Messages

Hello,

same issue here with a kerio webserver behind opnsense with haproxy active.

Any suggestions?

I activated LDAP authentification against our Windows AD following the documentation here https://wiki.opnsense.org/manual/how-tos/user-ldap.html

LDAP is working fine, but unfortunately my (local) admin account doesn't work anymore, even if I recall to have left local database as backup authentification database. And of course I didn't choose a single AD account to have admin rights!  :(

I have no ssh access to this device, but I have console acces. How can I repair the admin logon?

Thanks in advance!

Gerald

ssh habe ich leider nicht aktiviert, aber ich habe ja Zugriff auf die Konsole. Kann man da nicht was machen?

Nachdem ich die LDAP Authentifizierung eingeschaltet habe, kann ich zwar jetzt aus unserem AD importierte User anmelden, aber die lokalen Logins funktionieren nicht mehr und damit habe ich mich quasi selber ausgesperrt. :-[ Wie kann ich das zurücksetzen/ändern?

Danke für die Antwort, ich bin allerdings ziemlich sicher, dass die Hardware nicht das Problem ist, da ich die Hardware inzwischen auch gewechselt habe.
Vor dem Laden der alten Konfiguration, also mit default Einstellungen läuft alles extrem schnell hoch und ich kann nach wenigen sekunden auf das System zugreifen. Nach dem Laden der alten Konfiguration ändert sich das Verhalten komplett und es dauert eben extrem lang. Wenn dann der Ladevorgang abgeschlossen ist läuft wieder alles ganz normal. Die CPU ist unter 5% Last und Speicher ist mehr als genug vorhanden.

dmesg zeigt keine Auffälligkeiten
in system.log finde ich mehrere Einträge:

Code Select Expand


Oct 16 08:53:57 fw dhcpleases: bad name in /var/dhcpd/var/db/dhcpd.leases
Oct 16 08:55:15 fw dhcpleases: bad name in /var/dhcpd/var/db/dhcpd.leases
Oct 16 08:55:58 fw dhcpleases: bad name in /var/dhcpd/var/db/dhcpd.leases
Oct 16 08:57:21 fw dhcpleases: bad name in /var/dhcpd/var/db/dhcpd.leases
Oct 16 08:57:31 fw dhcpleases: bad name in /var/dhcpd/var/db/dhcpd.leases


In den anderen Logfiles kann ich nichts auffälliges finden. Bin allerdings auch kein BSD Experte...

Da der Ladevorgang offensichtlich beim laden der Firewalleinstellungen hängt, vermute ich eher dort den Fehler, kann aber in der GUI nichts auffälliges finden. Kann man beim start auf der Console anzeigen lassen, was genau das System gerade macht?

Hallo,

ich setze opnsense inzwischen seit version 15 erfolgreich ein. Allerdings habe ich inzwischen Probleme:
immer wenn ich die Firewall starte oder reboote dauert es ewig, bevor ich Zugriff auf die ssh console oder das WebGUI habe. Ich habe, nachdem nichts anderes geholfen hat die Maschine neu aufgesetzt mit Version 18.7. Aber nach dem Restore der config habe ich wieder das alte Verhalten. Auf der console konnte ich erkennen, dass das System wohl beim laden der Firewall rules hängt. Das dauert ca. 30-40 minuten(!) und dann läuft alles ganz normal. Wie muss ich vorgehen, um den Konfigurationsfehler zu finden?

CPU Type    Intel(R) Pentium(R) 4 CPU 3.00GHz (2 cores)
Memory usage              44 % ( 889/2003 MB )
SWAP                            3 % ( 148/4096 MB )

I have the problem, that squid never runs after a reboot of the machine.
So I'm trying to uninstall it completely and reinstall squid with default settings - but how?

Ja genau, nur für einige wenige Kollegen und mich...

Systemlog Teil2:

