Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - cmmh

Pages: [1]

Zenarmor (Sensei) / The Zenarmor packet engine keeps crashing

« on: August 30, 2023, 11:19:31 pm »

The dashboard shows version 1.14.4

The packet engine always seems to be stopped when I login to the dashboard. I start it and it runs for as long as I'm watching it OK. I don't see anything in the debug logs about why it is stopping, but it does seem to run 12-18 hours before stopping.

Is there any way to auto-restart it or debug this further? This is a fresh install of OPNsense.

Thanks for any suggestions.

Zenarmor (Sensei) / Zenarmor seem to die about every 24 hours

« on: September 29, 2022, 10:27:05 pm »

Any tips for debugging/troubleshooting why Zenarmor (and elasticsearch) seem to stop working within 24 hours?

21.1 Legacy Series / Re: GeoIP inverse rule not working

« on: July 09, 2021, 10:43:59 pm »

I have Geoip Egress and Ingress rules working. I believe you need to have them on the WAN interface. Since the "next hop" for devices on the LANs is the OPNsense router itself.

At least that is what I found to work for me after much trial and error.

21.1 Legacy Series / Re: Remote logging broken?

« on: April 24, 2021, 03:32:47 pm »

Yeah, I reported the same problem a while ago and never heard anything.

21.1 Legacy Series / Re: Remote Syslog (not gettting outbound packets)

« on: February 04, 2021, 11:35:30 pm »

Yes, that was the clue. With the file empty, it was not sending anything to the remote syslog server.

I deleted the remote target and re-added it, and it worked this time. Unsure what it didn't work the first time and worked now. I'd say something is flaky.

21.1 Legacy Series / Re: Remote Syslog (not gettting outbound packets)

« on: February 02, 2021, 11:28:04 pm »

Is this a hint as to whats wrong:
root@core-router:/usr/local/etc/syslog-ng.conf.d # ls -ltr
total 12
-rw-r----- 1 root wheel 245 Jan 31 19:21 legacy.conf
-rw-r----- 1 root wheel 0 Jan 31 19:21 syslog-ng-destinations.conf
-rw-r----- 1 root wheel 0 Jan 31 19:21 syslog-ng-local.conf
-rw-r----- 1 root wheel 259 Jan 31 19:21 syslog-ng-lockout.conf
-rw-r----- 1 root wheel 346 Jan 31 19:21 syslog-ng-config-events.conf

The "syslog-ng-destinations.conf" is zero length?

21.1 Legacy Series / [SOLVED] Remote Syslog (not gettting outbound packets)

« on: February 01, 2021, 11:19:56 pm »

Sorry for the question, probably an obviously solution that I've missed.

i've set up syslogging to my remote system, on the LAN interface. My remove receiver is getting logs for other appliances and devices without issue. I have been unable to get any message from opnsense, though.

I've tried tcpdump-ing on opnsense, and I don't seeing any packets going out. The counters on the "System: Settings: Logging / targets" statistics page show packets going out.

For what its worth, I have this problem with 20.7.xxx series, so this isn't specifically a 21.1 issue, I don't think.

What am I missing ? Thanks in in advance.

Hardware and Performance / Re: Expected LAN throughput on APU 2E4?

« on: January 16, 2021, 04:18:21 pm »

Thank you for your tunables settings. They've helped to more than double my throughput from ~300mbit to at last 700 mbits/second. Still wish I could squeeze out a little more from my 1 Gbps/symmetrical connection but this is highly helpful.

Hmm, I may have spoken too soon as now I'm having trouble getting over 400 Mbits again.

20.7 Legacy Series / Re: Optimize network for Fios - settings, switches and WAP

« on: October 11, 2020, 09:31:20 pm »

Fios connections are indeed shared by multiple users. Usually with smaller ratios than Cable.
From the FIOS FAQ at broadbandreports.com

FiOS networks are built upon Passive Optical Networks. BPON conforms to the ITU-T G983.1 specification which is capable of 622 Mbps download and 155 Mbps upload. Each BPON fiber is split using an optical splitter to serve 16 or 32 users. GPON conforms to the ITU-T G984.1 specification. Verizon's GPON implementation uses Gig-E instead of ATM that was used with BPON. A 2.4 Gbps download speed coupled with a 1.2 Gbps upload speed. Each GPON fiber is split to serve 16, 32, or 64 users per fiber. BPON ONT users have a max speed of 50/50-75/75, and are switched to GPON when a faster speed is ordered. All new installs are done with GPON.

I did have success doubling my speed by turning on the hardware offloading to 600 Mbps up and down. Still shy of the 800 MBps I was able to get with my edgerouter X. MTU changes had not speed change

20.7 Legacy Series / Re: Optimize network for Fios - settings, switches and WAP

« on: October 09, 2020, 10:33:29 pm »

You're doing better than me. I have built an OPNSense router using an HP610t thin client with a quad-port Intel GigE PCIe card. I'm using two ports on that card during this test. I believe that it has 8x lane PCIe interface.

Retrieving speedtest.net configuration... Testing from Verizon Fios (74.96.xxx.xxx)... Retrieving speedtest.net server list... Selecting best server based on ping... Hosted by Xiber LLC (Washington, DC) [21.78 km]: 6.96 ms Testing download speed................................................................................ Download: 333.60 Mbit/s Testing upload speed................................................................................................ Upload: 538.73 Mbit/s
Keep in mind that FIOS bandwidth is shared with your neighbors. If others are heavily using FIOS your bandwidth will be affected.

Pages: [1]