Messages

Here's the output from pfctl -vs ether -a captiveportal_zone_0

No ALTQ support in kernel
ALTQ related functions disabled
ether pass in quick proto 0x0800 l3 from 10.22.0.2 to any label "10.22.0.2-in"
  [ Evaluations: 0         Packets: 0         Bytes: 0         ]
ether pass out quick proto 0x0800 l3 from any to 10.22.0.2 label "10.22.0.2-out"
  [ Evaluations: 0         Packets: 0         Bytes: 0         ]

I am the only one connected currently and just sending ping traffic across although the output appears to show no traffic.

I ended up doing a clean install of 25.7 and imported the config.
I noticed in 25.1.12 and 25.7 that the Bytes (in) and Bytes(out) is not being reported and Last Accessed is not updated.

I had to bump up idle timeout to 12 hours because I had active users but all users were bumped off after 12 hours of initial log in.

In my CP log file I did see the idle timeout kick me out about 12 hours after my initial log in session even though I was passing traffic.

2025-07-25T04:45:57-07:00 Notice captiveportal session zFdmicC0ZY8ooE/M8Cmalg== hit idletimeout
2025-07-24T16:45:56-07:00 Informational captiveportal AUTH Me (xx.xx.xx.xx) zone 0

I'll try and do more testing over the weekend with shorter time frames but it does still seem to be happening at the moment.
Let me know if there's other info you need and I'll try to get it.

I forgot to mention, my captive portal page after updating to 25.7 stopped showing the log in and password boxes and I had to revert to the default page from 25.7.
Thanks!

Yes, understood.
I was just wondering if the old zenarmour packages interfered with the update in anyway.
I had just gone from from 24.7 to 25.1 then to 25.1.11 which worked fine and then a couple of days later 25.1.12 came out which seemed to break CP. It had been a while since I upgraded this system.
I had removed ZenA prior to upgrading to 25.1.
Thanks for testing and all your hard work.

Hmm, ok.  That's good to know.  I'll upgrade it to 25.7 to see if it resolves the session timeout.
I did have zenarmor previously installed but removed it.  I noticed the crash indicator about being unable to open mongodb.so after updating to 25.1.12.  Maybe that has something to do with it?

I removed the php82-pecl-mongodb package via cli and the crash indicator went away.

After updating to 25.1.12 captive portal seems to be treating the idle timeout like a hard timeout.
Sessions drop after 15 minutes which I have defined in the idle timeout setting.  Hard timeout is 0 (disabled).

Disabling Wireguard  allowed me to check for updates without the WAN links dropping immediately.

Of course when I tried to update I kept the error message that opnsense was not a valid repository or something like that.  I then ran the opnsense-bootstrap.sh script.  It upgraded opnsense to 22.7.4 then I reinstalled a few plugins and restored from backup config.

With Wireguard enabled the WAN links drop immediately when checking for updates.  I can't even ping them from the CLI.
I do have the Wireguard kernel installed so that possibly has something to do with it.

Updated to 22.7, then 22.7.2.  I have a multi-wan config.
WAN links drop as soon I check for update.  WAN links also drop as soon as I try to back up to Google Drive.
Only way to get WAN links back up is a reboot.
I did try to disable the Gateway Switching option but made no difference.

I tried the opnsense-bootstrap but WAN links dropped as soon I ran the opnsense-bootstrap.sh command.