Messages

The same happened to me. I downloaded again the default template, and added my welcome text, and uploaded and selected it. Then it works. The template has changed at some point, you need to update it.

acme works, so it doesn't get blocked due it. Not to say it woulnd't interfere.

Hi, I did the commands above. No help. The directory looks like this:

Code Select Expand

root@OPNsense:~ # ls -lah /var/lib/php/tmp/
total 273
drwxrwxrwt  2 wwwonly wheel  960B Sep 30 11:55 .
drwxr-x---  5 root    wheel  512B Jul  6 23:35 ..
-rw-r-----  1 wwwonly wheel   34K Sep 12 17:04 configdmodelfield.data
-rw-rw----  1 wwwonly wheel  913B Sep 12 17:04 mdl_cache_OPNsense_Cron_Cron.json
-rw-rw----  1 wwwonly wheel   11K Sep 30 11:46 mdl_cache_OPNsense_Firewall_Alias.json
-rw-rw----  1 wwwonly wheel  229B Sep 12 17:04 mdl_cache_OPNsense_Firewall_Category.json
-rw-rw----  1 wwwonly wheel  147K Sep 12 17:04 mdl_cache_OPNsense_HAProxy_HAProxy.json
-rw-rw----  1 wwwonly wheel  2.0K Sep 12 17:04 mdl_cache_OPNsense_IPsec_IPsec.json
-rw-rw----  1 wwwonly wheel  1.8K Sep 12 17:04 mdl_cache_OPNsense_TrafficShaper_TrafficShaper.json
-rw-rw----  1 wwwonly wheel  2.4K Sep 12 17:04 mdl_cache_OPNsense_Wireguard_Client.json
-rw-rw----  1 wwwonly wheel  957B Sep 12 17:04 mdl_cache_OPNsense_Wireguard_Server.json
-rw-rw----  1 wwwonly wheel   22K Sep 30 11:41 opnsense_acl_cache.json
-rw-rw----  1 wwwonly wheel   23K Sep 30 11:48 opnsense_menu_cache.xml
srwxr-x---  1 root    wheel    0B Sep 30 11:55 php-fastcgi.socket-0
srwxr-x---  1 root    wheel    0B Sep 30 11:55 php-fastcgi.socket-1
srwxr-x---  1 root    wheel    0B Sep 30 11:55 php-fastcgi.socket-2
srwxr-x---  1 root    wheel    0B Sep 30 11:55 php-fastcgi.socket-3
and here is all my rc.conf, I have not manually edit it:

