OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of marcellinus77 »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - marcellinus77

Pages: [1]
1
22.7 Legacy Series / Mellanox SFP28 Card FEC and media settings
« on: September 28, 2022, 10:41:53 am »
Hi

I'm using a Mellanox X5 Card in my Firewall. However, I need to do two settings which I struggle to find how to set it propperly:

- disable FEC
- disable autonegotiation
- set speed fixed to 25GBit

Currently, my "workaround" is to boot a linux, do the settings, reboot into opnsense and it works fine (until next power cycle)

A bit annoying, so I would love to figure out how to natively change those settings in Opnsense/Freebsd:

here are my Linux commands:

Code: [Select]
:~# ethtool -s ens1f0np0 speed 25000 duplex full autoneg off
:~# ethtool --set-fec ens1f0np0 encoding off
can anyone help?

Thanks-

2
22.1 Legacy Series / C-ICAP Unable to find template
« on: March 29, 2022, 11:21:16 pm »
I confugured and tested icap virus scan engine, however, it does work but I get this error in the LOGs:

Code: [Select]
Tue Mar 29 23:14:05 2022, 18589/12667392, ERROR: Unable to find specified template: /tmp/c-icap/templates//virus_scan/en/VIRUS_FOUND
  Tue Mar 29 23:14:05 2022, 18589/12667392, VIRUS DETECTED: Win.Test.EICAR_HDB-1 , http client ip: 172.16.84.218, http user: -, http url: https://www.virusanalyst.com/eicar.zip
Any thoughts how to fix that?

3
20.1 Legacy Series / IPSec VPN only accessible from one end / site-to-site
« on: April 16, 2020, 02:09:35 am »
Hi

I have the following setup:

Site A, 10.50.0.0/16 Sophos XG IP:192.168.1.8 <NAT to INTERNET> IP:213.55.xx.xx
Site B, 10.10.0.0/16 OpnSense 20.1 IP:192.168.1.250 <NAT to INTERNET> IP:83.77.xx.xx

Site A is initiating the tunnel
Site B is set to listen for connections

The tunnel is policy based

I can ping and access from any device at Site A net (10.50../16) all devices at site B. So the tunnel is working perfectly, if looking from Site A.

i.e. from host (A)10.50.10.10 I can send print job to printer (B)10.10.1.5

However, I can not access Devices at Site A from Site B.

i,e, from Opnsense Host (B) 10.10.1.1 I can NOT ping host (A)10.50.10.10

Sophos does not support VTI, so I need to stick to policy based routing.

Is there any suggestion how I can enable site A to access site B?

Thanks
M.

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2