Messages

Hi

I'm using a Mellanox X5 Card in my Firewall. However, I need to do two settings which I struggle to find how to set it propperly:

- disable FEC
- disable autonegotiation
- set speed fixed to 25GBit

Currently, my "workaround" is to boot a linux, do the settings, reboot into opnsense and it works fine (until next power cycle)

A bit annoying, so I would love to figure out how to natively change those settings in Opnsense/Freebsd:

here are my Linux commands:

Code Select Expand

:~# ethtool -s ens1f0np0 speed 25000 duplex full autoneg off
:~# ethtool --set-fec ens1f0np0 encoding off

can anyone help?

Thanks-

I confugured and tested icap virus scan engine, however, it does work but I get this error in the LOGs:

Code Select Expand

Tue Mar 29 23:14:05 2022, 18589/12667392, ERROR: Unable to find specified template: /tmp/c-icap/templates//virus_scan/en/VIRUS_FOUND
Tue Mar 29 23:14:05 2022, 18589/12667392, VIRUS DETECTED: Win.Test.EICAR_HDB-1 , http client ip: 172.16.84.218, http user: -, http url: https://www.virusanalyst.com/eicar.zip

Any thoughts how to fix that?

Hi

I have the following setup:

Site A, 10.50.0.0/16 Sophos XG IP:192.168.1.8 <NAT to INTERNET> IP:213.55.xx.xx
Site B, 10.10.0.0/16 OpnSense 20.1 IP:192.168.1.250 <NAT to INTERNET> IP:83.77.xx.xx

Site A is initiating the tunnel
Site B is set to listen for connections

The tunnel is policy based

I can ping and access from any device at Site A net (10.50../16) all devices at site B. So the tunnel is working perfectly, if looking from Site A.

i.e. from host (A)10.50.10.10 I can send print job to printer (B)10.10.1.5

However, I can not access Devices at Site A from Site B.

i,e, from Opnsense Host (B) 10.10.1.1 I can NOT ping host (A)10.50.10.10

Sophos does not support VTI, so I need to stick to policy based routing.

Is there any suggestion how I can enable site A to access site B?

Thanks
M.