Messages

1

22.1 Legacy Series / General VLAN / Network question

« on: June 01, 2022, 08:52:34 am »

Hi Community,

First of all: I am not so experienced in this topic, so please appologize my (maybe) beginner question :-)

Following situation:

I would like to use a SBC with two 2.5gb NIC‘s as my new OPNSense FW. In OPNSense I would like to define my vlans.
The SBC is connected to my network (I would like to use 2 MikroTik CSS610-8G-2S+IN switches). The link between my switches will be a 10gbe fibre (sfp+ modules).

Does the opnsense connection to my network (1gbit or 2,5bgit)  possibly effect the 10gbe connection between my switches? Or in other words: is the opnsense —> switch connection a bottleneck which will effect the 10gbe switch-to-switch uplink?

Thanks in advance and best regards,
Thomas

2

Virtual private networks / Re: OpenVPN: resolve internal hostname (on my LAN)

« on: January 19, 2021, 05:41:13 pm »

After reviewing my configuration I found a setting, which I tought I has activated it (maybe I forgott to save it...)

My bad!


VPN > OpenVPN > Server > Edit > Client Settings > DNS Server > ------> insert your (local) DNS Server.

Afterwards I was able to resolve the hostname of my target Server from my VPN Client.

Cheers
Thomas

3

Virtual private networks / [SOLVED] OpenVPN: resolve internal hostname (on my LAN)

« on: January 19, 2021, 05:12:21 pm »

Hi Community,

I am using OPNSense a couple of years in my home environment without any problems. Last year I created a VPN Server with OpenVPN on my OPNSense, which is running also without problems untill now.

Untill now, I have used VPN from my iPhone to contact a single service at my network. Therefore I had to insert the IP (on my VPN Client/Phone), add a relevant rule in my firewall and everything is working fine.


Now I want to access a second service in my network and I tried to access it with it´s internal DNS name and not the internal IP adress. Unfortunately the dns of the target host can not be resolved from my VPN-Client (iphone). When I access it via the internal IP, I can establish an connection, but the goal should be to access it via the internal hostname.

Did u have an idea, what I have done wrong in my configuration, or where should I start my troubbleshooting?

Many thanks in advance and best regards,

Thomas

4

19.1 Legacy Series / Re: 19.1 upgrade and installation hangs

« on: July 04, 2019, 12:05:08 am »

Hey Folks,

thanks for the support - indeed it was an hardware related problem!

I am using a ASUS J1800I-C Mainboard which was obvoisly not supported in my BIOS Version (0808).
After implementing the latest BIOS Version, the 19.1.4 live-CD came up.

I was suprised because the last BIOS Update for this board (which I was using since today) provided by ASUS was published in 2015... I was suprised to see a new BIOS (release Feb 2019).

Its running now and I am happy af

Thanks and best regards,
Thomas

5

19.1 Legacy Series / Re: 19.1 upgrade and installation hangs

« on: July 01, 2019, 10:20:09 pm »

Hi Franco,

I have logged in to the webinterface and started the update. Unfortunately OPNSence stuck at the same point as above mentioned (in February).

I used the option 5 (old kernel) at the boot menu and 18.7 cames up. After logging in to the webinterface I checked again for updates. Now only 19.1.4 was shown. I clicked on "apply update" and the system was loading one file (21 MB) and restarted the firewall.

After that I assume that 19.1.4 came up, but it was not the case. 18.7.10 came up.

Thats strange for me. Does someone has any idea?

thanks and regards
Thomas

6

19.1 Legacy Series / Re: 19.1 upgrade and installation hangs

« on: July 01, 2019, 11:00:47 am »

Hello,

short question: when I am upgrading via UI now from 18.7.10 to 19.1 - which release would be installed?

7

19.1 Legacy Series / Re: 19.1 upgrade and installation hangs

« on: March 14, 2019, 05:20:28 pm »

Hi bitwolf,

thanks for this information - I am online again since some hours, as I was able to find a 18.7 iso here (https://opnsense.c0urier.net/releases/18.7/) after a fresh installation I restored my backup and anything was working fine again *puh* :-)

I am back in business with 18.7.10, now and will check for updates next week again

many thanks and best regards!

Thomas

8

19.1 Legacy Series / [SOLVED] 19.1 upgrade and installation hangs

« on: March 14, 2019, 12:03:23 pm »

Hi Support,

today I tried upgrading my Firwall (I guess it was 18.7.10 ...latest release) to release 19.

The upgrade was started by gui and hangs after some minutes at the boot screen on:

/boot/kernel/ng_tcpmss.ko text=0xe64 data=0x128 syms=[0x4+0x420+0x4+0x465]
Booting...
/

(see photo#1)

nothing happend...for a couple of minutes.
Hmmm... OK ... I read that I should try install the whole OPNSense again, so I downloaded the 19.2 img and burned it to my usb key (on OSX) and started the machine.

While booting the 19.1 img from usb It hangs now 5 step after ng_tcpmss.ko at:

/boot/kernel/ng_vlan.ko text=0x16e0 data=0x128 syms=[0x4+0x4f0+0x4+0x50e].


At the moment my network is death and nothing is working

Does anobody has an idea what can I do?

Thanks and best regards,

Thomas

9

General Discussion / Re: Could not Access my GUI - SSL_ERROR_NO_CYPHER_OVERLAP Error

« on: November 12, 2018, 01:26:11 pm »

Problem fixed:

I determined, that the certificate on my management host were expired. Fortunately I was able to connet to my firewall via ipad.

From there I was able to create a new internal root and sub ca as well as a new internal certificate. After creating these 3 things I have imported the root and sub ca certificates into my windows computer - and it works.

This guide/video helps me to solve the problem:
https://www.youtube.com/watch?v=SmSAvVYYP_s

10

General Discussion / Could not Access my GUI - SSL_ERROR_NO_CYPHER_OVERLAP Error

« on: November 12, 2018, 11:49:25 am »

Hi Community,

I am using OPNSence now for some years and never had serious problems before.

From this weekend on, the login to the gui/website isnt working anymore. When opening the url I got the error:

SSL_ERROR_NO_CYPHER_OVERLAP (firefox)

I tried also opera and IE - and getting also errors.

Does someone have an idea, what is going wrong and how this error can be fixed?

Thanks in advance and best regards!

11

Hardware and Performance / Re: Raspberry Pi3 with Opensense

« on: March 16, 2018, 08:40:43 am »

Hi guys,
hi franco,

any news regarding OPNSense on a Rasperry PI 2/3 etc?

The new Raspberry 3 B+ was released this week and looks interesting :-)

BR
Thomas