Messages

Thank you Franco, this might be a smarter approach than my solution.
I simply renamed the database though the shell and then upgrade worked like a charm. Will delete it now.
;D

Same here, I hope this is getting fixed, workarounded so the upgrade is doable without getting onsite.

Hi,
I am just guessing but looking at the error, could it be that for some reason you switched to the business tree in Firmware settings and simply do not have a business license?

Thank you IHK

Thank you,
I am aware about that, what I am interested in is if there is an automatism removing all devices which are offline for more than x days.
Question is if that is/will be implemented.

I see that Zenarmour is adding devices more than once. This could be because of changing MAC addresses for example in Windows and Android.
Is there an automatically cleanup process implemented that removes sale devices, or is the only option to delete them one by one?

Was genau geht denn nicht?
Mir fällt nur auf, dass Deine WAN IP ja auch aus einem 192.168.x.x Netz ist, das sind ja die Private Netze und da gibt es soweit ich weiß ja am WAN Port eine Regel die automatisch alle privaten Netze blockt. Und wenn jetzt vor Deiner OPnsene noch ein  router steht der natted, dann hat der auch eine IP aus dem 192.168.10.x Netz und die Opnsense blockt dann diesen, und die Antwort aus dem Internet wird gedropped.

If it still crashes after applying a backup, it probably has other reasons. Could it be that there is a hardware issue (defective disk, RAM, CPU)?

For me MFA works like a charm.
What I did was I extendend the Grace Period to 15 seconds so the old token is valid for 15 seconds after the new one is issued.
If you do not change the config you type in the token code that is on your device followed by the password.
For Example the password is Password1! you type 23456789Password1! with no space in between.
Hope that helps.

Hi,
I do have a similar issue that haproxy does not start as I am not using IP Addresses here.
I workarounded it by using monit to check for the service and let monit restart those. So it might take some minutes before haproxy starts but at the end the start is done automatically.

Hi,
there is a nicer tutorial what to do in this case here:
https://forum.opnsense.org/index.php?topic=24174.msg115632#msg115632
amichel

Hi these questions comes into my mind.
Are you sure that your PC is on the correct VLAN?
Do you get an IP Address by the DHCP server?
Did you configure this on your WLAN router?
I had to configure this also on my WLAN Access Point and on my switches to tag the Packets correctly.

amichel

Hi,
is there any reason why you do not access the server directly from internal?
You simply need to create a DNS zone mydomain.com on a DNS server which your internal devices are pointing to. And then just add the A record of your server with the internal IP Address.

https://itfreetraining.com/lesson/splitbrain/

cheers,
andreas

Hi,
iin my case I use different Settings.
In Phase I use "default " as connection method instead "response only"
In Phase 2 I use Sha265 as hash algorithm, you use none.
My Azure Settings are attached. Hope that helps

If it helps here is a nice article by teosoft who described the process:
https://forum.opnsense.org/index.php?topic=24174.msg115632#msg115632