Messages

Hi,
I asked this question quite a while ago and would like to reopen it (https://forum.opnsense.org/index.php?topic=16819.msg76586#msg76586).
My current Servers are all running on systemd. So I do not have a syslog facility anymore, meaning I cannot accept the remote logs from my firewall anymore.

I have installed rsyslog, which is able to open a connection at port 514. Hower, there it stops. The "snipped" given in the post above is unclear where to go. If I creeate an "frule" file with that contents, rsyslog just throws an error message.

Can anybody help me how to configure rsyslog to receive the messages from the firewall correctly?
Thank you.

Well, to be honest, I have visited the "status tab" for the first time, so.... ;-)
But most problems are sitting in front of the screen.

When I disabled the pluging and reenabled it, the error messages where gone.

Hi
I found that the ACME client seems to have more problems. Whenever I change anything, there is this error message
{
  "result": "failed",
  "validations": {
    "acmeclient.validations.validation.3e06161a-7380-40a9-b49b-cfdc8f24e65d.tlsalpn_acme_interface": "option not in list"
  }
}

Coming up. When I go to "settings" and click on "check settings" 1. First a message "Correct Settings" comes up and immediately over this windows "Your configuration is correct" pops up.

Any ideas how to resolve?

Great Thanks! Worked! Bit hard to find if you don't know where to look for (I would have expected it somewhere in the Plugin tab).
Cheers

Hi
I had the unbound plus plugin installed some time ago. Now it is unavailable and listed in the packages "red". But I cannot remove it...
How can I remove this annoying red message?
Thank you.

Hi,
I was trying to change an option with the ACME client and found that under "zertificates" the "save" does not have any funciton anymore.

Additonally, when I try to remove a (misconfigured) certificate in the "zertificate" list with the trashcan button I get this error message:

/usr/local/opnsense/mvc/app/models/OPNsense/Base/BaseModel.php:572: [OPNsense\AcmeClient\AcmeClient:validations.validation.3e06161a-7380-40a9-b49b-cfdc8f24e65d.tlsalpn_acme_interface] option not in list

Needless to say, that it is not removed.

What happened here and how can I fix it?

Hi
I have installed the unbound plus extension quite a while ago but it seems to have vanished. I get a "missing" message in the extension overview, but I am unable to remove it.
Is there any method to remove this irritating message?
Thank you.

Well Android 8.1.1 is not exactly old, but yes, it is not 11. However, with Android 11 it does not work either.
Finally, I found the problem and instead of using the "cert" file, I use "fullchain.pem" and then it works well with rocket.chat app.

I just tried it, works perfectly, thanks a bunch!

Unreleated, or half-releated: It is the "fullchain" and the "CA" exported. I am trying to setup a reverse proxy with NGINX with Rocket.Chat. With any browser it works, but the Android app sais "trust anchor not found". Is that an android problem or do I need to "display" the fullchain.pem somehow, as I cannot find the right option to get this file "displayed"?

Okay (actually a LINK on the  help page would be EXTREMELY helpful), I have to login to the command line and use the public key, correct?

I prefer to stay in one context, e.g. in the webinterface (I like the webinterface...)

Thank you.

Hi
I could get the acme plugin up and running (this is BTW exactly what I was trying to acomplish for some time, but misunderstood the intention of the plugin...). HOWEVER, I try to automatize sending the certificate via SFTP to the host.

There is no password or key to be entered in the automation fields, only a user name. When I try it, I get "host does not allow access with this user name" (well, it needs a certificate or a password, DUH!).
I am misunderstanding here how that works? How can I get to transfer the certificate automatically? Do I have to setup the host in a special way?
Thanks.

Hi
so when using "ps auxvw" this is little helpful, as the command line is cut so I cannot see the process.

So when I use

Code Select Expand

ps auxwm I get a much clearer picture. Unfortunately, the "m" option does not, as it is supposed to do, sort by memory usage.

Going manually through it, "clamd" uses about 40.6% (!), maltrail with several processes 11.6 and 3x 12.2%

I use clamd with i-cap for squid, but I am amazed about the memory usage. As I am using on other servers clamd (among other virus scanners) for mail scanning, this seems to be a lot of memory to use.
I removed the plugin, however, it is interestingly still shown in the "ps" output.
The appliance only has 4GB ram, however, as it runs headless I am assuming that should be more than enough.
After a reboot the memory usage is more to normal "Swap=0".

Thanks.

Hi
I use an appliance from Deciso with my OPNSense. I am wondering why I get a swap use of about 70% (5GB).
I am pretty sure that it is not a very good idea to Swap on the SSD all the time, but I do not find a good overview, which program is actually swaping. Maybe I just overlooked it but would apreaciate a hint.
Cheers

Hi
From time to time I see in the to right corner of the Dashboard "you have x unread messages". Most of the times the messages are too long to be displayed correctly. However, once I click them, they vanish.
Where can I read them again? This is actually pretty inconvenient.
Cheers