Code Select Expand


May 21 19:00:29 kernel: SMP: AP CPU #1 Launched!
May 21 19:00:29 kernel: ada0: 61057MB (125045424 512 byte sectors)
May 21 19:00:29 kernel: ada0: 150.000MB/s transfers (SATA, UDMA5, PIO 512bytes)
May 21 19:00:29 kernel: ada0: Serial Number 121977404349
May 21 19:00:29 kernel: ada0: <SanDisk SDSSDP064G 1.0.0> ACS-2 ATA SATA 3.x device
May 21 19:00:29 kernel: ada0 at ata1 bus 0 scbus1 target 0 lun 0
May 21 19:00:29 kernel: uhub3: 2 ports with 2 removable, self powered
May 21 19:00:29 kernel: uhub2: 2 ports with 2 removable, self powered
May 21 19:00:29 kernel: uhub1: 2 ports with 2 removable, self powered
May 21 19:00:29 kernel: uhub0: 2 ports with 2 removable, self powered
May 21 19:00:29 kernel: uhub4: <Intel EHCI root HUB, class 9/0, rev 2.00/1.00, addr 1> on usbus4
May 21 19:00:29 kernel: ugen4.1: <Intel> at usbus4
May 21 19:00:29 kernel: usbus4: 480Mbps High Speed USB v2.0
May 21 19:00:29 kernel: uhub3: <Intel UHCI root HUB, class 9/0, rev 1.00/1.00, addr 1> on usbus3
May 21 19:00:29 kernel: ugen3.1: <Intel> at usbus3
May 21 19:00:29 kernel: uhub2: <Intel UHCI root HUB, class 9/0, rev 1.00/1.00, addr 1> on usbus2
May 21 19:00:29 kernel: ugen2.1: <Intel> at usbus2
May 21 19:00:29 kernel: uhub1: <Intel UHCI root HUB, class 9/0, rev 1.00/1.00, addr 1> on usbus1
May 21 19:00:29 kernel: ugen1.1: <Intel> at usbus1
May 21 19:00:29 kernel: uhub0: <Intel UHCI root HUB, class 9/0, rev 1.00/1.00, addr 1> on usbus0
May 21 19:00:29 kernel: ugen0.1: <Intel> at usbus0
May 21 19:00:29 kernel: usbus3: 12Mbps Full Speed USB v1.0
May 21 19:00:29 kernel: usbus2: 12Mbps Full Speed USB v1.0
May 21 19:00:29 kernel: usbus1: 12Mbps Full Speed USB v1.0
May 21 19:00:29 kernel: usbus0: 12Mbps Full Speed USB v1.0
May 21 19:00:29 kernel: nvme cam probe device init
May 21 19:00:29 kernel: Timecounters tick every 1.000 msec
May 21 19:00:29 kernel: device_attach: est1 attach returned 6
May 21 19:00:29 kernel: est: cpu_vendor GenuineIntel, msr f2700000f27
May 21 19:00:29 kernel: est: CPU supports Enhanced Speedstep, but is not recognized.
May 21 19:00:29 kernel: est1: <Enhanced SpeedStep Frequency Control> on cpu1
May 21 19:00:29 kernel: acpi_perf0: <ACPI CPU Frequency Control> on cpu0
May 21 19:00:29 kernel: ppc0: cannot reserve I/O port range
May 21 19:00:29 kernel: atkbd0: [GIANT-LOCKED]
May 21 19:00:29 kernel: kbd0 at atkbd0
May 21 19:00:29 kernel: atkbd0: <AT Keyboard> irq 1 on atkbdc0
May 21 19:00:29 kernel: atkbdc0: <Keyboard controller (i8042)> at port 0x60,0x64 on isa0
May 21 19:00:29 kernel: vga0: <Generic ISA VGA> at port 0x3c0-0x3df iomem 0xa0000-0xbffff on isa0
May 21 19:00:29 kernel: sc0: VGA <16 virtual consoles, flags=0x300>
May 21 19:00:29 kernel: sc0: <System console> at flags 0x100 on isa0
May 21 19:00:29 kernel: orm0: <ISA Option ROMs> at iomem 0xcc000-0xccfff,0xcd000-0xce7ff,0xef000-0xeffff on isa0
May 21 19:00:29 kernel: uart1: <16550 or compatible> port 0x2f8-0x2ff irq 3 on acpi0
May 21 19:00:29 kernel: uart0: console (115200,n,8,1)
May 21 19:00:29 kernel: uart0: <16550 or compatible> port 0x3f8-0x3ff irq 4 flags 0x10 on acpi0
May 21 19:00:29 kernel: acpi_tz0: <Thermal Zone> on acpi0
May 21 19:00:29 kernel: ata1: <ATA channel> at channel 1 on atapci0
May 21 19:00:29 kernel: ata0: <ATA channel> at channel 0 on atapci0
May 21 19:00:29 kernel: atapci0: <Intel ICH7 SATA300 controller> port 0x1f0-0x1f7,0x3f6,0x170-0x177,0x376,0xf800-0xf80f at device 31.2 on pci0
May 21 19:00:29 kernel: isa0: <ISA bus> on isab0
May 21 19:00:29 kernel: isab0: <PCI-ISA bridge> at device 31.0 on pci0
May 21 19:00:29 kernel: em1: netmap queues/slots: TX 1/256, RX 1/256
May 21 19:00:29 kernel: em1: Ethernet address: 00:07:e9:3e:d0:14
May 21 19:00:29 kernel: em1: <Intel(R) PRO/1000 Legacy Network Connection 1.1.0> port 0xde00-0xde3f mem 0xfde80000-0xfde9ffff,0xfde60000-0xfde7ffff irq 18 at device 4.0 on pci1
May 21 19:00:29 kernel: em0: netmap queues/slots: TX 1/256, RX 1/256
May 21 19:00:29 kernel: em0: Ethernet address: 00:1d:92:dd:db:fe
May 21 19:00:29 kernel: em0: <Intel(R) PRO/1000 Legacy Network Connection 1.1.0> port 0xdf00-0xdf3f mem 0xfdec0000-0xfdedffff,0xfdea0000-0xfdebffff irq 18 at device 2.0 on pci1
May 21 19:00:29 kernel: vr0: Ethernet address: 00:05:5d:82:2d:f4
May 21 19:00:29 kernel: ukphy0: none, 10baseT, 10baseT-FDX, 100baseTX, 100baseTX-FDX, auto, auto-flow
May 21 19:00:29 kernel: ukphy0: <Generic IEEE 802.3u media interface> PHY 1 on miibus0
May 21 19:00:29 kernel: miibus0: <MII bus> on vr0
May 21 19:00:29 kernel: vr0: Revision: 0x86
May 21 19:00:29 kernel: vr0: Quirks: 0x0
May 21 19:00:29 kernel: vr0: <VIA VT6105 Rhine III 10/100BaseTX> port 0xdc00-0xdcff mem 0xfdeff000-0xfdeff0ff irq 17 at device 0.0 on pci1
May 21 19:00:29 kernel: pci1: <ACPI PCI bus> on pcib1
May 21 19:00:29 kernel: pcib1: <ACPI PCI-PCI bridge> at device 30.0 on pci0
May 21 19:00:29 kernel: usbus4 on ehci0
May 21 19:00:29 kernel: usbus4: EHCI version 1.0
May 21 19:00:29 kernel: ehci0: <Intel 82801GB/R (ICH7) USB 2.0 controller> mem 0xfdfff000-0xfdfff3ff irq 23 at device 29.7 on pci0
May 21 19:00:29 kernel: usbus3 on uhci3
May 21 19:00:29 kernel: uhci3: LegSup = 0x2f00
May 21 19:00:29 kernel: uhci3: <Intel 82801G (ICH7) USB controller USB-D> port 0xfb00-0xfb1f irq 16 at device 29.3 on pci0
May 21 19:00:29 kernel: usbus2 on uhci2
May 21 19:00:29 kernel: uhci2: LegSup = 0x2f00
May 21 19:00:29 kernel: uhci2: <Intel 82801G (ICH7) USB controller USB-C> port 0xfc00-0xfc1f irq 18 at device 29.2 on pci0
May 21 19:00:29 kernel: usbus1 on uhci1
May 21 19:00:29 kernel: uhci1: LegSup = 0x2f00
May 21 19:00:29 kernel: uhci1: <Intel 82801G (ICH7) USB controller USB-B> port 0xfd00-0xfd1f irq 19 at device 29.1 on pci0