Code Select Expand

root@OPNsense:~ # grep . /etc/rc.conf.d/*
/etc/rc.conf.d/acme_http_challenge:acme_http_challenge_enable=YES
/etc/rc.conf.d/acme_http_challenge:acme_http_challenge_conf="/var/etc/lighttpd-acme-challenge.conf"
/etc/rc.conf.d/acme_http_challenge:acme_http_challenge_pidfile="/var/run/lighttpd-acme-challenge.pid"
/etc/rc.conf.d/acme_http_challenge:acme_http_challenge_setup="/usr/local/opnsense/scripts/OPNsense/AcmeClient/setup.sh"
/etc/rc.conf.d/captiveportal:captiveportal_defer="YES"
/etc/rc.conf.d/captiveportal:captiveportal_enable="YES"
/etc/rc.conf.d/ddclient:ddclient_enable="NO"
/etc/rc.conf.d/ddclient_opn:ddclient_opn_enable="YES"
/etc/rc.conf.d/ddclient_opn:ddclient_opn_setup="/usr/local/opnsense/scripts/ddclient/setup.sh"
/etc/rc.conf.d/dnctl:dummynet_enable="YES"
/etc/rc.conf.d/dnctl:dnctl_enable="YES"
/etc/rc.conf.d/dnctl:dnctl_rules="/usr/local/etc/dnctl.conf"
/etc/rc.conf.d/dnctl:dnctl_setup="/usr/local/opnsense/scripts/shaper/setup.sh"
/etc/rc.conf.d/dnctl:dnctl_skip="YES"
/etc/rc.conf.d/dnsmasq:dnsmasq_enable="NO"
/etc/rc.conf.d/flowd:#
/etc/rc.conf.d/flowd:# Automatic generated configuration for netflow.
/etc/rc.conf.d/flowd:# Do not edit this file manually.
/etc/rc.conf.d/flowd:#
/etc/rc.conf.d/flowd:flowd_enable="NO"
/etc/rc.conf.d/flowd_aggregate:#
/etc/rc.conf.d/flowd_aggregate:# Automatic generated configuration for netflow.
/etc/rc.conf.d/flowd_aggregate:# Do not edit this file manually.
/etc/rc.conf.d/flowd_aggregate:#
/etc/rc.conf.d/flowd_aggregate:flowd_aggregate_enable="NO"
/etc/rc.conf.d/haproxy:haproxy_enable=YES
/etc/rc.conf.d/haproxy:haproxy_setup="/usr/local/opnsense/scripts/OPNsense/HAProxy/setup.sh"
/etc/rc.conf.d/haproxy:haproxy_pidfile="/var/run/haproxy.pid"
/etc/rc.conf.d/haproxy:haproxy_config="/usr/local/etc/haproxy.conf"
/etc/rc.conf.d/haproxy:haproxy_hardstop=YES
/etc/rc.conf.d/haproxy:haproxy_softreload=NO
/etc/rc.conf.d/ipfw:firewall_enable="YES"
/etc/rc.conf.d/ipfw:firewall_script="/usr/local/etc/rc.ipfw"
/etc/rc.conf.d/ipfw:ipfw_skip="YES"
/etc/rc.conf.d/kea:kea_enable="YES"
/etc/rc.conf.d/kea:kea_setup="/usr/local/sbin/pluginctl -c kea_sync"
/etc/rc.conf.d/monit:# DO NOT EDIT THIS FILE -- OPNsense auto-generated file
/etc/rc.conf.d/monit:monit_enable="NO"
/etc/rc.conf.d/netflow:#
/etc/rc.conf.d/netflow:# Automatic generated configuration for netflow.
/etc/rc.conf.d/netflow:# Do not edit this file manually.
/etc/rc.conf.d/netflow:#
/etc/rc.conf.d/netflow:netflow_enable="NO"
/etc/rc.conf.d/radiusd:radiusd_enable="NO"
/etc/rc.conf.d/suricata:suricata_enable="NO"
/etc/rc.conf.d/syslog_ng:syslog_ng_enable="YES"
/etc/rc.conf.d/syslog_ng:syslog_ng_oomprotect="ALL"
/etc/rc.conf.d/syslog_ng:syslog_ng_pidfile="/var/run/syslog-ng.pid"
/etc/rc.conf.d/syslog_ng:syslog_ng_skip="YES"
/etc/rc.conf.d/telegraf:telegraf_setup="/usr/local/opnsense/scripts/OPNsense/Telegraf/setup.sh"
/etc/rc.conf.d/telegraf:telegraf_enable="YES"
/etc/rc.conf.d/telegraf:telegraf_confdir="/usr/local/etc/telegraf.d"
/etc/rc.conf.d/wireguard:# disable the wireguard rc scripts when installed, bootup handled via rc.syshook
/etc/rc.conf.d/wireguard:wireguard_enable="NO"
root@OPNsense:~ # grep . /etc/rc.conf
# -- BEGIN BSD Installer automatically generated configuration  -- #
# -- Written on Wed Sep 6 16:42:32 UTC 2017-- #
keymap='fi'
# -- END of BSD Installer automatically generated configuration -- #


Yes, it hasn't started working for me either.

