"
@my_network, no, i don't use it.
and i don't think that package from repo can cause kernel panic....
problem somewhere else.
and i don't think that package from repo can cause kernel panic....
problem somewhere else.
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
#1
25.1, 25.4 Production Series / Re: Upgrade fails from 24.7.12_4 to 25.1
February 02, 2025, 10:12:23 PM #2
25.1, 25.4 Production Series / Re: Upgrade fails from 24.7.12_4 to 25.1
February 02, 2025, 08:06:16 PM
i also have issue with upgrading... interesting, how to make old version permanent to boot for time being.
i've tried to
root@OPNsense1:~ # mv /boot/kernel /boot/kernel.bak
root@OPNsense1:~ # cp -r /boot/kernel.old /boot/kernel
root@OPNsense1:~ # shutdown -r now
but it didn't worked.... and more: i can't find kernel panic in logs.
where is the boot log stored?
from screen i manager to get that:
i've tried to
root@OPNsense1:~ # mv /boot/kernel /boot/kernel.bak
root@OPNsense1:~ # cp -r /boot/kernel.old /boot/kernel
root@OPNsense1:~ # shutdown -r now
but it didn't worked.... and more: i can't find kernel panic in logs.
where is the boot log stored?
from screen i manager to get that:
#3
Documentation and Translation / Re: How do I get the tor Control Port Password?
April 28, 2022, 09:31:07 PM
@chrisC as a VERY DIRTY solution you can add strrings to /usr/local/opnsense/service/templates/OPNsense/Tor/torrc
this one is template, which is used to generate config on each restart.
and it will allow to live a bit longer without editing exact torrc file till next time tor will be upgraded.
as a reminder, you can also add trigger to monit, that will send you message, where your line is absent.
this one is template, which is used to generate config on each restart.
and it will allow to live a bit longer without editing exact torrc file till next time tor will be upgraded.
as a reminder, you can also add trigger to monit, that will send you message, where your line is absent.
#4
20.7 Legacy Series / Re: How to install RTL8192CE device
February 08, 2022, 09:56:36 PM
hm... no one answers...
but issue still exist...
but issue still exist...
#5
21.7 Legacy Series / Re: TOR and obfs4 bridges
January 05, 2022, 11:06:55 PM
there is an opened ticket already: https://github.com/opnsense/plugins/issues/961
#6
21.7 Legacy Series / Re: TOR and obfs4 bridges
December 17, 2021, 08:21:31 AM
i've tried to search by "tor" keyword, and there are toooo many links)
but for obfs4 found that: https://forum.opnsense.org/index.php?topic=19114.msg87568#msg87568
so sad, it doesn't have any comments :(
but for obfs4 found that: https://forum.opnsense.org/index.php?topic=19114.msg87568#msg87568
so sad, it doesn't have any comments :(
#7
21.7 Legacy Series / TOR and obfs4 bridges
December 17, 2021, 08:19:29 AM
Hello,
situation: tor is started to being blocked on country wide policy, and obviously it stopped to work.
How it was:
Tor plugin was receiving connections on 9040 port, firewall/NAT was set up to forward all "blocked" traffic to tor. And it was working really cool, till some days ago.
I tried to run fresh tor-browser from same network - it is working without issues.
Also, i've read that: https://blog.torproject.org/tor-censorship-in-russia/ and https://forum.torproject.net/t/tor-blocked-in-russia-how-to-circumvent-censorship/982
noticed, that there are talks about obfs4 bridges. so i've got some bridges, but looks like tor on opnsense doesn't support that.
So asking for advice - are there any workarounds?
situation: tor is started to being blocked on country wide policy, and obviously it stopped to work.
How it was:
Tor plugin was receiving connections on 9040 port, firewall/NAT was set up to forward all "blocked" traffic to tor. And it was working really cool, till some days ago.
I tried to run fresh tor-browser from same network - it is working without issues.
Also, i've read that: https://blog.torproject.org/tor-censorship-in-russia/ and https://forum.torproject.net/t/tor-blocked-in-russia-how-to-circumvent-censorship/982
noticed, that there are talks about obfs4 bridges. so i've got some bridges, but looks like tor on opnsense doesn't support that.
So asking for advice - are there any workarounds?
#8
Web Proxy Filtering and Caching / Re: nginx plugin and some custom settings like worker_rlimit_nofile
July 29, 2021, 10:11:25 PM
thank you!
so, soon it will work... cool.
so, soon it will work... cool.
