Topics - chucksense

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Topics - chucksense

Pages1

24.7, 24.10 Legacy Series / 24.7.9 - Can't login WebGUI with 2FA

November 20, 2024, 12:19:53 PM

Hi team,

Thanks for the update. After updating to 24.7.9 I get a user/password wrong error when trying to log into the WebGUI. I have 2FA enabled right after the password.

Rollback to 24.7.8 fixed the issue.

Thanks!

23.7 Legacy Series / configctl ipsec restart "crashes" ipsec

October 18, 2023, 08:07:50 PM

Hi there,

Every time I restart the ipsec/strongswan service, either from the Dashboard GUI or through CLI, the strongswan service does not start again.
I have tried different commands, and it's only restart that fails (stop + start works OK). Nothing on the ipsec/strongswan logs as the service never starts again.

Code Select


root@opnsense:~ # configctl ipsec restart
OK
And:
root@opnsense:~ # pluginctl -s strongswan restart
Service `strongswan' has been restarted.

I have tried adding a sleep on the actions file, but still not working (I have restarted the configd service).

Code Select


[restart]
command:/usr/local/etc/rc.d/strongswan onestop; /usr/bin/sleep 5; /usr/local/sbin/pluginctl -c ipsec
parameters:
type:script
message:IPsec service restart
description:Restart IPsec service

Any ideas? Happy to run some additional tests/provide logs.
Thanks!

23.7 Legacy Series / [SOLVED] 23.7.4 Slow interface boot - dhclient giving up

September 18, 2023, 09:33:18 PM

Dear all,
After the 23.7.4 update I'm having some issues after a reboot, as the WAN interface doesn't get an IP and therefore some of the services do not work properly. I've tried waiting 10+ minutes for the dhclient to get an IP but it doesn't work, need to go into the Interfaces --> Overview and force a DHCP renew, then everything starts to work as usual.
My WAN interface is VLAN 832 on a port connected to an ONT.

Code Select


/usr/local/etc/rc.bootup: The command '/sbin/dhclient -c '/var/etc/dhclient_wan.conf' -p '/var/run/dhclient.vlan083.pid' 'vlan083'' returned exit code '1', the output was 'vlan083: no link .............. giving up'	
/usr/local/etc/rc.reload_all: The command `/sbin/ifconfig 'igc1' mtu '9000'' failed to execute	
/usr/local/etc/rc.reload_all: The command `/sbin/ifconfig 'igc2' mtu '9000'' failed to execute	
/usr/local/etc/rc.reload_all: The command '/bin/kill -'TERM' '93260''(pid:/var/run/dhclient.vlan083.pid) returned exit code '1', the output was 'kill: 93260: No such process'	
unknown dhcp option value 0x5a	
/usr/local/etc/rc.newwanip: The command '/bin/kill -'TERM' '5274''(pid:/var/run/unbound.pid) returned exit code '1', the output was 'kill: 5274: No such process'

Any ideas?

Edit: Removed Certifiicate errors

23.7 Legacy Series / 23.7.3 Issues with IPv6 on wireguard

August 30, 2023, 02:35:11 PM

Hi Franco,
After upgrading to 23.7.3, checking the new wireguard logs, saw the following, and IPv6 on Wireguard is not working.

Code Select

 /usr/local/opnsense/scripts/Wireguard/wg-service-control.php: The command '/sbin/ifconfig 'wg1' 'fc00:xyza:abcd:ab01::4:1234/127' alias' returned exit code '1', the output was 'ifconfig: fc00:xyza:abcd:ab01::4:1234/127: bad value (width too large)'

/usr/local/opnsense/scripts/Wireguard/wg-service-control.php: The command '/sbin/route -q -n add -'-4' '10.1.1.1' -iface 'wg1'' returned exit code '64', the output was 'route: bad keyword: -4 route: usage: route [-46dnqtv] command [[modifiers] args]'

Might be caused by the backend rework, right? Happy to test if needed.

Thanks

Pages1