May 21 19:00:29 kernel: usbus0 on uhci0
May 21 19:00:29 kernel: uhci0: LegSup = 0x2f00
May 21 19:00:29 kernel: uhci0: <Intel 82801G (ICH7) USB controller USB-A> port 0xfe00-0xfe1f irq 23 at device 29.0 on pci0
May 21 19:00:29 kernel: vgapci0: Boot video device
May 21 19:00:29 kernel: agp0: aperture size is 256M, detected 7932k stolen memory
May 21 19:00:29 kernel: agp0: <Intel 82945G (945G GMCH) SVGA controller> on vgapci0
May 21 19:00:29 kernel: vgapci0: <VGA-compatible display> port 0xff00-0xff07 mem 0xfdf00000-0xfdf7ffff,0xd0000000-0xdfffffff,0xfdf80000-0xfdfbffff irq 16 at device 2.0 on pci0
May 21 19:00:29 kernel: pci0: <ACPI PCI bus> on pcib0
May 21 19:00:29 kernel: pcib0: <ACPI Host-PCI bridge> port 0xcf8-0xcff on acpi0
May 21 19:00:29 kernel: acpi_button0: <Power Button> on acpi0
May 21 19:00:29 kernel: acpi_timer0: <24-bit timer at 3.579545MHz> port 0x408-0x40b on acpi0
May 21 19:00:29 kernel: Timecounter "ACPI-fast" frequency 3579545 Hz quality 900
May 21 19:00:29 kernel: Event timer "RTC" frequency 32768 Hz quality 0
May 21 19:00:29 kernel: atrtc0: <AT realtime clock> port 0x70-0x73 on acpi0
May 21 19:00:29 kernel: device_attach: hpet0 attach returned 12
May 21 19:00:29 kernel: hpet0: <High Precision Event Timer> iomem 0xfed00000-0xfed003ff irq 0,8 on acpi0
May 21 19:00:29 kernel: Event timer "i8254" frequency 1193182 Hz quality 100
May 21 19:00:29 kernel: Timecounter "i8254" frequency 1193182 Hz quality 0
May 21 19:00:29 kernel: attimer0: <AT timer> port 0x40-0x43 on acpi0
May 21 19:00:29 kernel: cpu1: <ACPI CPU> on acpi0
May 21 19:00:29 kernel: cpu0: <ACPI CPU> on acpi0
May 21 19:00:29 kernel: acpi0: Power Button (fixed)
May 21 19:00:29 kernel: ACPI Exception: AE_AML_BUFFER_LIMIT, Could not execute arguments for [CR42] (BufferField) (20160527/nsinit-441)
May 21 19:00:29 kernel: ACPI Error: Field [CR42] at 416 exceeds Buffer [ADTB] size 400 (bits) (20160527/dsopcode-247)
May 21 19:00:29 kernel: acpi0: <IntelR AWRDACPI> on motherboard
May 21 19:00:29 kernel: cryptosoft0: <software crypto> on motherboard
May 21 19:00:29 kernel: kbd1 at kbdmux0
May 21 19:00:29 kernel: netmap: loaded module
May 21 19:00:29 kernel: wlan: mac acl policy registered
May 21 19:00:29 kernel: random: entropy device external interface
May 21 19:00:29 kernel: ioapic0 <Version 2.0> irqs 0-23 on motherboard
May 21 19:00:29 kernel: ioapic0: Changing APIC ID to 4
May 21 19:00:29 kernel: random: unblocking device.
May 21 19:00:29 kernel: FreeBSD/SMP: 1 package(s) x 2 hardware threads
May 21 19:00:29 kernel: FreeBSD/SMP: Multiprocessor System Detected: 2 CPUs
May 21 19:00:29 kernel: ACPI APIC Table: <IntelR AWRDACPI>
May 21 19:00:29 kernel: Event timer "LAPIC" quality 400
May 21 19:00:29 kernel: avail memory = 2023784448 (1930 MB)
May 21 19:00:29 kernel: real memory = 2137915392 (2038 MB)
May 21 19:00:29 kernel: TSC: P-state invariant
May 21 19:00:29 kernel: AMD Features2=0x1<LAHF>
May 21 19:00:29 kernel: AMD Features=0x20100800<SYSCALL,NX,LM>
May 21 19:00:29 kernel: Features2=0xe59d<SSE3,DTES64,MON,DS_CPL,EST,TM2,CNXT-ID,CX16,xTPR,PDCM>
May 21 19:00:29 kernel: Features=0xbfebfbff<FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,CMOV,PAT,PSE36,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE>
May 21 19:00:29 kernel: Origin="GenuineIntel" Id=0xf65 Family=0xf Model=0x6 Stepping=5
May 21 19:00:29 kernel: CPU: Intel(R) Pentium(R) 4 CPU 3.00GHz (2999.73-MHz K8-class CPU)
May 21 19:00:29 kernel: [HBSD SEGVGUARD] maxcrashes: 5
May 21 19:00:29 kernel: [HBSD SEGVGUARD] suspension: 600 sec
May 21 19:00:29 kernel: [HBSD SEGVGUARD] expiry: 120 sec
May 21 19:00:29 kernel: [HBSD SEGVGUARD] status: opt-out
May 21 19:00:29 kernel: [HBSD LOG] logging to user: disabled
May 21 19:00:29 kernel: [HBSD LOG] logging to system: enabled
May 21 19:00:29 kernel: [HBSD HARDENING] procfs hardening: enabled
May 21 19:00:29 kernel: [HBSD ASLR (compat)] vdso: 8 bit
May 21 19:00:29 kernel: [HBSD ASLR (compat)] stack: 14 bit
May 21 19:00:29 kernel: [HBSD ASLR (compat)] exec base: 14 bit
May 21 19:00:29 kernel: [HBSD ASLR (compat)] mmap: 14 bit
May 21 19:00:29 kernel: [HBSD ASLR (compat)] status: opt-out
May 21 19:00:29 kernel: [HBSD ASLR] disallow MAP_32BIT mode mmap: opt-out
May 21 19:00:29 kernel: [HBSD ASLR] map32bit: 18 bit
May 21 19:00:29 kernel: [HBSD ASLR] vdso: 28 bit
May 21 19:00:29 kernel: [HBSD ASLR] stack: 42 bit
May 21 19:00:29 kernel: [HBSD ASLR] exec base: 30 bit
May 21 19:00:29 kernel: [HBSD ASLR] mmap: 30 bit
May 21 19:00:29 kernel: [HBSD ASLR] status: opt-out
May 21 19:00:29 kernel: FreeBSD clang version 3.8.0 (tags/RELEASE_380/final 262564) (based on LLVM 3.8.0)
May 21 19:00:29 kernel: root@sensey64:/usr/obj/usr/src/sys/SMP amd64
May 21 19:00:29 kernel: FreeBSD 11.0-RELEASE-p8 #0 e84bb9532(stable/17.1): Sun Mar 26 15:34:40 CEST 2017
May 21 19:00:29 kernel: FreeBSD is a registered trademark of The FreeBSD Foundation.
May 21 19:00:29 kernel: The Regents of the University of California. All rights reserved.
May 21 19:00:29 kernel: Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
May 21 19:00:29 kernel: Copyright (c) 1992-2016 The FreeBSD Project.
May 21 19:00:29 kernel: All buffers synced.
May 21 19:00:29 kernel: Syncing disks, vnodes remaining... 0 0 0 done
May 21 19:00:29 kernel: Waiting (max 60 seconds) for system process `syncer' to stop...
May 21 19:00:29 kernel: Waiting (max 60 seconds) for system process `bufdaemon' to stop... done
May 21 19:00:29 kernel: Waiting (max 60 seconds) for system process `vnlru' to stop... done
May 21 19:00:29 kernel: ovpns1: link state changed to DOWN
May 21 19:00:29 kernel: pflog0: promiscuous mode disabled
May 21 19:00:29 syslogd: kernel boot file is /boot/kernel/kernel


