"
Thanks, will have to pass over the opportunity to buy Zotac Magnus One.
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#2
22.1 Legacy Series / Re: Realtek and Killer NIC support.
August 02, 2022, 03:09:46 PM #3
22.1 Legacy Series / Realtek and Killer NIC support.
August 02, 2022, 05:42:53 AM
Just wanted to check if Realtek RTL8168/8111 and 2.5 Gigabit Killer E3000 is supported?
System details: https://www.zotac.com/us/product/mini_pcs/magnus-one-ecm73070c-barebone (without the GPU)
System details: https://www.zotac.com/us/product/mini_pcs/magnus-one-ecm73070c-barebone (without the GPU)
#4
22.1 Legacy Series / Re: Network performance issue with IPS
July 13, 2022, 01:39:08 PMQuote from: mimugmail on July 12, 2022, 05:22:53 PM
I5 8000U should handle 1000 also in IPS mode. Which rules do you use? Hyperscan active?
Pattern matcher: is indeed set to Hyperscan.
How do I get the list/count of rules from command line?
Regarding I5 8000U, afraid I have to upgrade the whole system (using Qotom mini pc).
Would N6005 be any better?
#5
22.1 Legacy Series / Re: Network performance issue with IPS
July 12, 2022, 03:51:50 PM
Would you be able to direct me to correct resource(s)?
#6
22.1 Legacy Series / Network performance issue with IPS
July 12, 2022, 03:36:58 PM
CPU: Intel(R) Core(TM) i3-5005U CPU @ 2.00GHz (2 cores, 4 threads)
Networking: Intel Gigabit LAN
Memory: 8GB
Versions: OPNsense 22.1.10-amd64
Intrusion Detection: Enabled
Promiscuous mode: Not Selected
Detect Profile: High
I am using iperf for network performance measurement, and iperf3 on the OPNsense host shows <300 Mbits/sec. Strange thing is that after a restart it's around 950 Mbits/sec, before dropping back to 250-300 range. To rule out network issue I tried iperf3 across multiple other systems and it's in around 950 Mbits/sec.
Is this expected with this hardware setup?
Networking: Intel Gigabit LAN
Memory: 8GB
Versions: OPNsense 22.1.10-amd64
Intrusion Detection: Enabled
Promiscuous mode: Not Selected
Detect Profile: High
I am using iperf for network performance measurement, and iperf3 on the OPNsense host shows <300 Mbits/sec. Strange thing is that after a restart it's around 950 Mbits/sec, before dropping back to 250-300 range. To rule out network issue I tried iperf3 across multiple other systems and it's in around 950 Mbits/sec.
Is this expected with this hardware setup?
#7
21.1 Legacy Series / Repeated Unbound crashes
May 17, 2021, 05:48:18 AM
Hi,
Unbound seems to be crashing at regular intervals.
What changed:
Tried enabling Blacklist, which immediately resulted in a crash.
Disabled the same and Unbound seemed to be stable but crashed again after 10-12 hours.
No other changes were done.
Also, suricata seems to be going down very frequently as well. Not sure if it's connected.
System information:
OPNsense 21.1.5-amd64
FreeBSD 12.1-RELEASE-p16-HBSD
OpenSSL 1.1.1k 25 Mar 2021
Regards.
Unbound seems to be crashing at regular intervals.
What changed:
Tried enabling Blacklist, which immediately resulted in a crash.
Disabled the same and Unbound seemed to be stable but crashed again after 10-12 hours.
No other changes were done.
Also, suricata seems to be going down very frequently as well. Not sure if it's connected.
System information:
OPNsense 21.1.5-amd64
FreeBSD 12.1-RELEASE-p16-HBSD
OpenSSL 1.1.1k 25 Mar 2021
Regards.
#8
21.1 Legacy Series / Suricata: High memory usage
February 22, 2021, 04:54:44 PM
After upgrade, have noticed that the memory usage has shot up drastically. Suricata shows usage of roughly 2GB.
System:
Intel(R) Core(TM) i3-5005U CPU @ 2.00GHz (4 cores)
OPNsense 21.1.1-amd64
FreeBSD 12.1-RELEASE-p13-HBSD
OpenSSL 1.1.1i 8 Dec 2020
What could be the cause?
System:
Intel(R) Core(TM) i3-5005U CPU @ 2.00GHz (4 cores)
OPNsense 21.1.1-amd64
FreeBSD 12.1-RELEASE-p13-HBSD
OpenSSL 1.1.1i 8 Dec 2020
What could be the cause?
#9
20.7 Legacy Series / Re: How to use DNS over TLS in 20.7.3
September 28, 2020, 05:09:38 PMQuote from: mimugmail on September 28, 2020, 01:45:56 PMThanks.
