/ThNLj71x)
OPNsense setup:
(https://i.postimg.cc/PN3GtcfB/2024-05-24-13-47-20.png) (https://postimg.cc/PN3GtcfB)
(https://i.postimg.cc/3yhdrzSX/2024-05-24-13-48-01.png) (https://postimg.cc/3yhdrzSX)
(https://i.postimg.cc/YvYvHt32/2024-05-24-13-48-08.png) (https://postimg.cc/YvYvHt32)
(https://i.postimg.cc/JyQtsKv9/2024-05-24-13-48-31.png) (https://postimg.cc/JyQtsKv9)
INstalled packages
root@OPNsense:~ # pkg info
abseil-20230125.3 Abseil Common Libraries (C++)
bash-5.2.26_1 GNU Project's Bourne Again SHell
beep-1.0_2 Beeps a certain duration and pitch out of the PC Speaker
bind-tools-9.18.26 Command line tools from BIND: delv, dig, host, nslookup...
bind918-9.18.26 BIND DNS suite with updated DNSSEC and DNS64
boost-libs-1.84.0 Free portable C++ libraries (without Boost.Python)
ca_root_nss-3.93 Root certificate bundle from the Mozilla Project
choparp-20150613_1 Simple proxy arp daemon
cpdup-1.22_1 Comprehensive filesystem mirroring and backup program
cpustats-0.1 Gather system statistics
curl-8.7.1 Command line tool and library for transferring data with URLs
cyrus-sasl-2.1.28_4 RFC 2222 SASL (Simple Authentication and Security Layer)
cyrus-sasl-gssapi-2.1.28 SASL GSSAPI authentication plugin
ddclient-3.11.2_1 Update dynamic DNS entries
dhcp6c-20230530 OPNsense WIDE-DHCPv6 client
dhcrelay-0.4 OpenBSD dhcrelay daemons
dnsmasq-2.90_1,1 Lightweight DNS forwarder, DHCP, and TFTP server
dpinger-3.3 IP device monitoring tool
e2fsprogs-libuuid-1.47.0 UUID library from e2fsprogs package
easy-rsa-3.1.7 Small RSA key management package based on openssl
expat-2.6.2 XML 1.0 parser written in C
expiretable-0.6_3 Utility to remove entries from the pf(4) table based on their age
filterlog-0.7_1 Parse pflog(4) output
flock-2.37.2_1 Manage locks from shell scripts
flowd-0.9.1_5 Small, fast, and secure NetFlow collector
fstrm-0.6.1_1 Implementation of the Frame Streams data transport protocol in C
gettext-runtime-0.22.5 GNU gettext runtime libraries and programs
glib-2.80.2,2 Some useful routines of C programming (current stable version)
gmp-6.3.0 Free library for arbitrary precision arithmetic
groff-1.23.0_3 Software typesetting package
hidapi-0.14.0 Library to access USB HID-class devices
hiredis-1.2.0.15 Minimalistic C client library for the Redis database
hostapd-2.10_10 IEEE 802.11 AP, IEEE 802.1X/WPA/WPA2/EAP/RADIUS Authenticator
hyperscan-5.4.0 High-performance multiple regex matching library
icu-74.2_1,1 International Components for Unicode (from IBM)
ifinfo-13.0_1 Interface statistics reader
iftop-1.0.p4_1 Display bandwidth usage on an interface by host
indexinfo-0.3.1 Utility to regenerate the GNU info page index
isc-dhcp44-server-4.4.3P1_1 ISC Dynamic Host Configuration Protocol server
ivykis-0.43_1 Asynchronous I/O readiness notification library
jansson-2.14 C library for encoding, decoding, and manipulating JSON data
json-c-0.17 JSON (JavaScript Object Notation) implementation in C
jsoncpp-1.9.5 JSON reader and writer library for C++
kea-2.4.1_2 Alternative DHCP implementation by ISC
krb5-1.21.2_3 MIT implementation of RFC 4120 network authentication service
ldns-1.8.3_1 Library for programs conforming to DNS RFCs and drafts
libargon2-20190702_1 Memory hard password hashing program and library
libcbor-0.11.0 CBOR protocol implementation for C and others
libcjson-1.7.17 Ultralightweight JSON parser in ANSI C
libedit-3.1.20230828_1,1 Command line editor library
libevent-2.1.12 API for executing callback functions on events or timeouts
libffi-3.4.6 Foreign Function Interface
libfido2-1.14.0 Provides library functionality for FIDO 2.0
libgcrypt-1.10.3_1 General purpose cryptographic library based on the code from GnuPG
libgpg-error-1.49 Common error values for all GnuPG components
libiconv-1.17_1 Character set conversion library
libidn2-2.3.7 Implementation of IDNA2008 internationalized domain names
libltdl-2.4.7 System independent dlopen wrapper
liblz4-1.9.4_1,1 LZ4 compression library, lossless and very fast
libmaxminddb-1.9.1 Library for the MaxMind DB file format used for GeoIP2
