Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - franco

Pages1 2 3 ... 1299
#1
26.1 Series / Re: OpnSense 25.7.11_9 upgrade to 26.1 fails
January 30, 2026, 11:21:36 PM
QuoteFetching pkg-2.3.1_1: .......... done
pkg-2.5.1: already unlocked
Checking integrity... done (0 conflicting)
Nothing to do.

Is that a new upstream bug?  It should reinstall here and our version does:

QuoteNo packages are required to be fetched.
Integrity check was successful.
pkg-2.3.1_1: already unlocked
Updating OPNsense repository catalogue...
OPNsense repository is up to date.
All repositories are up to date.
Checking integrity... done (0 conflicting)
The following 1 package(s) will be affected (of 0 checked):

Installed packages to be REINSTALLED:
   pkg-2.3.1_1

Number of packages to be reinstalled: 1
[1/1] Reinstalling pkg-2.3.1_1...
[1/1] Extracting pkg-2.3.1_1: .......... done
Checking integrity... done (0 conflicting)

Anyway I'm glad you could solve it.  Upgrading with the wrong pkg version might have been devastating.


Cheers,
Franco
#2
26.1 Series / Re: MiniUPNPD
January 30, 2026, 11:18:37 PM
I think I found it.  Looks like a feature removal gone wrong:

# opnsense-patch https://github.com/opnsense/core/commit/311184daa8
# /usr/local/etc/rc.filter_configure

It should bring back the required anchors.


Cheers,
Franco
#3
25.7, 25.10 Series / Re: Dnsmasq stops occasionaly
January 30, 2026, 09:49:00 PM
> No change in behavior with the older version...

Well, it's a newer version.  Did you restart Dnsmasq to be sure?

We can always try the latest development version, but it looks a bit like chasing ghosts at the moment.


Cheers,
Franco
#4
25.1, 25.4 Series / Re: Community to Business
January 30, 2026, 09:47:17 PM
Stay on 25.7.x or switch from there to 25.10.x. If you switch to 26.1 you'll have to wait for 26.4 to arrive.


Cheers,
Franco
#5
26.1 Series / Re: OpnSense 25.7.11_9 upgrade to 26.1 fails
January 30, 2026, 09:39:47 PM
> The Package manager "pkg" is incompatible and needs a reinstall.

Go to Firmware: Packages tab and click reinstall button for "pkg". You probably have a bad one from FreeBSD.

After that try the upgrade again.


Cheers,
Franco
#6
25.7, 25.10 Series / Re: [SOLVED] hostwatch at 100% CPU
January 30, 2026, 08:29:47 PM
The .11 in 26.1_4 enforces the proper cleanup now. Just make sure to restart after update.


Cheers,
Franco
#7
26.1 Series / Re: Identity Association IPv6 mode impossible to apply
January 30, 2026, 05:47:39 PM
> 1. Will the option "Track interface (legacy)" stay and is the (legacy) just meant to tell that's the "old" way, or is this expected to disappear  some time in the future?

It will likely disappear when ISC-DHCP plugin will be removed, but that's not before 2027/28 in any case unless something more serious happens that would mean to prohibit use of the EoL ISC-DHCP but I doubt it.

> 2. I was under the assumption that GigaNetz and/or most ISP use dynamic prefixes? Or am I wrong here and basically "The ability to forward DHCPv6 PD to downstream routers from OPNsense is only in ISC-DHCP and Kea" is enough here.

That's sadly true. We'll tinker with Kea more now that we don't have ISC-DHCP to worry about as much. Probably changes and improvements coming for 26.7 and beyond. We try to cluster our work nowadays which seems to be more effective in terms of long term gains. That's why Kea was put on the backseat for Dnsmasq.


Cheers,
Franco
#8
26.1 Series / Re: 26.1_4: Siproxd 1.1.0 not possible?
January 30, 2026, 05:44:37 PM
In 26.1.1 we'll see the error in the console to fix it immediately upon report.  Something that the hunt for the interface settings migration error taught us.

FWIW, the error was probably in the plugin for a long time.


Cheers,
Franco
#9
26.1 Series / Re: Identity Association IPv6 mode impossible to apply
January 30, 2026, 05:11:01 PM
Simple. The ability to forward DHCPv6 PD to downstream routers from OPNsense is only in ISC-DHCP and Kea. In Kea there is no integration for dynamic prefixes. Dnsmasq does not support it at all.


Cheers,
Franco
#10
26.1 Series / Re: hostwatch db grows rapidly
January 30, 2026, 04:51:51 PM
Hotfix is available now for everyone. Make sure to restart hostwatch to ensure the correct version is running since there is no reboot.


Cheers,
Franco
#11
Announcements / Re: OPNsense 26.1 released
January 30, 2026, 04:48:28 PM
A hotfix release was issued as 26.1_4:

o interfaces: host discovery: make sure the full dump includes NDP output on fallback
o interfaces: fix migration for IPv6 no-release option
o firewall: FilterBaseController requires Base\UserException
o firewall: fix typo with sprintf() with DNAT rule
o ports: hostwatch 1.0.11
#12
25.1, 25.4 Series / Re: default hw.vtnet.csum_disable=1 causes network slowness
January 30, 2026, 04:28:53 PM
> - https://reviews.freebsd.org/D51475 sctp, tcp, udp: improve deferred computation of checksums

% git describe 2927ebde300
25.7.5-20-g2927ebde3001

> - https://reviews.freebsd.org/D51686 vtnet: fix translation between mbuf and virtio flags

% git describe 52cbb08e60e
25.7.5-6-g52cbb08e60ed

That means both went into 25.7.8 in November.


Cheers,
Franco

#13
26.1 Series / Re: Track Interface with 26.1
January 30, 2026, 04:10:54 PM
Should be this one:

# opnsense-patch https://github.com/opnsense/core/commit/c264c905


Cheers,
Franco

PS: you are right about the rest
#14
26.1 Series / Re: os-git-backup error with 26.1-r2_2
January 30, 2026, 04:09:12 PM
It will be hotfixed in a few minutes :)
#15
26.1 Series / Re: Don't touch a running system 🤔 and congrats!
January 30, 2026, 02:39:15 PM
thanks, likewise :)
Pages1 2 3 ... 1299