System Log Teil1:

Code Select Expand


May 21 19:03:50 opnsense: /index.php: Successful login for user 'admin' from: 91.62.161.142
May 21 19:03:40 kernel: arp: 192.168.10.31 moved from 20:e2:b0:03:00:f8 to 00:15:17:ba:0e:14 on em0
May 21 19:03:38 kernel: arp: 192.168.10.31 moved from 20:e2:b0:03:00:f8 to 00:15:17:ba:0e:14 on em0
May 21 19:03:36 kernel: arp: 192.168.10.31 moved from 20:e2:b0:03:00:f8 to 00:15:17:ba:0e:14 on em0
May 21 19:03:30 kernel: arp: 192.168.10.31 moved from 20:e2:b0:03:00:f8 to 00:15:17:ba:0e:14 on em0
May 21 19:03:28 kernel: arp: 192.168.10.31 moved from 20:e2:b0:03:00:f8 to 00:15:17:ba:0e:14 on em0
May 21 19:03:19 kernel: arp: 192.168.10.31 moved from 20:e2:b0:03:00:f8 to 00:15:17:ba:0e:14 on em0
May 21 19:03:17 kernel: arp: 192.168.10.31 moved from 20:e2:b0:03:00:f8 to 00:15:17:ba:0e:14 on em0
May 21 19:03:09 kernel: arp: 192.168.10.31 moved from 20:e2:b0:03:00:f8 to 00:15:17:ba:0e:14 on em0
May 21 19:02:44 kernel: arp: 192.168.10.31 moved from 20:e2:b0:03:00:f8 to 00:15:17:ba:0e:15 on em0
May 21 19:02:10 opnsense: /usr/local/etc/rc.newwanip: Interface is empty, nothing to do.
May 21 19:02:10 opnsense: /usr/local/etc/rc.newwanip: rc.newwanip: Informational is starting ovpns1.
May 21 19:02:09 configd.py: [247f825f-5570-4149-a1c0-cf5658a8b608] rc.newwanip starting ovpns1
May 21 19:02:09 kernel: ovpns1: link state changed to UP
May 21 19:02:09 configd.py: [ef9ceda8-fac0-4589-9670-2d1bc3b9c40d] Reloading filter
May 21 19:02:07 configd.py: [cf6acc5a-2067-43e6-b31d-2107bfc5179b] Reloading filter
May 21 19:02:07 kernel: ovpns1: link state changed to DOWN
May 21 19:02:07 opnsense: /usr/local/etc/rc.newwanip: Resyncing OpenVPN instances for interface WAN.
May 21 19:02:06 opnsense: /usr/local/etc/rc.newwanip: The command '/sbin/route delete -inet6 'default' 'fe80::90:1a00:1a4:6715%pppoe0'' returned exit code '1', the output was 'route: route has not been found delete net default: gateway fe80::90:1a00:1a4:6715%pppoe0 fib 0: not in table'
May 21 19:02:06 opnsense: /usr/local/etc/rc.newwanip: ROUTING: setting IPv6 default route to fe80::90:1a00:1a4:6715%pppoe0
May 21 19:02:06 opnsense: /usr/local/etc/rc.newwanip: ROUTING: setting IPv4 default route to 217.0.117.222
May 21 19:02:06 opnsense: /usr/local/etc/rc.newwanip: The command '/sbin/route delete -host 129.250.35.251' returned exit code '1', the output was 'route: route has not been found delete host 129.250.35.251 fib 0: not in table'
May 21 19:02:06 opnsense: /usr/local/etc/rc.newwanip: The command '/sbin/route delete -host 74.82.42.42' returned exit code '1', the output was 'route: route has not been found delete host 74.82.42.42 fib 0: not in table'
May 21 19:02:06 opnsense: /usr/local/etc/rc.newwanip: The command '/sbin/route delete -host 141.1.1.1' returned exit code '1', the output was 'route: route has not been found delete host 141.1.1.1 fib 0: not in table'
May 21 19:02:06 opnsense: /usr/local/etc/rc.newwanip: rc.newwanip: on (IP address: 80.153.33.127) (interface: WAN[wan]) (real interface: pppoe0).
May 21 19:02:06 opnsense: /usr/local/etc/rc.newwanip: rc.newwanip: Informational is starting pppoe0.
May 21 19:02:06 configd.py: [b6c4c9e2-6bbd-42f0-ae28-0890efa02072] rc.newwanip starting pppoe0
May 21 19:02:06 opnsense: /usr/local/etc/rc.newwanipv6: rc.newwanipv6: Failed to detect IPv6 for WAN[wan]
May 21 19:02:06 opnsense: /usr/local/etc/rc.newwanipv6: rc.newwanipv6: Informational is starting pppoe0.
May 21 19:02:05 configd.py: [82ad3ed4-fce7-45b6-8cf8-9239fa570110] rc.newwanip starting pppoe0
May 21 19:01:13 squid[47062]: Exiting due to repeated, frequent failures
May 21 19:01:13 squid[47062]: Squid Parent: (squid-1) process 61439 will not be restarted due to repeated, frequent failures
May 21 19:01:13 squid[47062]: Squid Parent: (squid-1) process 61439 exited with status 1
May 21 19:01:12 squid[47062]: Squid Parent: (squid-1) process 61439 started
May 21 19:01:09 squid[47062]: Squid Parent: (squid-1) process 59695 exited with status 1
May 21 19:01:09 squid[47062]: Squid Parent: (squid-1) process 59695 started
May 21 19:01:06 squid[47062]: Squid Parent: (squid-1) process 57219 exited with status 1
May 21 19:01:05 squid[47062]: Squid Parent: (squid-1) process 57219 started
May 21 19:01:02 squid[47062]: Squid Parent: (squid-1) process 52027 exited with status 1
May 21 19:01:01 squid[47062]: Squid Parent: (squid-1) process 52027 started
May 21 19:00:58 squid[47062]: Squid Parent: (squid-1) process 47238 exited with status 1
May 21 19:00:58 squid[47062]: Squid Parent: (squid-1) process 47238 started
May 21 19:00:58 squid[47062]: Squid Parent: will start 1 kids
May 21 19:00:57 squid: No valid signing SSL certificate configured for HTTP_port 127.0.0.1:3128
May 21 19:00:56 ftp-proxy[32030]: listening on 127.0.0.1 port 8021
May 21 19:00:55 sshlockout[91895]: sshlockout/webConfigurator v3.0 starting up
May 21 19:00:52 kernel: done.
May 21 19:00:50 root: /etc/rc.d/hostid: WARNING: hostid: unable to figure out a UUID from DMI data, generating a new one
May 21 19:00:50 configd.py: generate template container OPNsense/Syslog
May 21 19:00:49 kernel: done.
May 21 19:00:49 configd.py: [901da6a8-952c-4add-adfd-e20881635510] generate template OPNsense/Syslog
May 21 19:00:49 ipsec_starter[81354]: charon (81556) started after 100 ms
May 21 19:00:49 kernel: done.
May 21 19:00:49 ipsec_starter[81125]: no known IPsec stack detected, ignoring!
May 21 19:00:49 ipsec_starter[81125]: no KLIPS IPsec stack detected
May 21 19:00:49 ipsec_starter[81125]: no netkey IPsec stack detected
May 21 19:00:49 ipsec_starter[81125]: Starting weakSwan 5.5.2 IPsec [starter]...
May 21 19:00:48 kernel: deferred.
May 21 19:00:48 configd.py: generate template container OPNsense/Syslog
May 21 19:00:48 configd.py: generate template container OPNsense/Sample/sub2
May 21 19:00:48 configd.py: generate template container OPNsense/Sample/sub1
May 21 19:00:47 configd.py: generate template container OPNsense/Sample
May 21 19:00:45 configd.py: generate template container OPNsense/Proxy
