Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - franco

#1
General Discussion / Re: Setup tun interface
September 02, 2025, 02:21:56 PM
We don't support most of base's RC scripting because it causes side effects during boot.

You can run custom interface creation scripts via "early" rc.syshook facility: https://docs.opnsense.org/development/backend/autorun.html

Also note that creating manual tun interfaces can mess with existing OpenVPN use as the nodes in /dev are not reordered/renamed.


Cheers,
Franco
#2
It depends on the options in question.

Some are missing because they have not been requested, locked away in users custom configuration, some are deprecated or irrelevant in modern deployments, some don't make a difference on BSD.


Cheers,
Franco
#3
25.7 Series / Re: Thank you for 25.7.2 update
September 02, 2025, 12:04:31 PM
:)
#4
> Just a lot of "dhcp6c send solicit to ff02::1:2%igb0" with no reply.

Yep, that's what I suspected. Nothing more to prove on your side.

Do you have an ISP router in front of the OPNsense? Do you have one of their routers that previously worked (especially for IPv6)? They may expect to see the solicit on a specific MAC address and spoofing that can help, but as I said there could be a number of reasons why you do not receive a reply and none are under your control.


Cheers,
Franco
#5
Do you have a DEC2750 too?


Cheers,
Franco
#6
24.7, 24.10 Series / Re: Squid: segmentation fault
September 01, 2025, 09:14:09 AM
The silence in the GitHub plugin repo regarding the issue disagrees with your blanket statement, but I'm not here to challenge you on a local issue that may persist.

Personally, I don't like the fact that people come and complain about issues but once they are gone do not bother to give useful feedback. It is what it is, though.


Cheers,
Franco
#7
You can enable debugging for DHCPv6 on WAN (Interfaces: Settings) logged in system general log by "dhcp6c" you can see if the ISP even bothers responding which I think they do not. The reasons for that could be plenty. Some have MAC locks, others forget to configure their clients or break the network somewhere in between.


Cheers,
Franco
#8
25.7 Series / Re: Wireguard Group still there?
September 01, 2025, 08:51:14 AM
>  I've removed the instances and it's still there.

That's why I said you need to disable the global wireguard enable toggle. Removing all instances is not enough for the group to disappear.


Cheers,
Franco
#9
The reporter closed it. It's a free world?


Cheers,
Franco
#10
25.7 Series / Re: 25.7.2 Backend Log error report
September 01, 2025, 08:46:29 AM
It's unrelated to this particular issue.
#11
What's interesting about this is that updates seem to malfunction on N100 but a reinstall moving large amounts of data is not, which means the issue is likely in Sqlite operation as indicated by the error messages. It's an unfortunate situation to be in when the package manager relies on it.


Cheers,
Franco
#12
EoL, yes, but won't be removed in 2026 for sure.


Cheers,
Franco
#13
Are you already using Dnsmasq for DHCP? ;)
#14
Nice to hear, thanks!
#15
25.7 Series / Re: System:Firmware:Plugins list
September 01, 2025, 08:40:31 AM
In FreeBSD ports packages dependent on a particular language or project have a prefix and we chose "os-" for all our plugins indeed.

That also makes them distinguishable from the upstream software, e.g. "squid" and "os-squid".


Cheers,
Franco