Unfortunately it doesn't work any better in the OPNsense 25.7.2-amd64. Same logs, and the directory looks like this:

Code Select Expand

root@OPNsense:~ # tail -10 /var/log/lighttpd/lighttpd_20250825.log
<29>1 2025-08-25T10:23:24+03:00 OPNsense.ikenet lighttpd 82174 - [meta sequenceId="1"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.81/src/server.c.1971) server started (lighttpd/1.4.81)
<27>1 2025-08-25T10:23:24+03:00 OPNsense.ikenet lighttpd 82174 - [meta sequenceId="2"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.81/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi-cp.socket-0: Permission denied
<27>1 2025-08-25T10:23:24+03:00 OPNsense.ikenet lighttpd 82174 - [meta sequenceId="3"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.81/src/gw_backend.c.568) bind() unix:/var/lib/php/tmp/php-fastcgi-cp.socket-0: Permission denied
<27>1 2025-08-25T10:23:24+03:00 OPNsense.ikenet lighttpd 82174 - [meta sequenceId="4"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.81/src/gw_backend.c.1712) [ERROR]: spawning gw failed.
<27>1 2025-08-25T10:23:24+03:00 OPNsense.ikenet lighttpd 82174 - [meta sequenceId="5"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.81/src/server.c.1975) Configuration of plugins failed. Going down.
root@OPNsense:~ # tail -10 /var/log/lighttpd/lighttpd_20250825.log
root@OPNsense:~ # ls -la /var/lib/php/tmp/
total 281
drwxrwxrwt  2 wwwonly wheel    960 Aug 25 10:16 .
drwxr-x---  5 root    wheel    512 Jul  6 23:35 ..
-rw-r-----  1 wwwonly wheel  34639 Aug 24 21:45 configdmodelfield.data
-rw-rw----  1 wwwonly wheel    913 Aug 24 21:45 mdl_cache_OPNsense_Cron_Cron.json
-rw-rw----  1 wwwonly wheel  12345 Aug 25 10:16 mdl_cache_OPNsense_Firewall_Alias.json
-rw-rw----  1 wwwonly wheel    229 Aug 24 21:45 mdl_cache_OPNsense_Firewall_Category.json
-rw-rw----  1 wwwonly wheel 152535 Aug 24 21:45 mdl_cache_OPNsense_HAProxy_HAProxy.json
-rw-rw----  1 wwwonly wheel   2028 Aug 24 21:45 mdl_cache_OPNsense_IPsec_IPsec.json
-rw-rw----  1 wwwonly wheel   1947 Aug 24 21:46 mdl_cache_OPNsense_TrafficShaper_TrafficShaper.json
-rw-rw----  1 wwwonly wheel   2485 Aug 24 21:45 mdl_cache_OPNsense_Wireguard_Client.json
-rw-rw----  1 wwwonly wheel    982 Aug 24 21:45 mdl_cache_OPNsense_Wireguard_Server.json
-rw-rw----  1 wwwonly wheel  22790 Aug 25 09:47 opnsense_acl_cache.json
-rw-rw----  1 wwwonly wheel  23893 Aug 25 10:23 opnsense_menu_cache.xml
srwxr-xr-x  1 root    wheel      0 Aug 24 21:46 php-fastcgi.socket-0
srwxr-xr-x  1 root    wheel      0 Aug 24 21:46 php-fastcgi.socket-1
srwxr-xr-x  1 root    wheel      0 Aug 24 21:46 php-fastcgi.socket-2
srwxr-xr-x  1 root    wheel      0 Aug 24 21:46 php-fastcgi.socket-3


to me it feels like someone is not creating the socket lighttpd tries to attach to. And it only gives misleading permission error log when the whole socket is missing.

