Messages

If default tunables have been removed from the codebase for some time now, why does my current config still show roughly 60 entries without a delete icon?
Are these considered user-defined tunables that OPNsense simply cannot distinguish from defaults, or is the missing bin icon a UI bug / a sign that they are still treated as system-owned?

The output displayed in System > Firmware > Updates (both firmware upgrade output and audit results) is not streamed line-by-line. Instead, output appears to be buffered and flushed in large chunks, causing long pauses followed by sudden bursts of text. Live streaming would give better visibility into progress.

[Promo for existing users]

Clicking on my account name on the top-right gives me these menu options: Dashboard, Orders, Subscriptions, Downloads, Address, Payment methods, Account details, Log out

In none of these I'm able to enter a license code for the trial. The Orders, Subscriptions and Download page only point to a generic 'Browse products' link.

Promo for existing users

If you've already used your premium trial, you can test the new functionality for 7 days with this code:

Code Select Expand

1-WEEK-THREAT-LOOKUP
You can activate this code by clicking on your account name on the top-right and then go to licenses -> activate licenses.

Same here. I'm using the community version, and I noticed it only updates every 48 hours. After cleaning the aforementioned directory, the interval dropped to 24 hours. I also noticed that the newly downloaded malware_domains file is nearly twice as large.

Code Select Expand

# ls -la
drwxr-x---   2 root wheel       5 Apr  7 19:27 .
drwxr-xr-x  24 root wheel      31 May  5 16:22 ..
-rw-r-----   1 root wheel    1874 May  8 02:38 index.json
-rw-r-----   1 root wheel 2567937 May  7 02:38 malware_domains.txt
-rw-r-----   1 root wheel 6028981 May  7 02:38 malware_ip.txt
# ls -la
drwxr-x---   2 root wheel       5 May  8 20:40 .
drwxr-xr-x  24 root wheel      31 May  5 16:22 ..
-rw-r-----   1 root wheel    1874 May  8 20:40 index.json
-rw-r-----   1 root wheel 4586976 May  8 02:38 malware_domains.txt
-rw-r-----   1 root wheel 5998330 May  8 02:38 malware_ip.txt


I have found ZFS to be more reliable. With UFS, I experienced disk corruption after power outages and other unclean shutdowns on a few occasions, but never with ZFS.

I'm not familiar with the intricacies of ZFS in a VM, but regarding autotrim: this does only trim recently freed up disk space, locally so to speak. It doesn't do full disk passes periodically; you would need zpool trim for that, as you have already found out.

Last week I received an email stating that ZenArmor 2.5 would be released on April 20th. That date has come and gone, and aside from a database upgrade, nothing else has arrived. Has the release been delayed? I migrated my database in preparation, so I've been monitoring the rollout closely to make sure everything stays operational.

I noticed a quirk in the Event Viewer under Security > Q-Feeds Connect: the default sort order is inconsistent. Events are grouped by day in descending order (today first, then yesterday, etc.), but within each day they are sorted ascending by time (00:00 to 23:59).
The result is a non-continuous timeline that makes finding recent events unintuitive: the most recent events of any given day appear at the bottom of that day's group, not at the top.
The workaround is to manually click the timestamp column to re-sort, but the default behavior seems unintentional and is confusing on first encounter.

I concur. Keep in mind that tests try to approximate real-world experience, they're not the goal in itself. If you over-optimize for a specific test's methodology, you risk great scores but a worse actual experience.

Are you guys seeing regressions in 26.1.x?  The upload portion of my speed tests has started stalling a lot to where the tests never start (Waveform Bufferbloat) or finish (Cloudflare speedtest).  In the case of the Bufferbloat test it stays stuck on "Warming up" for that portion of the test.

I have seen this behavior (Waveform Bufferbloat test stays stuck on "Warming up") ever so often, I suspect intermittent bandwidth or server load issues on their part.

I tried to enable basic auth in Caddy to protect from brute-force attacks; I have done so by enabling basic auth on the domain. When testing this, I noticed I need to re-enter my credentials on every webpage I browse to. Somehow it doesn't stick.
A chatgpt consultation finds issues with the generated config file, but because it's generated by the GUI I am not able to try out any of the suggestions which would require manual editing of the config file, or make the changes permanent after that.
What would be the best way to proceed here?

I noticed the associated rules inherit the desciption from their (D)NAT parent, when using 'register rule'. I didn't experiment with the other options though.

Thanks, ticket is here: https://github.com/opnsense/core/issues/9858

I have an IPv6-enabled system, and noticed that the automatically generated rule 'let out anything from firewall host itself' is IPv4 only, and I couldn't find a similar rule for IPv6. Are more people seeing this?

It looks like the search bar in Interfaces → Neighbors → Automatic Discovery does a partial match. Searching for 192.168.1.1 also shows 192.168.1.1xx. Is there any way to force an exact match search?