Messages

Hi.

We have noticed, that couple of days after upgrading OpnSense to current production version, CPU starts to be eating by something in user space. Process monitor says, that mostly is is consumed by php-cgi, but CPU usage on those procesess is no more than 3% (there is about 5 of them). But top command says, that CPU is used in 100%, with over 60% taken by user, about 1% for interrupt and the rest for system. Usage in user space is varying between 60-80%.

My installation is working on vmware hypervisor (ESXi 5.5) with 1 vCPUs (Xeon X3430 @2.4GHz). Currently running OpnSense 16.1.7.

What can be do to solve this issue? Thx in advance for any info and hint.

Yepp :) It works, thx Franco :)

Would be great to have possibility to manage RRD databases (backup, remove, etc).

Cheers!

Hi :)

I had for some time ago changed gateways on my system. Two old has been removed and three new has been added.
Now, when I go to Health monitoring subsystem and enter "Quality" page, I still see those old interfaces and don't know, how to remove them from my system.
On "Gateways" subsystem there is nothing related to those old interfaces anymore.

Can someone from You help me a bit with that? ;)
Thx in advance for every hint.

Cheers!

M.

Ok, System health is good enough :) Thx Franco :)

Meanwhile, is it possible to change the naming of interfaces there? Currently it shows interfaces as "OptX" and previously OpnSense shows interfaces by their descriptions ;) Would be great to keep this convention, if it is possible...

Best regards!

Hi.

After upgrading to current production version I've noticed, that RRD graphs are missing. Why? It was (at least for me) very important tool to monitor of behaviour in my network :( Now the only possibility is to look at traffic graphs, but  they doesn't keep historical data.

Is it possible to add something like RRD tool again to OpnSense? Or is possible to acquire such data for external analysis on other hosts?

Thanks in advance for every hint and solution.

Great :) Thanx, Franco!

Hi Guys :)

Is it possible to incorporate into production some indicator, if there will be a reboot necessary after upgrade, which will be visible _before_ clicking "Upgrade" button?

I think this will be very helpful for those system admins, which manages critical services, or important customers.
When no reboot is required, means no service will be disrupted during upgrade process (or the disruption is involved only with simple reloading services with duration of couple of seconds) and thus it can be performed at any time. Opposing this - upgrades with reboot requirements can be postponed until the lowest influence time range.

TYVMIA :)

Cheers!

Someone something? ;) Please...

Hi :)

Some of You probably know my case from this topic: https://forum.opnsense.org/index.php?topic=715.0 ;)

According to this networking schema, how to make such thing:

- redirect all web traffic from client's requests to specified IP address located in other VLAN?

Facts:
- client uses VLAN 2 (interface: OPT2) with network address of 172.20.110.0/24
- webserver, which I want to redirect all web traffic to him, uses VLAN 1 (interface: LAN), and have IP address 192.168.3.220.

I tried to use NAT for incoming connection to interface OPT2 and redirect to some other external IP (not used on this firewall) and it worked well, but (since I want to make this in closed environment) when I use internal IP address, this solution doesn't work - page will not open and browser show timeout.

My goal is to show on the client's machine specified webpage, when I want to tell him something, ie. he didn't pay his invoices ;)

Thanks in advance for any help and ideas.

Cheers!

Ok. After extensive work on configuration and sorting out problems we have come to point, that there is an issue with traffic shaper, when You use vmxnet3 drivers in virtual environment of vmWare ESXi server.

After changing NIC to E1000 - router seems to be working as planned.

Yes, of course. I have no ide, why :( Such same configuration I'm using in m0n0wall and it works pretty well.

Nope - still the same :(

Anyone have an idea, how to solve my problem? Still no luck :( Pipes simply doesn't works for me :(

Franco: thx a lot! This is what I need ;)

Now I can focus on pipes...

Thx remonboonstra for Your hints...

I give it a try...

I admit, I tried to enable captive portal, but I had some issues with enabling it (and with deleting profiles - got some errors)... I try to remove all settings and start over (this is my testing environment, so I can destroy it ;)).

BTW: is it possible to install VMWare Tools on OPNSense? ;) Perl is already installed, but system is lack of "compat6x_amd64" package from FreeBSD ports.


EDIT:
- deleted all captive portal profiles,
- created single rule with direction set to "both"
- edited pipes to set mask for "destination" and "source"
But still not working... I think there is something broken in pipes implementation :(