libmcrypt-2.5.8_4 Multi-cipher cryptographic library (used in PHP)
libnet-1.3,1 C library for creating IP packets
libnghttp2-1.61.0 HTTP/2.0 C Library
libpaper-1.1.28_1 Library providing routines for paper size management
libpfctl-0.11 Library for interaction with pf(4)
libpsl-0.21.5_1 C library to handle the Public Suffix List
libsodium-1.0.18 Library to build higher-level cryptographic tools
libucl-0.9.2 Universal configuration library parser
libunistring-1.2 Unicode string library
libunwind-20240221 Generic stack unwinding library
libuv-1.48.0 Multi-platform support library with a focus on asynchronous I/O
libxml2-2.11.7 XML parser library for GNOME
libyaml-0.2.5 YAML 1.1 parser and emitter written in C
libzmq4-4.3.5_1 ZeroMQ core library (Version 4)
lighttpd-1.4.76 Secure, fast, compliant, and flexible Web Server
lldpd-1.0.14_1 LLDP (802.1ab)/CDP/EDP/SONMP/FDP daemon and SNMP subagent
lmdb-0.9.32,1 OpenLDAP Lightning Memory-Mapped Database
log4cplus-2.1.1 Logging library for C++
lua54-5.4.6_1 Powerful, efficient, lightweight, embeddable scripting language
lzo2-2.10_1 Portable speedy, lossless data compression library
monit-5.33.0_1 Unix system management and proactive monitoring
mpd5-5.9_18 Multi-link PPP daemon based on netgraph(4)
mpdecimal-4.0.0 C/C++ arbitrary precision decimal floating point libraries
mysql80-client-8.0.35 Multithreaded SQL database (client)
ndpi-4.8.d20240223,1 NTOP-maintained superset of the popular OpenDPI library
net-snmp-5.9.4_1,1 Extendable SNMP implementation
netdata-1.43.2_1 Scalable distributed realtime performance and health monitoring
nettle-3.9.1 Low-level cryptographic library
norm-1.5r6_3 NACK-Oriented Reliable Multicast (NORM)
nspr-4.35 Platform-neutral API for system level and libc like functions
nss-3.99 Libraries to support development of security-enabled applications
ntopng-6.0.d20240307,1 Network monitoring tool with command line and web interfaces
ntp-4.2.8p17_2 The Network Time Protocol Distribution
oniguruma-6.9.9 Regular expressions library compatible with POSIX/GNU/Perl
openldap26-client-2.6.7 Open source LDAP client implementation
openpgm-5.2.122_6 Implementation of the PGM reliable multicast protocol
openssh-portable-9.7.p1,1 The portable version of OpenBSD's OpenSSH
openssl-3.0.13_3,1 TLSv1.3 capable SSL and crypto library
openvpn-2.6.10 Secure IP/Ethernet tunnel daemon
opnsense-24.1.7_4 OPNsense community release
opnsense-installer-24.1 OPNsense installer scripts
opnsense-lang-23.7.11 OPNsense translations
opnsense-update-24.1.5_1 OPNsense update utilities
os-OPNProxy-1.0.5_1 OPNsense proxy additions
os-bind-1.31 BIND domain name service
os-cache-1.0_1 Webserver cache
os-ddclient-1.21_2 Dynamic DNS client
os-lldpd-1.1_2 LLDP allows you to know exactly on which port is a server
os-netdata-1.2_1 Real-time performance monitoring
os-ntopng-1.3 Traffic Analysis and Flow Collection
os-qemu-guest-agent-1.2 QEMU Guest Agent for OPNsense
os-redis-1.1_2 Redis DB
os-rfc2136-1.8_2 RFC-2136 Support
os-squid-1.0_2 Squid is a caching proxy for the web
os-theme-cicada-1.35 The cicada theme - dark grey onyx
p5-Data-Validate-IP-0.27 Common data validation methods for IPs
p5-NetAddr-IP-4.079 Work with IPv4 and IPv6 addresses and subnets
pam_opnsense-24.1 OPNsense shared authentication system using PAM
pcre2-10.43 Perl Compatible Regular Expressions library, version 2
perl5-5.36.3_1 Practical Extraction and Report Language
pftop-0.10_1 Utility for real-time display of statistics for pf
php82-8.2.19 PHP Scripting Language (8.2.X branch)
php82-ctype-8.2.19 The ctype shared extension for php
php82-curl-8.2.19 The curl shared extension for php
php82-dom-8.2.19 The dom shared extension for php
php82-filter-8.2.19 The filter shared extension for php
php82-gettext-8.2.19 The gettext shared extension for php
php82-google-api-php-client-2.4.0 Google APIs Client Library for PHP
php82-ldap-8.2.19 The ldap shared extension for php
php82-mbstring-8.2.19 The mbstring shared extension for php
php82-opcache-8.2.19 The opcache shared extension for php
