Messages

I ran tcpdump and noticed a ton of incorrect chksum. Should I turn off tx offloading and gro on the XCP-NG pifs or vifs? Because tcpdump was run from xcp-bg management dom0 on the physical interface.

Opnsense is hosted on xcp-ng. And there is a Nextcloud VM on the same. What happens is when I access Nextcloud on the lan,  when uploading or downloading large project files, I end up using a large chunk of the link bandwidth. Other users on the lan home network then have slow start and not able to achieve full download speed of the internet.

I see the links are detected are full duplex, but how to verify?

Because, when I ran iperf3 both sides the bandwidth totals to approx 1Gbps. Not 2 Gbps.
I tested by starting iperf in one direction and it peaks at 980Mbps. While that is running I ran iperf from another system in opposite direction simultaneously. It starts at 50Mbps, and slowly settles at 150 or 200 Mbps. It doesn't even out at 500 and 500 as expected. Hence my question regarding evenly splitting.

Maybe you are right about this being a link duplex issue. How to check that?

My question is similar to traffic shaping but differs slightly in terms of what I want to achieve. Let us assume 1Gbps is max bandwidth for the interface.
Requirements:
1. Allow maximum bandwidth on egress or ingress if there is not much utilization on either one.
2. When both egress and ingress wants max utilization, then allocate bandwidth evenly between them.

A simple solution is to setup traffic shaper pipe one for egress and one for ingress with 500Gbps each. But that will limit max utilization to 500Gbps and not close to 1Gbps when only one of ingress or egress is bandwidth hungry , hence not satisfying requirement 1. Requirement 2 will be satisfied by this shaper though.

Any suggestions? Or is my understanding of traffic shaper pipe bandwidth incorrect?

I installed xcp-ng, virtualized the OPNsense and Nextcloud instances. Nextcloud is running as a snap application  on a lean Ubuntu server. Since the inter communication between OPNsense and Nextcloud never leaves the wire and is handled by xcp-ng between VMs I don't have any bottleneck ; get almost 2Gbps. Only constrained by my Wi-Fi when on LAN and my internet bandwidth when on the road.

How to add third party plugins/repository?

Are there any commands in ipfw to view fq_codel statistics / usage?
1. I Want  to see number of active flows.
2. I want to see dropped statistics.
3. I want to see average/mean queue delay.

Any plugins/ ipfw cli commands to view this? Feel free to attach any useful links. I would like to read more if I have to figure this one out.

Same issue. Noticed some tcp errors since I was using DoT. Had switch over to dnsmasq in mean time

Is there any plug-in or 3rd party in opnsense to view dnsmasq dns queries. I'm using dnsmasq to do dns blacklist, and would like to view the stats like on pihole.
I tried the Netdata plugin. It appears to have to have a configuration for dnsmasq. But it is not working. Any help?

I moved Opnsense from physical HW to XCP-NG a few months ago. My internet is 300 up, 300 down. I chose a high CPU priority for OPNsense and normal for the only other Ubuntu VM. No performance impact, but there's hardly ever full load.

I have an Opnsense server running on a desktop. I would like to run a cloud server like Owcloud on the same desktop. Is this possible? are there any available plugins for open source cloud servers on Opnsense?