"Quote from: Arxont on March 22, 2026, 04:04:52 PMон отказывался хранить в своем конфиге строку параметра I1, он превращает ее в безопасный вариант, а нужна именно эта строка.Приветствую. Подтверждаю, плагин не поддерживает параметр I1, а в нём как раз и есть весь цимус так сказать :)
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
#1
Russian - Русский / Re: os-amneziawg — плагин AmneziaWG для OPNsense с GUI управлением
March 22, 2026, 07:41:11 PM #2
26.1 Series / Re: after upgrade to 26.1 and 26.1.1 Problems with Unbound and Adguard
February 07, 2026, 11:58:45 PM
Hello.
Exactly the same situation. Reaches up to 7000 ms. Firmware 26.1.1
Exactly the same situation. Reaches up to 7000 ms. Firmware 26.1.1
#3
25.7, 25.10 Series / Starting web GUI... failed
August 22, 2025, 12:30:56 PM
Hello.
When updating to 25.7.2, access lost to the web interface. There is access to the SSH. Can I do something? Or just reinstall the system?
When updating to 25.7.2, access lost to the web interface. There is access to the SSH. Can I do something? Or just reinstall the system?
#4
25.1, 25.4 Legacy Series / Re: Is ISC DHCP going away? (No it is not going away)
May 19, 2025, 01:31:02 PMQuote from: Monviech (Cedrik) on May 19, 2025, 01:17:37 PMNo, you don't have to do anything. ISC will stay and will be turned into a plugin which will auto install when you use it.Okay. I understand.
#5
25.1, 25.4 Legacy Series / Re: Is ISC DHCP going away?
May 19, 2025, 01:11:48 PM
Hello.
Did I understand correctly? To prevent ISC from deleting automatically, you need to block the lock?
Did I understand correctly? To prevent ISC from deleting automatically, you need to block the lock?
#6
24.1, 24.4 Legacy Series / Re: Upgrade to 24.1.4 needs two steps
March 21, 2024, 02:20:12 PM
I confirm. There was the same thing
#7
23.7 Legacy Series / Re: BIOS (Not UEFI) boot media for 23.7 install
January 17, 2024, 10:25:49 AM
1. Extracting the HDD from the server
2. Connect the HDD to the SATA connector of a regular PC
3. Install OPNsense from the ISO image on this HDD
4. Connect this HDD back to the server
5. Boot up
6. ...
7. Profit!
:D
2. Connect the HDD to the SATA connector of a regular PC
3. Install OPNsense from the ISO image on this HDD
4. Connect this HDD back to the server
5. Boot up
6. ...
7. Profit!
:D
#8
23.7 Legacy Series / Re: Help with YouTube block on selected devices
September 15, 2023, 11:24:26 AM
Everything is blocked perfectly in AdGuard Home. You can set different locks for different clients.
#9
23.7 Legacy Series / Re: L2TP does not connect by domain name. Connects only via IP address
September 11, 2023, 04:26:39 PMQuote from: franco on September 11, 2023, 11:43:23 AM;D
I'm not blocking anything.
#10
23.7 Legacy Series / Re: L2TP does not connect by domain name. Connects only via IP address
September 10, 2023, 04:20:20 PMQuote from: franco on September 10, 2023, 03:52:09 PMAh, I understand. Now you will also specifically block this method ;D
Nothing is needed... the problem is that dynamic addresses are not supported and it would be better to leave it at that.
#11
23.7 Legacy Series / Re: L2TP does not connect by domain name. Connects only via IP address
September 10, 2023, 02:54:30 PMQuote from: Monviech on September 10, 2023, 10:56:30 AMI tried this scheme and it doesn't work. What is needed is WAN-DHCP and on top of it OPT-L2TP
What happens if you create multiple l2tp devices on the same interface with the same settings but different gateway IPs?
