Messages

1

20.1 Legacy Series / Re: Unbound DNS - Unable to resolve Host Overrides

« on: March 24, 2020, 04:37:14 pm »

I have exactly the same issue and tried multiple options to resolve this, none of them worked 

However, I had the following observation:

Hosts which are only defined in unbound (so no A/CNAME in the public DNS) do work
; <<>> DiG 9.10.6 <<>> localonly.mydomain.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: xxxx
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0

Hosts which are defined in unbound and in the public DNS (w/ A or CNAME in the public DNS) do NOT work.
The difference I see is in the number of ANSWER, which seems like unbound is passing the public answer to the client instead of an overwrite
; <<>> DiG 9.10.6 <<>> localnpublic.mydomain.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: xxxxx
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 0

2

Zenarmor (Sensei) / Re: Sensei on OPNsense - Application based filtering

« on: March 25, 2019, 04:48:53 pm »

Dear Sensei users,

An update on broken Elasticsearch indices:

After digging together with users who have reported the issue, it looks like the indices were broken because some index file integrity got broken.

This is usually because of abrupt shutdown of the firewall. If power goes off suddenly, before Elastic does a full write of its in-memory buffers, than we have a broken index.

So, not to experience this issue try to turn off your system gracefully.

If in any case this happens, Sensei 0.8.0.beta6 has a "Fix Elastic indices" button under Sensei -> Configuration -> Reporting & Data menu. Just click on the button and Sensei will reset only the broken indices.

0.8.0.beta6 is available for update for 0.8 users.

0.8 looks stable enough to offer as an update for existing 0.7 installations. If we do not see any outstanding issues, we'll move 0.8 to the general repo in a few days.

I just had a power outage on my opnsense, after the reboot the reports could not be displayed. The "Fix Indices" shows all good, but the report still does not show up. I still have the system in a "broken" state if you want to investigate further...

OpnSense 19.1.4
Sensei 0.8beta6

3

Zenarmor (Sensei) / Re: Sensei on OPNsense - Application based filtering

« on: March 03, 2019, 10:27:51 am »

Hi,

I just installed Sensei on my OPNsense and I think it's working great.
I found in the dashboard an interesting "HotSpot" I'd like to investigate further. However, the "Top Destinations Locations Heatmap" does not allow for a Drill Down, nor is there a geo location filter available.

Can you please advise on how to investigate on such hotspots?
Is it possible to retrieve DNS/IP for a certain geo location hotspot?

Regards
Alexander

4

19.1 Legacy Series / Re: Kernel panic after upgrade

« on: March 01, 2019, 07:54:50 pm »

Is there an update on this?
I try a fresh install with a i7-8700 CPU/Shuttle XV310 and see the same kernel panic.
The suggested boot options did not help

Edit:
This is a fresh install on a pyhsical device - no hypervisor involved.
But it is the exact same kernel panic.

Any advise?

5

17.7 Legacy Series / Re: OPNsense 17.7 hangs with reboot and shutdown

« on: September 27, 2017, 07:38:43 am »

I have the same problem now - we're you able to solve this?