Correct
#10
20.7 Legacy Series / Re: How to use DNS over TLS in 20.7.3
September 28, 2020, 01:36:21 PMQuote from: mimugmail on September 28, 2020, 01:10:07 PM
Backup custom, remove custom, go to Misc submenu and add 1.1.1.1@853,1.0.0.1@853
Thanks, am assuming:
1. Save configuration before upgrade.
2. Upgrade.
3. Remove from custom
4. Add entries under Misc.
#11
20.7 Legacy Series / How to use DNS over TLS in 20.7.3
September 28, 2020, 01:08:31 PM
I have this set-up in with 20.1.x
forward-zone:
name: "."
forward-ssl-upstream: yes
forward-addr: 1.1.1.1@853 # Cloudflare DNS
forward-addr: 1.0.0.1@853 # Cloudflare DNS
How to set-up the same in 20.7.3 ?
forward-zone:
name: "."
forward-ssl-upstream: yes
forward-addr: 1.1.1.1@853 # Cloudflare DNS
forward-addr: 1.0.0.1@853 # Cloudflare DNS
How to set-up the same in 20.7.3 ?
#12
20.7 Legacy Series / Re: Force redirect DNS to pihole
August 30, 2020, 09:23:31 AM
I have this working with 20.1.9_1, followed the steps listed below:
https://www.reddit.com/r/OPNsenseFirewall/comments/97vikk/opnsense_and_pihole_a_guide_to_obscuring_your_dns/
https://www.reddit.com/r/OPNsenseFirewall/comments/97vikk/opnsense_and_pihole_a_guide_to_obscuring_your_dns/
#13
20.1 Legacy Series / [Solved] OPNsense 20.1.6-amd64: Unable to connect after upgrade
May 01, 2020, 02:38:24 PM
Hi,
I have been using OPNsense since last couple of years.
Thanks for this wonderful piece of software.
Was earlier on 20.14, and decided to skip 20.1.5 and upgraded today to 20.1.6.
After reboot, I lost internet connectivity.
Network topology: [computers] --- [switch] --- [opnsense(PPPoE)] --- [Modem]
I tried restoring last known good configuration dated 10th April 2020 after factory reset.
This again worked for some time probably 10 minutes before I realised that I have lost connectivity.
Next thing I tried is to take a diff between last know good config and one after upgrade.
Do still see following differences:
Working:
<Netflow version="1.0.0">
<capture>
<interfaces/>
<egress_only>wan</egress_only>
<version>v9</version>
<targets/>
</capture>
<collect>
<enable>0</enable>
</collect>
</Netflow>
20.1.6:
<Netflow version="1.0.1">
<capture>
<interfaces/>
<egress_only>wan</egress_only>
<version>v9</version>
<targets/>
</capture>
<collect>
<enable>0</enable>
</collect>
<activeTimeout>1800</activeTimeout>
<inactiveTimeout>15</inactiveTimeout>
</Netflow>
</OPNsense>
Please let me know, not sure that the above difference could be the cause of this.
Should I install OPNsense 20.1.4 again from scratch and restore the configuration file ?
Last but not the least, check for updates from within the GUI doesn't throw connectivity error.
Though Audit Now, throws No address record.
For some reason, that's the only component capable of connecting to the internet.
Appreciate pointers to resolve this.
Regards,
Prashant
Update: Disabling DNSSEC on Pi-Hole solved the issue, this was working prior to update.
I have been using OPNsense since last couple of years.
Thanks for this wonderful piece of software.
Was earlier on 20.14, and decided to skip 20.1.5 and upgraded today to 20.1.6.
After reboot, I lost internet connectivity.
Network topology: [computers] --- [switch] --- [opnsense(PPPoE)] --- [Modem]
I tried restoring last known good configuration dated 10th April 2020 after factory reset.
This again worked for some time probably 10 minutes before I realised that I have lost connectivity.
Next thing I tried is to take a diff between last know good config and one after upgrade.
Do still see following differences:
Working:
<Netflow version="1.0.0">
<capture>
<interfaces/>
<egress_only>wan</egress_only>
<version>v9</version>
<targets/>
</capture>
<collect>
<enable>0</enable>
</collect>
</Netflow>
20.1.6:
<Netflow version="1.0.1">
<capture>
<interfaces/>
<egress_only>wan</egress_only>
<version>v9</version>
<targets/>
</capture>
<collect>
<enable>0</enable>
</collect>
<activeTimeout>1800</activeTimeout>
<inactiveTimeout>15</inactiveTimeout>
</Netflow>
</OPNsense>
Please let me know, not sure that the above difference could be the cause of this.
Should I install OPNsense 20.1.4 again from scratch and restore the configuration file ?
Last but not the least, check for updates from within the GUI doesn't throw connectivity error.
Though Audit Now, throws No address record.
For some reason, that's the only component capable of connecting to the internet.
Appreciate pointers to resolve this.
Regards,
Prashant
Update: Disabling DNSSEC on Pi-Hole solved the issue, this was working prior to update.
Pages1