May 21 19:00:44 configd.py: generate template container OPNsense/Netflow
May 21 19:00:44 configd.py: generate template container OPNsense/Macros
May 21 19:00:43 configd.py: generate template container OPNsense/IPFW
May 21 19:00:42 configd.py: generate template container OPNsense/IDS
May 21 19:00:41 configd.py: generate template container OPNsense/FtpProxy
May 21 19:00:41 configd.py: generate template container OPNsense/Cron
May 21 19:00:41 configd.py: generate template container OPNsense/Captiveportal
May 21 19:00:40 configd.py: generate template container OPNsense/Auth
May 21 19:00:40 configd.py: generate template container OPNsense/AcmeClient
May 21 19:00:39 kernel: .done.
May 21 19:00:39 configd.py: [b00b7567-1edf-4203-b5a4-2506c0b9c363] generate template *
May 21 19:00:39 kernel: .
May 21 19:00:39 kernel: .
May 21 19:00:39 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:39 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:39 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:39 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:39 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:39 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:39 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:39 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:39 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:39 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:39 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:38 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:38 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:38 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:38 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:38 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:38 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:38 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:38 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:38 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:38 kernel: .
May 21 19:00:38 kernel: .
May 21 19:00:37 kernel: done.
May 21 19:00:37 kernel: done.
May 21 19:00:36 kernel: done.
May 21 19:00:36 kernel: done.
May 21 19:00:36 kernel: done.
May 21 19:00:36 sshd[93678]: Server listening on 0.0.0.0 port 222.
May 21 19:00:36 kernel: done.
May 21 19:00:36 sshd[93678]: Server listening on :: port 222.
May 21 19:00:35 lighttpd[91445]: (log.c.217) server started
May 21 19:00:35 kernel: done.
May 21 19:00:35 kernel: .done.
May 21 19:00:35 kernel: ..
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:35 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:34 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:34 kernel: .
May 21 19:00:34 opnsense: /usr/local/etc/rc.bootup: Could not find IPv4 gateway for interface (wan).
May 21 19:00:34 kernel: pflog0: promiscuous mode enabled
May 21 19:00:34 kernel:
May 21 19:00:34 configd.py: [a8657b26-08f5-481d-97aa-24483a12f688] Linkup starting vr0
May 21 19:00:34 kernel: vr0: link state changed to UP
May 21 19:00:33 configd.py: [15fa806b-063a-4b96-b3ed-62cd0c295c58] Linkup starting em1
May 21 19:00:33 kernel: em1: link state changed to UP
May 21 19:00:33 configd.py: [220c19f6-c745-4760-925c-a9dbf6a17bd4] Linkup starting em0_vlan2
May 21 19:00:33 configd.py: [8e1453a4-02f0-41a1-bf3b-5375169e072b] Linkup starting em0
May 21 19:00:32 kernel: em0_vlan2: link state changed to UP
May 21 19:00:32 kernel: em0: link state changed to UP
May 21 19:00:32 configd.py: [c2490126-9aaf-4c80-b439-4bb45251f943] rc.newwanip starting ovpns1
May 21 19:00:32 kernel: ovpns1: link state changed to UP
May 21 19:00:32 kernel:
May 21 19:00:32 kernel: done.
May 21 19:00:32 opnsense: /usr/local/etc/rc.bootup: Resyncing OpenVPN instances.
May 21 19:00:31 kernel: ng0: changing name to 'pppoe0'
May 21 19:00:31 configd.py: [c656257f-1ab0-4705-b429-4c66a21e44bd] Linkup stopping vr0
May 21 19:00:31 kernel: vr0: link state changed to DOWN
May 21 19:00:31 kernel:
May 21 19:00:31 kernel: done.
May 21 19:00:31 opnsense: /usr/local/etc/rc.bootup: The command '/sbin/ifconfig 'pppoe0' inet6 -accept_rtadv' returned exit code '1', the output was 'ifconfig: interface pppoe0 does not exist'
May 21 19:00:30 configd.py: [daa98434-33be-482f-946f-fa1b12de60f1] Linkup stopping em1
May 21 19:00:30 kernel: em1: link state changed to DOWN
May 21 19:00:30 kernel:
May 21 19:00:29 kernel: vlan0: changing name to 'em0_vlan2'
May 21 19:00:29 opnsense: /usr/local/etc/rc.bootup: The command '/usr/sbin/ngctl name 'vlan0': 'em0_vlan2'' returned exit code '71', the output was 'ngctl: send msg: No such file or directory'
May 21 19:00:29 configd.py: [7cfba692-938f-4ad9-9d59-94cbd0fc2844] Linkup stopping em0
May 21 19:00:29 kernel: em0: link state changed to DOWN
May 21 19:00:29 kernel:
May 21 19:00:29 kernel: tun1: changing name to 'ovpns1'
May 21 19:00:29 kernel:
May 21 19:00:29 sshlockout[12593]: sshlockout/webConfigurator v3.0 starting up
May 21 19:00:29 kernel: device_attach: est1 attach returned 6
May 21 19:00:29 kernel: est: cpu_vendor GenuineIntel, msr f2700000f27
May 21 19:00:29 kernel: est: CPU supports Enhanced Speedstep, but is not recognized.
May 21 19:00:29 kernel: est1: <Enhanced SpeedStep Frequency Control> on cpu1
May 21 19:00:29 kernel: aesni0: No AESNI support.
May 21 19:00:29 kernel: em1: link state changed to UP
May 21 19:00:29 kernel: em0: link state changed to UP
May 21 19:00:29 kernel: uhub4: 8 ports with 8 removable, self powered
May 21 19:00:29 kernel: cd0: Attempt to query device size failed: NOT READY, Medium not present
May 21 19:00:29 kernel: cd0: 150.000MB/s transfers (SATA, UDMA5, ATAPI 12bytes, PIO 8192bytes)
May 21 19:00:29 kernel: cd0: Serial Number K567ATF0747
May 21 19:00:29 kernel: cd0: <HL-DT-ST DVDRAM GH20NS10 EL00> Removable CD-ROM SCSI device
May 21 19:00:29 kernel: cd0 at ata0 bus 0 scbus0 target 0 lun 0
May 21 19:00:29 kernel: Trying to mount root from ufs:/dev/ada0s1a [rw]...
May 21 19:00:29 kernel: Timecounter "TSC-low" frequency 1499865307 Hz quality 1000