Nope, same error:

<29>1 2025-08-18T15:48:14+03:00 OPNsense.ikenet lighttpd 60549 - [meta sequenceId="1"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/server.c.1974) server started (lighttpd/1.4.79)
<27>1 2025-08-18T15:48:14+03:00 OPNsense.ikenet lighttpd 60549 - [meta sequenceId="2"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi-cp.socket-0: Permission denied
<27>1 2025-08-18T15:48:14+03:00 OPNsense.ikenet lighttpd 60549 - [meta sequenceId="3"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/gw_backend.c.568) bind() unix:/var/lib/php/tmp/php-fastcgi-cp.socket-0: Permission denied
<27>1 2025-08-18T15:48:14+03:00 OPNsense.ikenet lighttpd 60549 - [meta sequenceId="4"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/gw_backend.c.1712) [ERROR]: spawning gw failed.
<27>1 2025-08-18T15:48:14+03:00 OPNsense.ikenet lighttpd 60549 - [meta sequenceId="5"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/server.c.1978) Configuration of plugins failed. Going down.
root@OPNsense:~ # ls -la /var/lib/php/tmp/
total 277
drwxrwxrwt  2 wwwonly wheel   1088 Aug 18 15:46 .
drwxr-x---  5 root    wheel    512 Jul  6 23:35 ..
-rw-r-----  1 wwwonly wheel  34546 Jul 25 18:23 configdmodelfield.data
-rw-rw----  1 wwwonly wheel    913 Jul 25 18:23 mdl_cache_OPNsense_Cron_Cron.json
-rw-rw----  1 wwwonly wheel   8781 Aug 18 15:46 mdl_cache_OPNsense_Firewall_Alias.json
-rw-rw----  1 wwwonly wheel    229 Jul 25 18:23 mdl_cache_OPNsense_Firewall_Category.json
-rw-rw----  1 wwwonly wheel 152616 Jul 25 18:23 mdl_cache_OPNsense_HAProxy_HAProxy.json
-rw-rw----  1 wwwonly wheel   2028 Jul 25 18:23 mdl_cache_OPNsense_IPsec_IPsec.json
-rw-rw----  1 wwwonly wheel   1947 Jul 25 18:23 mdl_cache_OPNsense_TrafficShaper_TrafficShaper.json
-rw-rw----  1 wwwonly wheel   2485 Jul 25 18:23 mdl_cache_OPNsense_Wireguard_Client.json
-rw-rw----  1 wwwonly wheel    853 Jul 25 18:23 mdl_cache_OPNsense_Wireguard_Server.json
-rw-rw----  1 wwwonly wheel  22798 Aug 18 15:14 opnsense_acl_cache.json
-rw-rw----  1 wwwonly wheel  23893 Aug 18 09:44 opnsense_menu_cache.xml
srwxr-xr-x  1 root    wheel      0 Aug 11 00:09 php-fastcgi.socket-0
srwxr-xr-x  1 root    wheel      0 Aug  7 13:22 php-fastcgi.socket-1
srwxr-xr-x  1 root    wheel      0 Aug 18 09:56 php-fastcgi.socket-2
srwxr-xr-x  1 root    wheel      0 Aug 13 19:06 php-fastcgi.socket-3
srwxr-xr-x  1 root    wheel      0 Aug 12 13:05 php-fastcgi.socket-4

No, this is the log now:

<27>1 2025-08-18T14:45:43+03:00 OPNsense.ikenet lighttpd 98149 - [meta sequenceId="2"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi-cp.socket-0: Permission denied
<27>1 2025-08-18T14:45:43+03:00 OPNsense.ikenet lighttpd 98149 - [meta sequenceId="3"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/gw_backend.c.568) bind() unix:/var/lib/php/tmp/php-fastcgi-cp.socket-0: Permission denied
<27>1 2025-08-18T14:45:43+03:00 OPNsense.ikenet lighttpd 98149 - [meta sequenceId="4"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/gw_backend.c.1712) [ERROR]: spawning gw failed.
<27>1 2025-08-18T14:45:43+03:00 OPNsense.ikenet lighttpd 98149 - [meta sequenceId="5"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/server.c.1978) Configuration of plugins failed. Going down.