#12
23.7 Legacy Series / Re: L2TP does not connect by domain name. Connects only via IP address
September 09, 2023, 11:39:01 PM
So there is no solution here? :-\
#13
23.7 Legacy Series / Re: L2TP does not connect by domain name. Connects only via IP address
September 09, 2023, 06:35:44 PM
I had the same problem on PFsense. The guys from the neighboring forum made this patch. With this patch everything worked as it should. How can I adapt this patch for OPNsense?
I attach the patch in .diff format
I attach the patch in .diff format
Code Select
diff --git a/src/etc/inc/interfaces.inc b/src/etc/inc/interfaces.inc
index c138566a1eeb0f0a1ce3f68178aeca2e9135fecb..cc0bca90808d20735364769b7d002b03ca757880 100644
--- a/src/etc/inc/interfaces.inc
+++ b/src/etc/inc/interfaces.inc
@@ -6478,6 +6478,27 @@ function link_interface_to_tunnelif($interface, $type, $remote = 'any') {
return $result;
}
+function link_interface_to_ppp_tunnelif($interface) {
+ global $config;
+
+ $result = array();
+
+ if (empty($interface)) {
+ return $result;
+ }
+
+ if (is_array($config['ppps']['ppp'])) {
+ $realif = get_real_interface($interface);
+ foreach ($config['ppps']['ppp'] as $ppp) {
+ if (($ppp['ports'] == $realif) && in_array($ppp['type'], array('l2tp', 'pptp'))) {
+ $result[] = $ppp;
+ }
+ }
+ }
+
+ return $result;
+}
+
/*
* find_interface_ip($interface): return the interface ip (first found)
*/
diff --git a/src/etc/rc.newwanip b/src/etc/rc.newwanip
index ff4a75837c613ead7d66ec25ab2fae2db8cb6994..2b04a33db4a607cf08afbd6e01b803b791547ec7 100755
--- a/src/etc/rc.newwanip
+++ b/src/etc/rc.newwanip
@@ -128,6 +128,9 @@ array_walk($gre, 'interface_gre_configure');
$gif = link_interface_to_tunnelif($interface, 'gif', 'inet');
array_walk($gif, 'interface_gif_configure');
+/* reconfigure L2TP/PPTP tunnels, see https://redmine.pfsense.org/issues/12072 */
+$ppp = link_interface_to_ppp_tunnelif($interface);
+
$grouptmp = link_interface_to_group($interface);
if (!empty($grouptmp)) {
array_walk($grouptmp, 'interface_group_add_member');
@@ -181,6 +184,13 @@ foreach ($gre as $gretun) {
system_routing_configure($confif);
}
}
+foreach ($ppp as $ppptun) {
+ $confif = convert_real_interface_to_friendly_interface_name($ppptun['if']);
+ if (!empty($confif)) {
+ interface_configure($confif);
+ system_routing_configure($confif);
+ }
+}
if (platform_booting() && !in_array(substr($interface_real, 0, 3), array("ppp", "ppt", "l2t"))) {
// unlike dhcp interfaces which wait until they get an ip, a ppp connection lets the boot continue while
#14
23.7 Legacy Series / L2TP does not connect by domain name. Connects only via IP address
September 09, 2023, 06:14:06 PM
I'm using "russian vpn" scheme to connect with ISP - WAN interface with DHCP (actually internal ISP network) + L2TP interface to ISP server (as real WAN). If i'm using FQDN as L2TP server name - it couldn't be resolved during boot up.
If i use ip as server address - everything is ok and L2TP interface going up automatically during boot.
Could someone fix this problem, because ISP balancing load between L2tp servers and returns different ip for same FQDN..
If i use ip as server address - everything is ok and L2TP interface going up automatically during boot.
Could someone fix this problem, because ISP balancing load between L2tp servers and returns different ip for same FQDN..
#15
23.7 Legacy Series / Re: Item disappeared in the Cron task scheduler "Restart Wireguard service"
September 05, 2023, 12:30:16 PM
Ok, thanks for the explanation