Habe jetzt nochmal den reboot gemacht und hier im folgenden die kompletten logs von squid und ntp:
Das Systemlog folgt im nächsten post...

Squid log:

Code Select Expand


Page faults with physical i/o: 0
Maximum Resident Size: 131680 KB
CPU Usage: 0.316 seconds = 0.276 user + 0.039 sys
Squid Cache (Version 3.5.24): Terminated abnormally.
if needed, or if running Squid for the first time.
for details. Run 'squid -z' to create swap directories
FATAL: Failed to verify one of the swap directories, Check cache.log
2017/05/21 19:01:13 kid1| ERROR: /var/squid/cache/00: (2) No such file or directory
2017/05/21 19:01:13 kid1| Max Swap size: 20480000 KB
2017/05/21 19:01:13 kid1| Max Mem size: 524288 KB
2017/05/21 19:01:13 kid1| Using 131072 Store buckets
2017/05/21 19:01:13 kid1| Target number of buckets: 80785
2017/05/21 19:01:13 kid1| Swap maxSize 20480000 + 524288 KB, estimated 1615714 objects
2017/05/21 19:01:13 kid1| WARNING: log name now starts with a module name. Use 'stdio:/var/log/squid/store.log'
2017/05/21 19:01:13 kid1| Logfile: opening log /var/log/squid/store.log
2017/05/21 19:01:13 kid1| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
2017/05/21 19:01:13 kid1| Unlinkd pipe opened on FD 24
2017/05/21 19:01:13 kid1| WARNING: log name now starts with a module name. Use 'stdio:/var/log/squid/access.log'
2017/05/21 19:01:13 kid1| Logfile: opening log /var/log/squid/access.log
2017/05/21 19:01:13 kid1| helperOpenServers: Starting 5/5 'ssl_crtd' processes
2017/05/21 19:01:13 kid1| Adding nameserver 129.250.35.251 from /etc/resolv.conf
2017/05/21 19:01:13 kid1| Adding nameserver 74.82.42.42 from /etc/resolv.conf
2017/05/21 19:01:13 kid1| Adding nameserver 141.1.1.1 from /etc/resolv.conf
2017/05/21 19:01:13 kid1| Adding nameserver 192.168.10.12 from /etc/resolv.conf
2017/05/21 19:01:13 kid1| Adding nameserver 127.0.0.1 from /etc/resolv.conf
2017/05/21 19:01:13 kid1| Adding domain imedos.local from /etc/resolv.conf
2017/05/21 19:01:13 kid1| DNS Socket created at 0.0.0.0, FD 7
2017/05/21 19:01:13 kid1| DNS Socket created at [::], FD 6
2017/05/21 19:01:13 kid1| Initializing IP Cache...
2017/05/21 19:01:13 kid1| With 57699 file descriptors available
2017/05/21 19:01:13 kid1| Process Roles: worker
2017/05/21 19:01:13 kid1| Process ID 61439
2017/05/21 19:01:13 kid1| Service Name: squid
2017/05/21 19:01:13 kid1| Starting Squid Cache version 3.5.24 for amd64-portbld-freebsd11.0...
2017/05/21 19:01:13 kid1| Set Current Directory to /var/squid/cache
Page faults with physical i/o: 0
Maximum Resident Size: 122496 KB
CPU Usage: 0.318 seconds = 0.262 user + 0.056 sys
Squid Cache (Version 3.5.24): Terminated abnormally.
if needed, or if running Squid for the first time.
for details. Run 'squid -z' to create swap directories
FATAL: Failed to verify one of the swap directories, Check cache.log
2017/05/21 19:01:09 kid1| ERROR: /var/squid/cache/00: (2) No such file or directory
2017/05/21 19:01:09 kid1| Max Swap size: 20480000 KB
2017/05/21 19:01:09 kid1| Max Mem size: 524288 KB
2017/05/21 19:01:09 kid1| Using 131072 Store buckets
2017/05/21 19:01:09 kid1| Target number of buckets: 80785
2017/05/21 19:01:09 kid1| Swap maxSize 20480000 + 524288 KB, estimated 1615714 objects
2017/05/21 19:01:09 kid1| WARNING: log name now starts with a module name. Use 'stdio:/var/log/squid/store.log'
2017/05/21 19:01:09 kid1| Logfile: opening log /var/log/squid/store.log
2017/05/21 19:01:09 kid1| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
2017/05/21 19:01:09 kid1| Unlinkd pipe opened on FD 24
2017/05/21 19:01:09 kid1| WARNING: log name now starts with a module name. Use 'stdio:/var/log/squid/access.log'
2017/05/21 19:01:09 kid1| Logfile: opening log /var/log/squid/access.log
2017/05/21 19:01:09 kid1| helperOpenServers: Starting 5/5 'ssl_crtd' processes
2017/05/21 19:01:09 kid1| Adding nameserver 129.250.35.251 from /etc/resolv.conf
2017/05/21 19:01:09 kid1| Adding nameserver 74.82.42.42 from /etc/resolv.conf
2017/05/21 19:01:09 kid1| Adding nameserver 141.1.1.1 from /etc/resolv.conf
2017/05/21 19:01:09 kid1| Adding nameserver 192.168.10.12 from /etc/resolv.conf
2017/05/21 19:01:09 kid1| Adding nameserver 127.0.0.1 from /etc/resolv.conf
2017/05/21 19:01:09 kid1| Adding domain imedos.local from /etc/resolv.conf
2017/05/21 19:01:09 kid1| DNS Socket created at 0.0.0.0, FD 7
2017/05/21 19:01:09 kid1| DNS Socket created at [::], FD 6
2017/05/21 19:01:09 kid1| Initializing IP Cache...
2017/05/21 19:01:09 kid1| With 57699 file descriptors available
2017/05/21 19:01:09 kid1| Process Roles: worker
2017/05/21 19:01:09 kid1| Process ID 59695
2017/05/21 19:01:09 kid1| Service Name: squid
2017/05/21 19:01:09 kid1| Starting Squid Cache version 3.5.24 for amd64-portbld-freebsd11.0...
2017/05/21 19:01:09 kid1| Set Current Directory to /var/squid/cache
Page faults with physical i/o: 0
Maximum Resident Size: 123216 KB
CPU Usage: 0.309 seconds = 0.277 user + 0.032 sys
Squid Cache (Version 3.5.24): Terminated abnormally.
if needed, or if running Squid for the first time.
for details. Run 'squid -z' to create swap directories
FATAL: Failed to verify one of the swap directories, Check cache.log
2017/05/21 19:01:06 kid1| ERROR: /var/squid/cache/00: (2) No such file or directory
2017/05/21 19:01:06 kid1| Max Swap size: 20480000 KB
2017/05/21 19:01:06 kid1| Max Mem size: 524288 KB
2017/05/21 19:01:06 kid1| Using 131072 Store buckets
2017/05/21 19:01:06 kid1| Target number of buckets: 80785
2017/05/21 19:01:06 kid1| Swap maxSize 20480000 + 524288 KB, estimated 1615714 objects
2017/05/21 19:01:06 kid1| WARNING: log name now starts with a module name. Use 'stdio:/var/log/squid/store.log'
2017/05/21 19:01:06 kid1| Logfile: opening log /var/log/squid/store.log
2017/05/21 19:01:06 kid1| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
2017/05/21 19:01:06 kid1| Unlinkd pipe opened on FD 24