So I only gave the chmod command and pressed start on captive portal in services list. No reboot. The file listing is now showing your change:

root@OPNsense:~ # ls -la /var/lib/php/tmp/
total 277
drwxr-x--T  2 wwwonly wheel   1088 Aug 18 14:31 .
drwxr-x---  5 root    wheel    512 Jul  6 23:35 ..
-rw-r-----  1 wwwonly wheel  34546 Jul 25 18:23 configdmodelfield.data
-rw-rw----  1 wwwonly wheel    913 Jul 25 18:23 mdl_cache_OPNsense_Cron_Cron.json
-rw-rw----  1 wwwonly wheel   8781 Aug 18 14:31 mdl_cache_OPNsense_Firewall_Alias.json
-rw-rw----  1 wwwonly wheel    229 Jul 25 18:23 mdl_cache_OPNsense_Firewall_Category.json
-rw-rw----  1 wwwonly wheel 152616 Jul 25 18:23 mdl_cache_OPNsense_HAProxy_HAProxy.json
-rw-rw----  1 wwwonly wheel   2028 Jul 25 18:23 mdl_cache_OPNsense_IPsec_IPsec.json
-rw-rw----  1 wwwonly wheel   1947 Jul 25 18:23 mdl_cache_OPNsense_TrafficShaper_TrafficShaper.json
-rw-rw----  1 wwwonly wheel   2485 Jul 25 18:23 mdl_cache_OPNsense_Wireguard_Client.json
-rw-rw----  1 wwwonly wheel    853 Jul 25 18:23 mdl_cache_OPNsense_Wireguard_Server.json
-rw-rw----  1 wwwonly wheel  22798 Aug 18 14:14 opnsense_acl_cache.json
-rw-rw----  1 wwwonly wheel  23893 Aug 18 09:44 opnsense_menu_cache.xml
srwxr-xr-x  1 root    wheel      0 Aug 11 00:09 php-fastcgi.socket-0
srwxr-xr-x  1 root    wheel      0 Aug  7 13:22 php-fastcgi.socket-1
srwxr-xr-x  1 root    wheel      0 Aug 18 09:56 php-fastcgi.socket-2
srwxr-xr-x  1 root    wheel      0 Aug 13 19:06 php-fastcgi.socket-3
srwxr-xr-x  1 root    wheel      0 Aug 12 13:05 php-fastcgi.socket-4
srwxr-xr-x  1 root    wheel      0 Aug 18 09:45 php-fastcgi.socket-5

There is no such socket at all.
```
root@OPNsense:~ # ls -la /var/lib/php/tmp/
total 277
drwxr-x---  2 wwwonly wheel   1088 Aug 18 14:16 .
drwxr-x---  5 root    wheel    512 Jul  6 23:35 ..
-rw-r-----  1 wwwonly wheel  34546 Jul 25 18:23 configdmodelfield.data
-rw-rw----  1 wwwonly wheel    913 Jul 25 18:23 mdl_cache_OPNsense_Cron_Cron.json
-rw-rw----  1 wwwonly wheel   8781 Aug 18 14:16 mdl_cache_OPNsense_Firewall_Alias.json
-rw-rw----  1 wwwonly wheel    229 Jul 25 18:23 mdl_cache_OPNsense_Firewall_Category.json
-rw-rw----  1 wwwonly wheel 152616 Jul 25 18:23 mdl_cache_OPNsense_HAProxy_HAProxy.json
-rw-rw----  1 wwwonly wheel   2028 Jul 25 18:23 mdl_cache_OPNsense_IPsec_IPsec.json
-rw-rw----  1 wwwonly wheel   1947 Jul 25 18:23 mdl_cache_OPNsense_TrafficShaper_TrafficShaper.json
-rw-rw----  1 wwwonly wheel   2485 Jul 25 18:23 mdl_cache_OPNsense_Wireguard_Client.json
-rw-rw----  1 wwwonly wheel    853 Jul 25 18:23 mdl_cache_OPNsense_Wireguard_Server.json
-rw-rw----  1 wwwonly wheel  22798 Aug 18 14:14 opnsense_acl_cache.json
-rw-rw----  1 wwwonly wheel  23893 Aug 18 09:44 opnsense_menu_cache.xml
srwxr-xr-x  1 root    wheel      0 Aug 11 00:09 php-fastcgi.socket-0
srwxr-xr-x  1 root    wheel      0 Aug  7 13:22 php-fastcgi.socket-1
srwxr-xr-x  1 root    wheel      0 Aug 18 09:56 php-fastcgi.socket-2
srwxr-xr-x  1 root    wheel      0 Aug 13 19:06 php-fastcgi.socket-3
srwxr-xr-x  1 root    wheel      0 Aug 12 13:05 php-fastcgi.socket-4
srwxr-xr-x  1 root    wheel      0 Aug 18 09:45 php-fastcgi.socket-5
```