php82-pcntl-8.2.19 The pcntl shared extension for php
php82-pdo-8.2.19 The pdo shared extension for php
php82-pear-1.10.13 PEAR framework for PHP
php82-pear-Crypt_CHAP-1.5.0_1 PEAR class for generating CHAP packets
php82-pecl-mcrypt-1.0.7 PHP extension for mcrypt, removed in PHP 7.2
php82-pecl-radius-1.4.0b1_2 Radius client library for PHP
php82-phalcon-5.6.2 Phalcon PHP Framework written in C-language
php82-phpseclib-3.0.36 PHP Secure Communications Library
php82-session-8.2.19 The session shared extension for php
php82-simplexml-8.2.19 The simplexml shared extension for php
php82-sockets-8.2.19 The sockets shared extension for php
php82-sqlite3-8.2.19 The sqlite3 shared extension for php
php82-xml-8.2.19 The xml shared extension for php
php82-zlib-8.2.19 The zlib shared extension for php
pkcs11-helper-1.29.0_3 Helper library for multiple PKCS#11 providers
pkg-1.19.2_1 Package manager
pkgconf-2.2.0,1 Utility to help to configure compiler and linker flags
protobuf-24.4,1 Data interchange format library
protobuf-c-1.4.1_2 Code generator and libraries to use Protocol Buffers from pure C
psutils-1.17_6 Utilities for manipulating PostScript documents
py311-Babel-2.14.0 Collection of tools for internationalizing Python applications
py311-Jinja2-3.1.3 Fast and easy to use stand-alone template engine
py311-aioquic-0.9.25 Implementation of QUIC and HTTP/3
py311-anyio-4.3.0 High level compatibility layer for multiple asynchronous event loop implementations
py311-async_generator-1.10 Tiny library to add async generators to Python 3.5
py311-attrs-23.2.0 Python attributes without boilerplate
py311-boto3-1.34.88 AWS SDK for Python
py311-botocore-1.34.88 Low-level, core functionality of boto 3
py311-bottleneck-1.3.8_1 Collection of fast NumPy array functions written in Cython
py311-certifi-2024.2.2_1 Mozilla SSL certificates
py311-cffi-1.16.0 Foreign Function Interface for Python calling C code
py311-charset-normalizer-3.3.2_1 Real First Universal Charset Detector
py311-cryptography-42.0.5_2,1 Cryptographic recipes and primitives for Python developers
py311-dnspython-2.6.1,1 DNS toolkit for Python
py311-duckdb-0.10.2 In-process SQL OLAP database management system
py311-h11-0.14.0 Pure-Python, bring-your-own-I/O implementation of HTTP/1.1
py311-h2-4.1.0 HTTP/2 State-Machine based protocol implementation
py311-hpack-4.0.0 HTTP/2 header encoding (HPACK) logic implementation
py311-httpcore-1.0.5 Minimal low-level HTTP client
py311-httpx-0.27.0_1 Next generation HTTP client
py311-hyperframe-6.0.0 Python module that decodes binary streams into HTTP/2 frames
py311-idna-3.7 Internationalized Domain Names in Applications (IDNA)
py311-jmespath-1.0.1_1 JSON Matching Expressions
py311-markupsafe-2.1.5_1 Implements XML/HTML/XHTML Markup safe string for Python
py311-netaddr-1.2.1 Manipulation of IPv4, IPv6, CIDR, EUI and MAC network addresses
py311-numexpr-2.9.0_1 Fast numerical array expression evaluator for Python and NumPy
py311-numpy-1.25.0_7,1 The New Numeric Extension to Python
py311-openssl-23.2.0,1 Python interface to the OpenSSL library
py311-outcome-1.3.0_1 Capture the outcome of Python function calls
py311-packaging-24.0 Core utilities for Python packages
py311-pandas-2.0.3_2,1 Flexible, high-performance data analysis in Python
py311-pyasn1-0.6.0 ASN.1 toolkit for Python
py311-pyasn1-modules-0.3.0 Collection of ASN.1 data structures for py-pyasn1
py311-pycparser-2.22 C parser in Python
py311-pylsqpack-0.3.18 Python wrapper for the ls-qpack QPACK library
py311-pysocks-1.7.1_1 Python SOCKS module
py311-python-dateutil-2.9.0 Extensions to the standard Python datetime module
py311-pytz-2024.1,1 World Timezone Definitions for Python
py311-redis-5.0.3_1 Python client for Redis key-value store
py311-requests-2.31.0_1 Python HTTP for Humans
py311-s3transfer-0.10.1_1 Amazon S3 Transfer Manager for Python
py311-service-identity-23.1.0 Service identity verification for pyOpenSSL & cryptography
py311-setuptools-63.1.0_1 Python packages installer
