Print Page - nach dem Update 25.1.7

Title: nach dem Update 25.1.7_4 keine WEB UI
Post by: Donbruno on June 08, 2025, 12:23:55 PM

Hallo,

nach dem ich ein Update auf OPNsense 25.1.7_4 durchgeführt habe, geht meine Web UI nicht mehr.

es kommt auf https://192.168.178.1/index.php -- >

Code Select

Server Error Sorry, but something went wrong on our side. There is nothing you can do except waiting until we fix the issue.

auf fw.xxx.xx internes Routing auf nginx, kommt gar nichts, nicht erreichbar. Die Zertificate sind über letsencryped gemacht. und weiterleitung von http auf https

auf der Serial Konsole kommt, beim Neustart der Dienste:

Code Select


Writing firmware settings: FreeBSD OPNsense SunnyValley
Writing trust files...done.
Scanning /usr/share/certs/untrusted for certificates...
Scanning /usr/share/certs/trusted for certificates...
Scanning /usr/local/share/certs for certificates...
certctl: No changes to trust store were made.
Writing trust bundles...done.
Configuring login behaviour...done.
Configuring cron...done.
Setting timezone: Europe/Berlin
Setting hostname: xxxxxxxxxxxxxxx
Generating /etc/resolv.conf...done.
Generating /etc/hosts...done.
Configuring loopback interface...done.
Configuring LAGG interfaces...done.
Configuring VLAN interfaces...done.
Configuring LAN interface...done.
Configuring WLAN interface...done.
Configuring wg1 interface...done.
Configuring WAN interface...done.
Setting up routes...done.
Setting up gateway monitor...done.
Configuring firewall.......done.
Starting DHCPv4 service...done.
Starting NTP service...done.
Starting Unbound DNS...done.
Starting web GUI...done.
Syncing OpenVPN settings...done.
Configuring WireGuard VPN...done.
Stopping crowdsec_firewall.
Stopping ddclient.
Waiting for PIDS: 11484.
Stopping crowdsec.
Waiting for PIDS: 38223.
Stopping php_fpm.
Waiting for PIDS: 98676.
Stopping nginx.
Waiting for PIDS: 95260.
Stopping acme_http_challenge.
Waiting for PIDS: 84738.
Stopping suricata.
Waiting for PIDS: 65654983.246009 [ 294] generic_netmap_unregister Emulated adapter for wg1 deactivated
983.253829 [1072] generic_netmap_dtor       Emulated netmap adapter for wg1 destroyed
983.334633 [ 294] generic_netmap_unregister Emulated adapter for pppoe1 deactivated
983.342694 [1072] generic_netmap_dtor       Emulated netmap adapter for pppoe1 destroyed
.
Stopping dnscrypt_proxy.
Waiting for PIDS: 42411, 42411.
Stopping eastpect.
Waiting for PIDS: 51924.
No matching processes were found
crowdsec not running? (check /var/run/crowdsec_daemon.pid).
crowdsec_firewall is not running.
Loaded: 141 parsers, 10 postoverflows, 761 scenarios, 8 contexts, 4 appsec-configs, 114 appsec-rules, 139 collections
Starting crowdsec.
Starting eastpect.
dnscrypt_proxy already running?  (pid=27807).
Starting suricata.
Info: conf-yaml-loader: Including configuration file installed_rules.yaml.
Info: conf-yaml-loader: Configuration node 'rule-files' redefined.
Info: conf-yaml-loader: Including configuration file custom.yaml.
rmdir: /var/etc/acme-client/home/deploy: Not a directory
rmdir: /var/etc/acme-client/home/dnsapi: Not a directory
rmdir: /var/etc/acme-client/home/notify: Not a directory
Starting acme_http_challenge.
sh: /usr/local/etc/rc.d/php-fpm: not found
Performing sanity check on nginx configuration:
nginx: the configuration file /usr/local/etc/nginx/nginx.conf syntax is ok
nginx: configuration file /usr/local/etc/nginx/nginx.conf test is successful
Starting nginx.
Performing sanity check on php-fpm configuration:
[08-Jun-2025 12:19:51] NOTICE: configuration file /usr/local/etc/php-fpm.conf test is successful
Starting php_fpm.
crowdsec already running?  (pid=3298).
Starting ddclient.
crowdsec_firewall already running?  (pid=8175).

ein ping an 8.8.8.8 geht raus...

Kann mir da einer helfen?

Gruß
Bruno

Title: Re: nach dem Update 25.1.7_4 keine WEB UI
Post by: Patrick M. Hausen on June 08, 2025, 01:03:48 PM

Vielleicht blockt dich dein Crowdsec? Hast du denn für die lokalen Netze die Whitelist eingerichtet wie in der Doku?

https://app.crowdsec.net/hub/author/crowdsecurity/log-parsers/whitelists

Title: Re: nach dem Update 25.1.7_4 keine WEB UI
Post by: Donbruno on June 08, 2025, 01:18:34 PM

habs eingetragen und gerebootet... gleicher effekt...

kann man den einzelne Dienste in der Konsole stoppnen?

Title: Re: nach dem Update 25.1.7_4 keine WEB UI
Post by: Donbruno on June 08, 2025, 01:43:10 PM

Quote from: Donbruno on June 08, 2025, 01:18:34 PMhabs eingetragen und gerebootet... gleicher effekt...

kann man den einzelne Dienste in der Konsole stoppnen?

Code Select

root@fw:~ # service -e
/usr/local/etc/rc.d/syslog-ng
/etc/rc.d/hostid
/etc/rc.d/hostid_save
/etc/rc.d/kldxref
/etc/rc.d/var_run
/etc/rc.d/devmatch
/etc/rc.d/cleanvar
/etc/rc.d/rctl
/etc/rc.d/ip6addrctl
/etc/rc.d/mixer
/etc/rc.d/netif
/etc/rc.d/devd
/etc/rc.d/resolv
/etc/rc.d/virecover
/etc/rc.d/newsyslog
/etc/rc.d/dmesg
/etc/rc.d/gptboot
/etc/rc.d/motd
/etc/rc.d/os-release
/etc/rc.d/syslogd
/usr/local/etc/rc.d/oscrowdsec
/etc/rc.d/savecore
/usr/local/etc/rc.d/dnscrypt-proxy
/usr/local/etc/rc.d/eastpect
/usr/local/etc/rc.d/acme_http_challenge
/usr/local/etc/rc.d/suricata
/etc/rc.d/utx
/etc/rc.d/cron
/usr/local/etc/rc.d/ddclient
/usr/local/etc/rc.d/crowdsec
/usr/local/etc/rc.d/nginx
/usr/local/etc/rc.d/php_fpm
/etc/rc.d/bgfsck
/usr/local/etc/rc.d/crowdsec_firewall

Title: Re: nach dem Update 25.1.7_4 keine WEB UI
Post by: Donbruno on June 08, 2025, 02:02:29 PM

ok diese Page die dargstellt wird, befindet sich im Verzeichnis vom NGINX...

OPNsense Forum

International Forums => German - Deutsch => Topic started by: Donbruno on June 08, 2025, 12:23:55 PM