Topics

Up time about 2 hours, seems to work ok but ue0 interface always going up/down.

I need to pass port 44158 to 192.168.0.126, so I set up a rule under, Firewall: Rules: WAN
Making sure it is at the top of the list above GeoIP



Now some connections are passed as below



And some are blocked by GeoIP as below



Any ideas what I have done wrong?

Thank all

Title says it all really, just cant figure it out, I use GeoIP blocking to block all countries except my own, works great however I now need to allow all countries to access 192.168.0.126 on port 12345.
any ideas?
Thanks all

All of a sudden the wan keeps dropping and I lose internet until the box is rebooted, not changed any settings for over week (since my last post) this started happening yesterday, any ideas where to start?

Thanks all

Code Select Expand

2022-04-03T09:38:36 Error opnsense /usr/local/etc/rc.linkup: DEVD: Ethernet attached event for dynamic wan(re0)
2022-04-03T09:38:32 Error opnsense /usr/local/etc/rc.linkup: ROUTING: entering configure using 'wan'
2022-04-03T09:38:32 Critical dhclient exiting.
2022-04-03T09:38:32 Error dhclient connection closed
2022-04-03T09:38:32 Error opnsense /usr/local/etc/rc.linkup: The command '/sbin/dhclient -c '/var/etc/dhclient_wan.conf' -p '/var/run/dhclient.re0.pid' 're0'' returned exit code '15', the output was 'DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPREQUEST on re0 to 255.255.255.255 port 67 re0 link state up -> down DHCPREQUEST on re0 to 255.255.255.255 port 67 re0 link state down -> up DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPREQUEST on re0 to 255.255.255.255 port 67 re0 link state up -> down DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 2 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 3 re0 link state down -> up DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 4 DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 9 DHCPREQUEST on re0 to 255.255.255.255 port 67 re0 link state up -> down DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 21 re0 link state down -> up DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPREQUEST on re0 to 255.255.255.255 port 67 re0 link state up -> down DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 1 re0 link state down -> up DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 2 DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 9 DHCPREQUEST on re0 to 255.255.255.255 port 67 re0 link state up -> down DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 12 re0 link state down -> up DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 14 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 2 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 2 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 2 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 2 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 4 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 5 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 9 re0 link state up -> down re0 link state down -> up DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 4 DHCPREQUEST on re0 to 255.255.255.255 port 67 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 12 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 2 DHCPDISCOVER on re0 to 255.255.255.255 port 67 interval 2'
2022-04-03T09:38:32 Error opnsense /usr/local/etc/rc.linkup: DEVD: Ethernet detached event for dynamic wan(re0)
2022-04-03T09:38:31 Error configctl error in configd communication Traceback (most recent call last): File "/usr/local/sbin/configctl", line 66, in exec_config_cmd line = sock.recv(65536).decode() socket.timeout: timed out
2022-04-03T09:36:32 Error opnsense /usr/local/etc/rc.linkup: DEVD: Ethernet attached event for dynamic wan(re0)
2022-04-03T09:36:28 Error opnsense /usr/local/etc/rc.linkup: Clearing states for stale wan route on re0
2022-04-03T09:36:28 Critical dhclient exiting.
2022-04-03T09:36:28 Error dhclient connection closed
2022-04-03T09:36:28 Error opnsense /usr/local/etc/rc.linkup: DEVD: Ethernet detached event for dynamic wan(re0)

I tried to revert and got the error below.

Code Select Expand

root@OPNsense:~ # opnsense-revert -r 21.7.8 opnsense
Fetching opnsense.txz: ..[fetch: https://pkg.opnsense.org/FreeBSD:13:amd64/22.1/MINT/21.7.8/OpenSSL/Latest/opnsense.txz.sig: Not Found] failed
Is it possible?

I keep getting this error when checking for updates, is this normal?

Code Select Expand

***GOT REQUEST TO CHECK FOR UPDATES***
Currently running OPNsense 22.1.2_1 (amd64/OpenSSL) at Sun Mar 20 19:53:09 GMT 2022
Fetching changelog information, please wait... fetch: transfer timed out
Updating OPNsense repository catalogue...
pkg: https://pkg.opnsense.org/FreeBSD:13:amd64/22.1/latest/meta.txz: Operation timed out
repository OPNsense has no meta file, using default settings
pkg: https://pkg.opnsense.org/FreeBSD:13:amd64/22.1/latest/packagesite.txz: Operation timed out
Unable to update repository OPNsense
Error updating repositories!
pkg: Repository OPNsense cannot be opened. 'pkg update' required
Checking integrity... done (0 conflicting)
Your packages are up to date.
***DONE***

Since updating to 21.7 the firewall log now has IPv6 RFC4890 requirements (ICMP) on every other line.



Any ideas how get rid?

Thanks all

When I select reboot from dashboard it always freezes at this point and I have to power off/on to get it boot again, I have left it for over an hour before but nothing.

Any ideas?  (v21.1.5)

Thanks all

I have a TP-Link VDSL modem 192.168.1.1 connected to my opnsense box 192.168.0.1 that is connected to my network, everything works perfect, port forwarding etc until the internet drops which happens a lot here.

Once the internet is back up port forwarding no longer works, I can see the connection in the firewall log, port 1194 for my VPN for example, but the VPN never connects, same for other services running on 443, 80 etc
If I reboot opnsense all starts working again.

Any ideas?
Thanks all

Any one use a good reliable Gigabit ethernet adaptor? I am currently using a Lenovo 03X6903 USB 3 but it only shows up as 100baseTX <half-duplex> in the Lobby, looking for one that will connect at 1000mbps.

Thanks all
:)

After updating to 21.1.3 my box runs about 8°c cooler and I don't think I've heard the system fan come on once yet.
Thanks guys  ;)

I have enabled the ruleset 'emerging-scan.rules' in intrusion detection, I get a few blocked as screenshot (I assume they are blocked scans) but when I scan my ip address with https://pentest-tools.com/network-vulnerability-scanning/tcp-port-scanner-online-nmap# the open ports show up.

Any ideas what I'm doing wrong?

Just curious to know which rulesets you use? I know it's "based on your needs" but I'm wondering how far to go, here are my current selections.

I am getting these errors continuously scrolling the screen, any ideas?
Thanks all

Under Services > Intrusion Detection > Administration is there an easy way to set all enabled to Drop, I have spent the best part of an hour searching to no avail, the list 60814 entries and I can show max 1000 per page, and if I select Filters > status/enabled nothing changes.

I'm sure I'm missing something obvious but just can't find it.

Thanks all.