2017/05/21 19:01:05 kid1| WARNING: log name now starts with a module name. Use 'stdio:/var/log/squid/access.log'
2017/05/21 19:01:05 kid1| Logfile: opening log /var/log/squid/access.log
2017/05/21 19:01:05 kid1| helperOpenServers: Starting 5/5 'ssl_crtd' processes
2017/05/21 19:01:05 kid1| Adding nameserver 129.250.35.251 from /etc/resolv.conf
2017/05/21 19:01:05 kid1| Adding nameserver 74.82.42.42 from /etc/resolv.conf
2017/05/21 19:01:05 kid1| Adding nameserver 141.1.1.1 from /etc/resolv.conf
2017/05/21 19:01:05 kid1| Adding nameserver 192.168.10.12 from /etc/resolv.conf
2017/05/21 19:01:05 kid1| Adding nameserver 127.0.0.1 from /etc/resolv.conf
2017/05/21 19:01:05 kid1| Adding domain imedos.local from /etc/resolv.conf
2017/05/21 19:01:05 kid1| DNS Socket created at 0.0.0.0, FD 7
2017/05/21 19:01:05 kid1| DNS Socket created at [::], FD 6
2017/05/21 19:01:05 kid1| Initializing IP Cache...
2017/05/21 19:01:05 kid1| With 57699 file descriptors available
2017/05/21 19:01:05 kid1| Process Roles: worker
2017/05/21 19:01:05 kid1| Process ID 57219
2017/05/21 19:01:05 kid1| Service Name: squid
2017/05/21 19:01:05 kid1| Starting Squid Cache version 3.5.24 for amd64-portbld-freebsd11.0...
2017/05/21 19:01:05 kid1| Set Current Directory to /var/squid/cache
Page faults with physical i/o: 0
Maximum Resident Size: 112160 KB
CPU Usage: 0.325 seconds = 0.284 user + 0.041 sys
Squid Cache (Version 3.5.24): Terminated abnormally.
if needed, or if running Squid for the first time.
for details. Run 'squid -z' to create swap directories
FATAL: Failed to verify one of the swap directories, Check cache.log
2017/05/21 19:01:02 kid1| ERROR: /var/squid/cache/00: (2) No such file or directory
2017/05/21 19:01:02 kid1| Max Swap size: 20480000 KB
2017/05/21 19:01:02 kid1| Max Mem size: 524288 KB
2017/05/21 19:01:02 kid1| Using 131072 Store buckets
2017/05/21 19:01:02 kid1| Target number of buckets: 80785
2017/05/21 19:01:02 kid1| Swap maxSize 20480000 + 524288 KB, estimated 1615714 objects
2017/05/21 19:01:02 kid1| WARNING: log name now starts with a module name. Use 'stdio:/var/log/squid/store.log'
2017/05/21 19:01:02 kid1| Logfile: opening log /var/log/squid/store.log
2017/05/21 19:01:02 kid1| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
2017/05/21 19:01:02 kid1| Unlinkd pipe opened on FD 24
2017/05/21 19:01:02 kid1| WARNING: log name now starts with a module name. Use 'stdio:/var/log/squid/access.log'
2017/05/21 19:01:02 kid1| Logfile: opening log /var/log/squid/access.log
2017/05/21 19:01:02 kid1| helperOpenServers: Starting 5/5 'ssl_crtd' processes
2017/05/21 19:01:02 kid1| Adding nameserver 129.250.35.251 from /etc/resolv.conf
2017/05/21 19:01:02 kid1| Adding nameserver 74.82.42.42 from /etc/resolv.conf
2017/05/21 19:01:02 kid1| Adding nameserver 141.1.1.1 from /etc/resolv.conf
2017/05/21 19:01:02 kid1| Adding nameserver 192.168.10.12 from /etc/resolv.conf
2017/05/21 19:01:02 kid1| Adding nameserver 127.0.0.1 from /etc/resolv.conf
2017/05/21 19:01:02 kid1| Adding domain imedos.local from /etc/resolv.conf
2017/05/21 19:01:02 kid1| DNS Socket created at 0.0.0.0, FD 7
2017/05/21 19:01:02 kid1| DNS Socket created at [::], FD 6
2017/05/21 19:01:02 kid1| Initializing IP Cache...
2017/05/21 19:01:02 kid1| With 57699 file descriptors available
2017/05/21 19:01:02 kid1| Process Roles: worker
2017/05/21 19:01:02 kid1| Process ID 52027
2017/05/21 19:01:02 kid1| Service Name: squid
2017/05/21 19:01:02 kid1| Starting Squid Cache version 3.5.24 for amd64-portbld-freebsd11.0...
2017/05/21 19:01:02 kid1| Set Current Directory to /var/squid/cache
Page faults with physical i/o: 3
Maximum Resident Size: 125472 KB
CPU Usage: 0.332 seconds = 0.293 user + 0.039 sys
Squid Cache (Version 3.5.24): Terminated abnormally.
if needed, or if running Squid for the first time.
for details. Run 'squid -z' to create swap directories
FATAL: Failed to verify one of the swap directories, Check cache.log
2017/05/21 19:00:58 kid1| ERROR: /var/squid/cache/00: (2) No such file or directory
2017/05/21 19:00:58 kid1| Max Swap size: 20480000 KB
2017/05/21 19:00:58 kid1| Max Mem size: 524288 KB
2017/05/21 19:00:58 kid1| Using 131072 Store buckets
2017/05/21 19:00:58 kid1| Target number of buckets: 80785
2017/05/21 19:00:58 kid1| Swap maxSize 20480000 + 524288 KB, estimated 1615714 objects
2017/05/21 19:00:58 kid1| WARNING: log name now starts with a module name. Use 'stdio:/var/log/squid/store.log'
2017/05/21 19:00:58 kid1| Logfile: opening log /var/log/squid/store.log
2017/05/21 19:00:58 kid1| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
2017/05/21 19:00:58 kid1| Unlinkd pipe opened on FD 24
2017/05/21 19:00:58 kid1| WARNING: log name now starts with a module name. Use 'stdio:/var/log/squid/access.log'
2017/05/21 19:00:58 kid1| Logfile: opening log /var/log/squid/access.log
2017/05/21 19:00:58 kid1| helperOpenServers: Starting 5/5 'ssl_crtd' processes
2017/05/21 19:00:58 kid1| Adding nameserver 129.250.35.251 from /etc/resolv.conf
2017/05/21 19:00:58 kid1| Adding nameserver 74.82.42.42 from /etc/resolv.conf
2017/05/21 19:00:58 kid1| Adding nameserver 141.1.1.1 from /etc/resolv.conf
2017/05/21 19:00:58 kid1| Adding nameserver 192.168.10.12 from /etc/resolv.conf
2017/05/21 19:00:58 kid1| Adding nameserver 127.0.0.1 from /etc/resolv.conf
2017/05/21 19:00:58 kid1| Adding domain imedos.local from /etc/resolv.conf
2017/05/21 19:00:58 kid1| DNS Socket created at 0.0.0.0, FD 7
2017/05/21 19:00:58 kid1| DNS Socket created at [::], FD 6
2017/05/21 19:00:58 kid1| Initializing IP Cache...
2017/05/21 19:00:58 kid1| With 57699 file descriptors available
2017/05/21 19:00:58 kid1| Process Roles: worker
2017/05/21 19:00:58 kid1| Process ID 47238
2017/05/21 19:00:58 kid1| Service Name: squid
2017/05/21 19:00:58 kid1| Starting Squid Cache version 3.5.24 for amd64-portbld-freebsd11.0...
2017/05/21 19:00:58 kid1| Set Current Directory to /var/squid/cache