I have the same problem apparently. I noticed some days ago captive portal won't work. Also noticed the same logs.

seems to be this issue: https://forum.opnsense.org/index.php?topic=48372.msg244847#msg244847

Seems to be there is some permission issue with lighttpd:
```
<29>1 2025-08-18T09:50:50+03:00 OPNsense.mynet lighttpd 65919 - [meta sequenceId="1"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/server.c.1974) server started (lighttpd/1.4.79)
<27>1 2025-08-18T09:50:50+03:00 OPNsense.mynet lighttpd 65919 - [meta sequenceId="2"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/gw_backend.c.533) connect() /var/lib/php/tmp/php-fastcgi-cp.socket-0: Permission denied
<27>1 2025-08-18T09:50:50+03:00 OPNsense.mynet lighttpd 65919 - [meta sequenceId="3"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/gw_backend.c.568) bind() unix:/var/lib/php/tmp/php-fastcgi-cp.socket-0: Permission denied
<27>1 2025-08-18T09:50:50+03:00 OPNsense.mynet lighttpd 65919 - [meta sequenceId="4"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/gw_backend.c.1712) [ERROR]: spawning gw failed.
<27>1 2025-08-18T09:50:50+03:00 OPNsense.mynet lighttpd 65919 - [meta sequenceId="5"] (/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.79/src/server.c.1978) Configuration of plugins failed. Going down.
```

I never see such appear there:
```
root@OPNsense:~ # ls -la /var/lib/php/tmp/php-fastcgi*
srwxr-xr-x  1 root wheel 0 Aug 11 00:09 /var/lib/php/tmp/php-fastcgi.socket-0
srwxr-xr-x  1 root wheel 0 Aug  7 13:22 /var/lib/php/tmp/php-fastcgi.socket-1
srwxr-xr-x  1 root wheel 0 Aug 18 09:56 /var/lib/php/tmp/php-fastcgi.socket-2
srwxr-xr-x  1 root wheel 0 Aug 13 19:06 /var/lib/php/tmp/php-fastcgi.socket-3
srwxr-xr-x  1 root wheel 0 Aug 12 13:05 /var/lib/php/tmp/php-fastcgi.socket-4
srwxr-xr-x  1 root wheel 0 Aug 18 09:45 /var/lib/php/tmp/php-fastcgi.socket-5
```

Hi,

I've run captive portal for years. It has always just worked, even though it gets used very rarely.

Now recently within some months it has stopped working. I haven't touched to it's config in about a year, when I changed the template. And it worked since. Only big changes have been switch to kea and iunbounf. But now it won't start. No log in GUI. Where should I find more info of the failure?

When I join the guest wlan, I get the template for visitors. But there is no login button. And lobby lists captive portal as shut down. Pressing the start button just comes back to disabled after some seconds. OPNsense 25.7-amd64.


Any ideas?

I had dnsmasq in use in opnsense, and moved the config to kea and unbound. It's no biggie just one evening useless work. I don't need to do anything to keep the current setup as it sounds.

Damn, then I made the migration from dnsmasq to kea for nothing, I thought kea was the way forward. Well it works now...