Messages

This issue is still present in 24.1.7, originally posted with earlier version.

In OPNsense 24.1.6-amd64 the configuration parameter "Server (IPv4)" is missing when configuring an openvpn server instance in tap type (enable in advanced mode). It is present when you switch to tun type but not available in tap type. The name of the parameter and help text is copied below:

Server (IPv4)
   
This directive will set up an OpenVPN server which will allocate addresses to clients out of the given network/netmask. The server itself will take the .1 address of the given network for use as the server-side endpoint of the local TUN/TAP interface

[dhcrelay: Unsupported device type 53 for "pppoe0"]

I am having the same problem here:

Just did a clean migration from OPNsense 18.7.10_4 to 19.7.2 and after importing config dhcrelay persistently aborts start because of:

dhcrelay: Unsupported device type 53 for "pppoe0"

It seems somehow opnsense is not properly selecting the interfaces to pass as arguments to dhcrelay and ends up adding invalid interfaces for that service.

As a workaround I copied dhcrelay command line from 18.7.10_4 and created a script in /usr/local/etc/rc.syshook.d/start/96-dhcrelay.sh

So after the opnsense invocation of dhcrelay errors the script runs and gets it right.

Also my dhcp server is not in a directly connected network.

As a side note I always had to start manually dhcp relay on 18.7.10_4. Seems some timing issue prevents it from run properly when it is invoked by opnsense.

Getting persistenly this error while attempting to update automatically via web gui or console:

>>> Invoking early script 'update'
!!!!!!!!!!!! ATTENTION !!!!!!!!!!!!!!!
! A critical upgrade is in progress. !
! Please do not turn off the system. !
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
Version number mismatch, aborting.
    Kernel: 11.1
    Base:   11.2

Attaching console log.

Any help would be appreciated.

Some time ago I was looking around for a software firewall/router and downloaded opnsense and decided to give it a try mainly as a firewall but also testing other features.

I used a spare PC(old) I had been using as a server for a time, spec are:

AMD Athlon(tm) II X4 620 Processor (4 cores)
4GB RAM
1TB Sata HD
2 RTL8111/8168/8411 PCI Express Gigabit Ethernet Controller
1 RTL-8100/8101L/8139 PCI Fast Ethernet Adapter

So far I have had a smooth experience with this setup.

Now I want start adding some production load to it and eventually use it as my main router/firewall.

If all goes well I will want to upgrade the hardware to some new stuff. So far I have seen APU boards are the trend, bonus points being its low cost/performance ratio, reliability, low energy consumption, small form factor, tried hardware compatibility... well there a lot of advantages compared to traditional PC boards I guess.

However what if I want to stick with standard PCs architecture? What are the recommended network cards/chipsets ? What are the advantages/disadvantages besides the ones I mentioned?

Also how flexible is configuration restore? What will happen when I restore my old setup config into the new hardware in terms of physical interface assignments? I will have several vlans defined on the current physical network interfaces, how does it get remapped to the new interfaces on the new hardware?

Thanks in advance for your comments