Messages

[Output of pciconf -lveV]

I have a Supermicro box (OPNsense 21.1.8_1) with an HP branded 10G card.
I used the boot flag if_oce_load="YES" to get the box to see the two interfaces.

When there are no VLANS running through the 10G, it works great. If I add one, it starts a reboot cycle.

Does that mean the card is incapable of vlans, has bad firmware, or maybe some other thing I don't know about?


Output of pciconf -lveV
oce0@pci0:4:0:0:        class=0x020000 card=0x1747103c chip=0x070019a2 rev=0x02 hdr=0x00
    vendor     = 'Emulex Corporation'
    device     = 'OneConnect OCe10100/OCe10102 Series 10 GbE'
    class      = network
    subclass   = ethernet
  PCI-e errors = Correctable Error Detected
                 Unsupported Request Detected
     Corrected = Advisory Non-Fatal Error
oce1@pci0:4:0:1:        class=0x020000 card=0x1747103c chip=0x070019a2 rev=0x02 hdr=0x00
    vendor     = 'Emulex Corporation'
    device     = 'OneConnect OCe10100/OCe10102 Series 10 GbE'
    class      = network
    subclass   = ethernet
  PCI-e errors = Correctable Error Detected
                 Unsupported Request Detected
     Corrected = Advisory Non-Fatal Error

$ sysctl -a | grep oce | grep ion
net.inet.ip.process_options: 1
dev.oce.1.firmware_version: 4.9.416.2
dev.oce.1.component_revision: ///11.0.50.0///
dev.oce.1.%location: slot=0 function=1 dbsf=pci0:4:0:1
dev.oce.1.%desc: Emulex CNA NIC function:///11.0.50.0///
dev.oce.0.firmware_version: 4.9.416.2
dev.oce.0.component_revision: ///11.0.50.0///
dev.oce.0.%location: slot=0 function=0 dbsf=pci0:4:0:0
dev.oce.0.%desc: Emulex CNA NIC function:///11.0.50.0///

Let me just say, Thanks and Thanks.

I would have been happy with a "that's not how it works, " but knowing that it might one day be a feature is even better!

I'm attempting to setup an additional pool for my sip phones, and use the polycom MACs to keep them using the pool.

I was hopping to give this pool (and only this pool) an option 66 dhcp option entry. I don't see the option for Additional option in the new pool I setup.

Is this expected, am I doing it wrong, or is this maybe a feature request?

I also realize today That When I use a server to query, the live firewall doesn't show the response. The top part of that log is a debian machine successfully doing a query. I only see the outbound stuff.

Is that expected?

I'm not 100% certain but the fact that a server on my LAN does see the settings (mostly stratum number) that I set in OPNsense, I think they communicate okay.

cwesterfield@bastion:~# ntpdate -q  10.0.1.1
server 10.0.1.1, stratum 5, offset 0.240657, delay 0.02579
26 Sep 21:51:40 ntpdate[32043]: no server suitable for synchronization found

I'm attempting to learn NTP buy setting up opnsense as a server and then redirecting all NTP requests to the router.

I've learned a bunch about stratums and pools and ntpdate -q, but I'm having an issue with opnsense syncing.

I'm not 100% sure how troubleshoot further. The network Time status shows "Unreach/Pending".

What I've done so far:

• Successfully pinged 3.north-america.pool.ntp.org from opnsense cli
• Tracerouted 3.north-america.pool.ntp.org to make sure it wasn't going out a vpn
• Successfully queried the same ntp server using ntupdate on opnsense cli

Since the CLI can query, should that lean me to believe my config is the problem? I've googled a bunch and there are many threads, with a multitude of fixes. I tried an outbound NAT rule, but that also did not work.