#9
Web Proxy Filtering and Caching / nginx plugin and some custom settings like worker_rlimit_nofile
July 28, 2021, 09:40:02 PM
Hello,
what is the best way to setup custom settings for nginx reverse-proxy in main part?
for example, i need to configure `worker_rlimit_nofile`?
i saw, that `worker_connections` exist on main configuration in UI... but what about things, which are not added?
also, is it possible to add some vhost.conf file, instead of configuring all thru UI?
would be cool, actually, if there will be special place in `Other` tab to add custom config, where it will be possible to add some things which are not implemented in UI.
ps. why? as it suggested by vendor: https://www.jetbrains.com/help/youtrack/standalone/Reverse-Proxy-Configuration.html#Nginx_Config
what is the best way to setup custom settings for nginx reverse-proxy in main part?
for example, i need to configure `worker_rlimit_nofile`?
i saw, that `worker_connections` exist on main configuration in UI... but what about things, which are not added?
also, is it possible to add some vhost.conf file, instead of configuring all thru UI?
would be cool, actually, if there will be special place in `Other` tab to add custom config, where it will be possible to add some things which are not implemented in UI.
ps. why? as it suggested by vendor: https://www.jetbrains.com/help/youtrack/standalone/Reverse-Proxy-Configuration.html#Nginx_Config
#10
Web Proxy Filtering and Caching / Re: Multiple sites via HAproxy
July 28, 2021, 09:35:25 PM
you can setup HAproxy as with as many sites as you wish.
SSL certificates may be generated with lets encrypt plugin, or you can use your own. no need to use wildcard.
But you will need to define "frontend" and "backend" records, and then map it to each other.
from my opinion, setting up HAproxy is more complicated, then nginx... but still, you can do all things with one public IP.
SSL certificates may be generated with lets encrypt plugin, or you can use your own. no need to use wildcard.
But you will need to define "frontend" and "backend" records, and then map it to each other.
from my opinion, setting up HAproxy is more complicated, then nginx... but still, you can do all things with one public IP.
#11
General Discussion / Re: [SOLVED] Query status of GEOM Mirror (gmirror) RAID1
December 28, 2020, 11:34:51 PM
this is quite nice thing, but now it is not needed to write any sh scripts.
in most cases only need is to add service with:
Name: gmirror status
Type: Custom
Path: /sbin/gmirror status
Tests: NonZeroStatus
and that's it.
it will check `gmirror status` and trigger alerts if status is changed.
in most cases only need is to add service with:
Name: gmirror status
Type: Custom
Path: /sbin/gmirror status
Tests: NonZeroStatus
and that's it.
it will check `gmirror status` and trigger alerts if status is changed.
#12
19.7 Legacy Series / Re: OpenVPN - retrieve connected clients
October 15, 2019, 09:14:54 PM
ok.
tried adding
tried adding
Code Select
status /usr/local/www/clients.log and it works as we need it: we can run curl https://192.168.0.1:8080/clients.log and parse it locally.
#13
19.7 Legacy Series / OpenVPN - retrieve connected clients
October 10, 2019, 10:25:14 PM
Hello,
i need to set static IP for special openvpnclients... but, it doesn't work in the way how it was working on plain openvpn config: i'm trying to add "ifconfig-push 192.168.200.200 255.255.255.0" to Client Override config.
client can't connect with this setting.
So, if there are problem to set static address - is it possible somehow to get ip addresses thru RestAPI (maybe there are hidden feature) or thru cli interface (like connect thru ssh and run "openvpn get clients")
both ways will work, also like setting static IP
i need to set static IP for special openvpnclients... but, it doesn't work in the way how it was working on plain openvpn config: i'm trying to add "ifconfig-push 192.168.200.200 255.255.255.0" to Client Override config.
client can't connect with this setting.
So, if there are problem to set static address - is it possible somehow to get ip addresses thru RestAPI (maybe there are hidden feature) or thru cli interface (like connect thru ssh and run "openvpn get clients")
both ways will work, also like setting static IP
#14
19.1 Legacy Series / Re: nginx 1.7: banning, even if Learning Mode on.
February 07, 2019, 10:03:49 PM
great! thanks a lot!
#15
19.1 Legacy Series / Re: nginx 1.7: banning, even if Learning Mode on.
February 07, 2019, 06:46:55 PM
Thank you, @fabian.
it make sense... but where to find this checkbox?
on server config i cant see it...
and yes, in mobile development customer asks to set special User Agent... like: okhttp/2.1.2.2
it make sense... but where to find this checkbox?
on server config i cant see it...
and yes, in mobile development customer asks to set special User Agent... like: okhttp/2.1.2.2
