OPNsense Forum
English Forums => Tutorials and FAQs => Topic started by: Minskaya2 on March 10, 2024, 08:02:24 pm
-
Hello every one,
I have installed my opnsense box a few time ago and since the beginning i have an issue with the android devices on my network.
They are all connected to wifi by an access point connected by ethernet on my network.
If we use them to browse with http/https sites, all is fine . Youtube App is also working.
But a lot other apps are not working. It seems theses apps are having some time out : bank app, Deezer app, Microsoft authenticator, ...
As soon i deconnect the device from wifi they are working properly.
All the phones and tablet are concerned.
What confuses me it's the lack of logs to make a diagnostic: i don't see in the firewall logs any blocked queries for these devices when i made some test, neither in the dns logs.
Anybody could give me some advice to investigate my problem as i am searching from several months without any success.
I have already checked my firewal rules, dns configuration, ipV6 configuration.
I have made a lot of tries, all have failed. Thanks to the backup configuration functionality.
I thank in advance everyone who agrees to help me because I have exhausted all my ideas.
Mins
-
No one has an idea of what i can do to log more accurately what's happen between a specific device and my router while i make some tests to diagnose my problem ?
Mins
-
Ping
-
The problem is that there are too many variables to consider and nobody knows your setup. You need to narrow down the problem, post your relevant setup. if you don't know what is relevant, imagine how everyone else in the forum is unknowing of it :)
I'd start with DNS. What's your DNS setup? The whole of it: what provides DNS to your network (is it OPN dhcp, unbound, dnsmasq, pi-hole in another device), what is your network infra like, VLANs, switches, etc.
And yes, there are separate logs for separate services. So my advice is grab a pc/laptop into the wifi and start diagnosing from it. Ideally not Windows (why I hear you ask? because I for one don't know how to use diagnostics with commands from it).
-
Hi,
I'm aware my problem is not easy to investigate.
That's why my last question is what i can activate as logs in my opnsense box to see where the trouble begins because currently i see no request failed neither in dns or firewall logs.
My setup is this one :
- my opnsense box is a little vault protectli like this one : https://eu.protectli.com/vault-4-port/ My mistake was to think opnsense is an all in box system and the dns was provided.
- the Dns is UnboundDns running on the vault
- the vault is linked to an access point netgear WAX 214 like this one https://www.netgear.com/business/wifi/access-points/wax214/
- i don't us any vlan
What i noticed is the problem seems to affect all the android devices using wifi.
For example when i connect a smartphone to my pc to diagnose the problem using adb, i used to share the pc network connection to the device and the problem suddenly vanished.
All the devices acquire an ip v4 and ip v6 from the dhcp running on the vault but I haven't been able to determine if the issue is related to ipv6 or not but ping -4 and ping -6 to google are ok.
I know this is a difficult question so i thank you very much for any help you can provide.
Mins
-
Different services each has its own log. They are mostly in /var/log/. For instance Unbound is /var/log/resolver/latest.log. This one has a UI to look at too. Then there are settings for the service to increase the verbosity and include additional messages: Services > Unbound DNS > Advanced. There you can dial up the logging whilst diagnosing. Uses more storage so be sure to reduce it later.
So if you were to diagnose DNS, you could increase this logging for failures like NXDOMAIN. If you can see the name resolution when using the app, then you know the name resolution part is OK.
Then you can move to the firewall side. Similarly you can look in the UI for the incoming requests.
Additional logging which is default off is in System > Settings > General. Again, careful with storage. Go back to defaults afterwards.Tooltips will help.
Finally, the problem could be with IPv6 which I don't use, so can't advise on that.
-
Could the DNS silently drop the queries ?
I observe the clients waiting a long time before displaying an error as if they were waiting the name resolution without never getting it.
In case there is an active functionality dropping the queries (i think a kind of adblock), Would this cause this kind of issue ?
Mins
-
I have increased the loglevel and i am trying to forward them to another host with some sort of kibana to analyse them more easily
Work still in progress ...
Mins
-
> Could the DNS silently drop the queries ?
Not by default.
You should describe your full infrastructure setup. There might be other elements in play.
Everybody else can just plug a wireless AP into a switch that is connected to OPN by ethernet and has no problems:
Internet -> WAN - OPN - LAN-> switch -> AP -> wifi clients
|
---------------> wired clients
-
Indeed that's exactly my setup :
Internet -> WAN - OPN - LAN-> switch -> AP -> wifi clients
| |
| ---------------> wired clients
- OPT1-> Synology