Messages

I know the path: in fact, this message help me (install AMD microcode) : https://forum.opnsense.org/index.php?msg=254780
Now, dashboard shows me temperature for each core (CPUx) and an AMD0 unit.

All in the title.
I'm unable to access to thermal sensors on a D750 appliance. Is it normal?

Edit: Solution is to install os-cpu-microcode-amd (see menu SYSTEM:FIRMWARE > Plugins)

I was using a PC with OPNsense since few years and the first thing I did, was to disabled root account in web GUI (System > Access > Users > Root). On the console screen, I was able to see logs and to connect with a second admin account and then, launch root access. that way permit to access CLI menu (with numbers to select pfTop, logs, reset, reboot, etc.)
Since I'm configuring an OPNsense applicance, I've to keep root account enabled and even if I block ssh access for it, it still able to connect on WEBGUI.
Did I miss something in my configuration?

I think it's not a memory leak, but the way FreeBSD manage memory (to avoid disk caching).
Solved (I hope... a crash with lagg0 has reset my statistics)

[Solved]

It working correctly, just have to wait few minuts.... Solved !
It's perfect answer to my problem.

I would to set up Unbound DNS to use joinDNS4.eu servers with family filter (86.54.11.12) with DoT
But, I would to use a non filtering server (86.54.11.100) for a specific domain (passetonhack.fr an educational website).

In Services: Unbound DNS: DNS over TLS -> I've configured the fitered DNS server
In Services: Unbound DNS: Query Forwarding -> I've configured and enabled the non filtering server for domain passetonhack.fr

However this seems to be not working. Any idea? Is it the correct process?

I've not enabled this service, only Unbound DNS.
But I'll have a look to a way to monitor precisely processes RAM consumption.

Hi there,

I manage my firewall with Zabbix since few days, because having lot of trouble (many crashes) on my OPNsense firewall. Well, after two days, it seems there is a memory leak, but maybe, the firewall will update it processes and release all the memory?
Are some of you able to share same graph to see the health of our firewalls? Datas are coming from Zabbix agent.

Thanks! You're probably right. BTW I use (Arch! sorry it's a kind of joke when my sentence start with BTW I use...😅) Vicuna theme.
You've solved my "enigm" 👍

Hello everybody,
This weekend I've worked on unbound dns configuration and it works well.
My only concern is about signification of colors.


If someone has the answer for these colors, I'm interested (I understand red is blocked and green passed)
Thanks ;)

That's right.
I use 25.7.2 and I've (again) this problem!

Tried with
http://dsi.ut-capitole.fr/blacklists/download/blacklists_for_pfsense.tar.gz (initial working link)
ftp://ftp.ut-capitole.fr/blacklist/blacklists_for_pfsense_reducted.tar.gz
ftp://ftp.ut-capitole.fr/blacklist/blacklists.tar.gz

I'm trying to use the transparent proxy functionality with my OPNsense firewall but I'm unsure it's ok.
First of all, I've followed the two tutorials:

• https://docs.opnsense.org/manual/how-tos/proxytransparent.html
• https://docs.opnsense.org/manual/how-tos/proxywebfilter.html

I can read the list, choose categories, then download and apply.

On client side, I've downloaded the root certificate and it works for some websites... but a lot of sites fall on "access denied" squid error page.
My question is about the order: is the proxy block all but not access control list (categories) or it block categories and should let go for all others websites?

Using 25.1.4 version and list UT1: categories are back.
Seems to be ok now.

It's not possible, as is, because it's URLs that are checked.
When searching for a bad website, the URL is the search engine's URL...

The solution seems very secure, but I would to know more: how is generated the key on my laptop (linux)?
I'm not very aware about the SSH security.
I suppose the SSH key is present on my laptop and I've to share it with OPNsense server by the process explain by Patrick...