py311-six-1.16.0 Python 2 and 3 compatibility utilities
py311-sniffio-1.3.1 Sniff out which async library your code is running under
py311-socksio-1.0.0_1 Sans-I/O implementation of SOCKS4, SOCKS4A, and SOCKS5
py311-sortedcontainers-2.4.0 Python Sorted Container Types: SortedList, SortedDict, and SortedSet
py311-sqlite3-3.11.9_7 Standard Python binding to the SQLite3 library (Python 3.11)
py311-trio-0.25.0 Library for async concurrency and I/O
py311-tzdata-2024.1 Provider of IANA time zone data
py311-ujson-5.9.0 Ultra fast JSON encoder and decoder for Python
py311-urllib3-1.26.18_1,1 HTTP library with thread-safe connection pooling, file post, and more
py311-vici-5.9.11 Native Python interface for strongSwan's VICI protocol
py311-yaml-6.0.1 Python YAML parser
python311-3.11.9 Interpreted object-oriented programming language
qemu-guest-agent-9.0.0 QEMU CPU Emulator (guest agent)
radvd-2.19_3 Linux/BSD IPv6 router advertisement daemon
readline-8.2.10 Library for editing command lines as they are typed
redis-7.2.4_1 Persistent key-value database with built-in net interface
rrdtool-1.8.0_4 Round Robin Database Tools
samplicator-1.3.8.r1_1 Receives UDP datagrams and redistributes them to a set of receivers
sqlite3-3.45.1,1 SQL database engine in a C library
squid-6.9 HTTP Caching Proxy
squid-langpack-7.0.0.20240307 Language-specific error documents for Squid web cache
strongswan-5.9.14 Open Source IKEv2 IPsec-based VPN solution
sudo-1.9.15p5_4 Allow others to run commands as root
suricata-7.0.5_1 High Performance Network IDS, IPS and Security Monitoring engine
syslog-ng-4.7.1 Powerful syslogd replacement
uchardet-0.0.8_1 Universal charset detection library
unbound-1.20.0 Validating, recursive, and caching DNS resolver
wpa_supplicant-2.10_10 Supplicant (client) for WPA/802.1x protocols
zip-3.0_2 Create/update ZIP files compatible with PKZIP
zstd-1.5.6 Fast real-time compression algorithm
The problem - I can't loging on console OPNsense from Proxmox, but Web UI and SSH loging working perfect without problem.
(https://i.postimg.cc/BLSy35rS/2024-05-24-15-15-16.png) (https://postimg.cc/BLSy35rS)
In log file write this:
(https://i.postimg.cc/DJ4G8RkB/2024-05-24-15-21-34.png) (https://postimg.cc/DJ4G8RkB)
How fix this?
Are you typing your password into the console and not using copy/paste?
Quote from: julsssark on May 24, 2024, 06:11:04 PM
Are you typing your password into the console and not using copy/paste?
Yes, i always typing my password and never copy/paste.
Do you use a non-standard (read: not US English) keyboard layout?
Quote from: Patrick M. Hausen on May 24, 2024, 07:02:39 PM
Do you use a non-standard (read: not US English) keyboard layout?
In OPNsense i use only US English layout, but in the working system i have a second keyboard layout. BUT in console i typing login on US English, and of course password i typing on this layout.
Have you tried to log through the console from the SSH connection?
Quote from: FraLem on May 25, 2024, 09:08:33 AM
Have you tried to log through the console from the SSH connection?
No, i tried log to system.
Okay guys, I think the topic can be closed. Thanks to everyone who responded. Don't get me wrong, but the problem was solved almost by itself. What did I do and how was the problem solved? Nothing special, the only thing I did, after which the problem was solved, was I rebooted the VM not from the system inside, but from Proxmox itself. Since I rebooted the system itself with a command from the Web UI, but it had no effect. But the VM reboot command from Proxmox gave the result. There may have been some problem with Proxmox itself, but I can no longer find out, since I am not strong in Unix-like systems. Thank you all again, good luck to everyone! ;) ;) ;)
I have the same problem after updating to 24.1.6. I also use Proxmox.
Rebooting neither through OPNsense nor through Proxmox does not help.
Does anyone have any ideas on how to fix this?
Impossible to know what your configuration and setup is.
Start with basic diagnostics and post how far you go.