Messages

This makes it more likely that the problem is/was with syslog-ng. Franco has patched this and it's in for the 20.7.2 release, however the patch is available now, so it could be a good idea to run this:

# pkg add -f https://pkg.opnsense.org/FreeBSD:12:amd64/20.7/misc/syslog-ng327-3.27.1_2.txz

In case it helps others, please can someone confirm that from 20.7.1 the changes suggested in the console after

Code Select Expand

syslog-ng is now installed!  To replace FreeBSD's standard syslogd
(/usr/sbin/syslogd), complete these steps:are not required? I tried them last night, something broke and it froze so I reverted but left syslog-ng327-3.27.1_2.txz in  then a reboot and all has been well since.

I hadn't intended posting again this soon but though this might help in some way - of course it may not help at all but I may not have much time to  get back here for a while

I did a couple of reboots last night (an extra one just for good measure ;) and all is looking good, I have temps in GUI and graphs and

Code Select Expand

/sbin/sysctl -a | grep temperature
dev.cpu.1.temperature: 55.1C
dev.cpu.0.temperature: 55.1C
none of those extraneous lines
/sbin/sysctl -a is also cleaner but still some lighttpd lines

I am still concerned that I may have memory/disk issues so will be keeping a close eye on things

@Fruit - Your text file is full of all sorts of junk, half of the system log file is in there too! Something nasty going on there, surprised the system works at all.

Oh dear, I'll try a reboot. I'm in the middle of moving house so it might have to struggle on for a bit. Seems to be functioning OK

Assume that was for me?

I have graphs but no temps in web GUI. All 2.1 versions I had GUI and graphs

Edit: HP T610,  4096 MB, 16GB SATA Flash Drive

I'm seeing a lot of lines like the first then the two at the end..

Code Select Expand

#  /sbin/sysctl -a | grep temperature
<118>2020-08-14T19:01:59.592981+01:00 OPNsense.my.domain.uk lighttpd 56725 - - xx.xxx.xxx.xx xx.xxx.xxx.x - [14/Aug/2020:19:01:59 +0100] "GET /widgets/api/get.php?load=system%2Cgateway%2Cinterfaces%2Ctemperature&_=1597428113024 HTTP/1.1" 200 3254 "https://xx.xxx.xxx.xx/index.php" "Mozilla/5.0 (X11; Linux x86_64; rv:68.0) Gecko/20100101 Firefox/68.0"
..
..
dev.cpu.1.temperature: 52.2C
dev.cpu.0.temperature: 52.2C
on an HP T610,  AMD G-T56N

Not sure I fully understand your problem.

I am on a BT ADSL line, though not with BT, and I have a /28. All those /28 addresses sit within my network, the lowest of which is OPNsense itself ie. none of those /28 are used for my WAN address

My WAN address is set by PPPoE/DHCP and is an address given by my ISP, possibly liable to change, but is not within my /28 block. (My OPNsense does PPPoE negotiation thought a bridged Vigor 120)

There was a strange issue that caught me last year and affected sending mail via IPv6. I finally solved it by:

disable IPv6, Save ->  enable IPv6, Save

as outlined in this post https://forum.opnsense.org/index.php?PHPSESSID=bq9ba6nsfc4vohgdf1e5mk3mmh&topic=1777.msg5578#msg5578

Wonder if it might help?

Anyone who likes to watch the Live Firewall log: Start watching port 5500 in/out on WAN interface(s)....

Nothing at all here on 5500. Something you are running?

Thanks for the explanations.

I do understand your reasons but I'm probably paranoid enough as it is having run IPcop, m0n0wall, smoothwall and lately OPNsense over the last almost twenty years. I'm on my own here, everything is Debian apart from very occasional and brief legacy Win7.

I don't have or use smart phones, tablets, use any social media or even multimedia, I'd consider any of those far too much of a security risk to let any of them connect to my network, but as you say, One's MMV - and that's much too far OT

I don't really understand why so many in this thread block outgoing GEO-IP destinations. Can someone explain why it is considered important please?

Networks will be up, however there's no inter-VLAN routing without the firewall.

I don't have any VLANs and I lost my internal and external network during the upgrade. I have two interfaces bridged on a quad NIC .

My upgrade was successful.

I'm in the UK and on a PPPoA line but I have a Vigor 120 in bridge mode to convert that to PPPoE, so PPPoE negotiation is done by OPNsense.

Upgrade from 20.1 series was fine, no issues at all and I'm now on 20.7. No issues whatsoever.

My HP T610 took a little under two and a half half hours to complete the upgrade - no complaints, just an observation

The USB stick for installation.

I have a recollection that I first installed to USB stick as a first step then installed to the T610 from that. The installation to USB involves expanding the filesystem to the extent of the stick IIRC and I believe I read of problems with expanding to large sizes. 8GB was the smallest suitable I had here, 16 and 32 failed or I gave up waiting, not sure which.

I have looked back at my notes and my original install was of 18.7 nano to an 8GB USB stick then to the T610.  Looks like I tried to install the plain 18.7 and possibly 19.1 before trying the nano version. Since then all upgrades have been through the web interface - but again they can often take some considerable time, 90 minutes plus

I suspect I avoided EFI as I usually do, but cannot be sure. I do have a dmesg from the early days but doesn't seem to tell me.

HTH

Andy

I am running on a T610 Plus and quad NIC, I installed 19.7 around Spring 2019.

I did have some difficulties installing initially that seemed to relate to using large USB sticks though I cannot be sure that was the issue. I finally managed with an older 8GB stick.

The install did take some considerable time so be very patient.

HTH

Andy