NTP log:

Code Select Expand


May 21 19:02:30 ntpd[4916]: Listening on routing socket on fd #28 for interface updates
May 21 19:02:30 ntpd[4916]: Listen normally on 7 lo0 127.0.0.1:123
May 21 19:02:30 ntpd[4916]: Listen normally on 6 lo0 [::1]:123
May 21 19:02:30 ntpd[4916]: Listen normally on 5 em1 [fe80::207:e9ff:fe3e:d014%3]:123
May 21 19:02:30 ntpd[4916]: Listen normally on 4 em1 192.168.100.1:123
May 21 19:02:30 ntpd[4916]: Listen normally on 3 em0 192.168.10.1:123
May 21 19:02:30 ntpd[4916]: Listen normally on 2 em0 [fe80::21d:92ff:fedd:dbfe%2]:123
May 21 19:02:30 ntpd[4916]: Listen and drop on 1 v4wildcard 0.0.0.0:123
May 21 19:02:30 ntpd[4916]: Listen and drop on 0 v6wildcard [::]:123
May 21 19:02:30 ntpd[4916]: restrict: 'monitor' cannot be disabled while 'limited' is enabled
May 21 19:02:30 ntpd[4916]: proto: precision = 0.250 usec (-22)
May 21 19:02:30 ntpd[4671]: Command line: /usr/local/sbin/ntpd -g -c /var/etc/ntpd.conf -p /var/run/ntpd.pid
May 21 19:02:30 ntpd[4671]: ntpd 4.2.8p10@1.3728-o Mon Mar 27 21:53:37 UTC 2017 (1): Starting
May 21 19:02:30 ntp: Starting NTP Daemon.
May 21 19:02:30 ntp: Successfully synced time after 1 attempts.
May 21 19:02:29 ntpdate[71001]: step time server 131.211.8.244 offset -1.107185 sec
May 21 19:01:49 ntpdate[93861]: no servers can be used, exiting
May 21 19:01:49 ntpdate[93861]: Can't find host 0.nl.pool.ntp.org: hostname nor servname provided, or not known (8)
May 21 19:01:19 ntpdate[93861]: Can't find host 0.de.pool.ntp.org: hostname nor servname provided, or not known (8)


Ja - selbes Verhalten hier:
Nach Reboot 4 Versuche:

Code Select Expand


2017/05/21 18:33:46 kid1| ERROR: /var/squid/cache/00: (2) No such file or directory
2017/05/21 18:33:43 kid1| ERROR: /var/squid/cache/00: (2) No such file or directory
2017/05/21 18:33:39 kid1| ERROR: /var/squid/cache/00: (2) No such file or directory
2017/05/21 18:33:35 kid1| ERROR: /var/squid/cache/00: (2) No such file or directory
2017/05/21 18:33:31 kid1| ERROR: /var/squid/cache/00: (2) No such file or directory


Komplettes log des letzten Versuches:

Code Select Expand


Page faults with physical i/o: 0
Maximum Resident Size: 123760 KB
CPU Usage: 0.313 seconds = 0.273 user + 0.040 sys
Squid Cache (Version 3.5.24): Terminated abnormally.
if needed, or if running Squid for the first time.
for details. Run 'squid -z' to create swap directories
FATAL: Failed to verify one of the swap directories, Check cache.log
2017/05/21 18:33:46 kid1| ERROR: /var/squid/cache/00: (2) No such file or directory
2017/05/21 18:33:46 kid1| Max Swap size: 20480000 KB
2017/05/21 18:33:46 kid1| Max Mem size: 524288 KB
2017/05/21 18:33:46 kid1| Using 131072 Store buckets
2017/05/21 18:33:46 kid1| Target number of buckets: 80785
2017/05/21 18:33:46 kid1| Swap maxSize 20480000 + 524288 KB, estimated 1615714 objects
2017/05/21 18:33:46 kid1| WARNING: log name now starts with a module name. Use 'stdio:/var/log/squid/store.log'
2017/05/21 18:33:46 kid1| Logfile: opening log /var/log/squid/store.log
2017/05/21 18:33:46 kid1| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
2017/05/21 18:33:46 kid1| Unlinkd pipe opened on FD 24
2017/05/21 18:33:46 kid1| WARNING: log name now starts with a module name. Use 'stdio:/var/log/squid/access.log'
2017/05/21 18:33:46 kid1| Logfile: opening log /var/log/squid/access.log
2017/05/21 18:33:46 kid1| helperOpenServers: Starting 5/5 'ssl_crtd' processes
2017/05/21 18:33:46 kid1| Adding nameserver 129.250.35.251 from /etc/resolv.conf
2017/05/21 18:33:46 kid1| Adding nameserver 74.82.42.42 from /etc/resolv.conf
2017/05/21 18:33:46 kid1| Adding nameserver 141.1.1.1 from /etc/resolv.conf
2017/05/21 18:33:46 kid1| Adding nameserver 192.168.10.12 from /etc/resolv.conf
2017/05/21 18:33:46 kid1| Adding nameserver 127.0.0.1 from /etc/resolv.conf
2017/05/21 18:33:46 kid1| Adding domain imedos.local from /etc/resolv.conf
2017/05/21 18:33:46 kid1| DNS Socket created at 0.0.0.0, FD 7
2017/05/21 18:33:46 kid1| DNS Socket created at [::], FD 6
2017/05/21 18:33:46 kid1| Initializing IP Cache...
2017/05/21 18:33:46 kid1| With 57699 file descriptors available
2017/05/21 18:33:46 kid1| Process Roles: worker
2017/05/21 18:33:46 kid1| Process ID 58423
2017/05/21 18:33:46 kid1| Service Name: squid
2017/05/21 18:33:46 kid1| Starting Squid Cache version 3.5.24 for amd64-portbld-freebsd11.0...
2017/05/21 18:33:46 kid1| Set Current Directory to /var/squid/cache
Page faults with physical i/o: 0
Maximum Resident Size: 122016 KB
CPU Usage: 0.313 seconds = 0.266 user + 0.047 sys


Ah - da haben wir aneinander vorbei geredet, bzw. ich habe mich sehr unpräzise ausgedrückt.
Ich möchte eigentlich nicht mein LAN oder DMZ verteilen, sondern externe Clients, bzw Dienste, welche dyn. IP Zugänge haben. Also quasi einen eigenen dedizierten DynDNS Dienst, den ich selber verwalten kann. Es gibt dazu etliche Tutorials, wie man das mit einem bind9 und den o.g. beiderseitig bekannten Keys bewerkstelligen kann. Aber ich habe gedacht, dass es eleganter wäre, wenn das gleich auf dem opnsense läuft (port53 nur auf der WAN Schnittstelle, intern soll natürliche der interne DNS daemon laufen).

So etwa habe ich mir das gedacht und auch schon angefangen - es klingt erst mal nicht nach Hexenwerk ...

Vielen Dank für die Info - und ich werde deinen Rat befolgen und auch das normale LAN noch taggen...