Messages

1

German - Deutsch / Re: ZENARMOR PHP Error nach Upgrade auf 24.7_9

« on: August 07, 2024, 07:56:02 am »

Nach dem Update der ZENARMOR auf 1.17.6 sind die PHP Errors behoben.

Danke an alle und viele Grüße.

2

German - Deutsch / Re: ZENARMOR PHP Error nach Upgrade auf 24.7_9

« on: August 02, 2024, 08:13:02 am »

  Danke für die schnelle Info 

3

German - Deutsch / Re: ZENARMOR PHP Error nach Upgrade auf 24.7_9

« on: August 01, 2024, 02:04:34 pm »

Danke für die Info.

Dann kann man nur warten ....

Viele Grüße

4

German - Deutsch / Re: ZENARMOR PHP Error nach Upgrade auf 24.7_9

« on: August 01, 2024, 09:55:39 am »

TOP, danke

5

German - Deutsch / (gelöst) ZENARMOR PHP Error nach Upgrade auf 24.7_9

« on: August 01, 2024, 09:20:30 am »

Hi,

bekomme aktuell Fehlermeldungen zu PHP und Zenarmor. Sind diese bekannt, oder gibt es einen Fix dazu ?

Der Versuch Zenarmor zu deinstallieren ( delete all data and folder ) und dann wieder frisch zu installieren behebt den Fehler nicht.

Fehlermeldung:
[01-Aug-2024 09:10:03 Europe/Berlin] Error: Call to undefined method OPNsense\Sensei\Api\UserenricherController::initialize() in /usr/local/opnsense/mvc/app/library/OPNsense/Mvc/Dispatcher.php:160
Stack trace:
#0 /usr/local/opnsense/mvc/app/library/OPNsense/Mvc/Router.php(156): OPNsense\Mvc\Dispatcher->dispatch(Object(OPNsense\Mvc\Request), Object(OPNsense\Mvc\Response), Object(OPNsense\Mvc\Session))
#1 /usr/local/opnsense/mvc/app/library/OPNsense/Mvc/Router.php(139): OPNsense\Mvc\Router->performRequest(Object(OPNsense\Mvc\Dispatcher))
#2 /usr/local/opnsense/www/api.php(36): OPNsense\Mvc\Router->routeRequest('/api/sensei/Use...', Array)
#3 {main}

Grüße und danke vorab für jeden Hinweis 

6

German - Deutsch / Re: Zenarmor nach OPNsense Update 22.1.10 Update zerschossen

« on: July 08, 2022, 07:13:06 am »

Danke für die schnelle Hilfe. Im englischen Forum gab es die Lösung.

Das Update für Zenarmor war kurze Zeit später verfügbar.

Viele Grüße und schönes WE 

7

German - Deutsch / Zenarmor nach OPNsense Update 22.1.10 Update zerschossen

« on: July 07, 2022, 04:47:12 pm »

Und täglich grüßt das Murmeltier ....

Es kam in der Vergangenheit leider schon öfter vor, dass nach einem Update der OPNsense Zenarmor nicht mehr lief. Das konnte durch neu Installation behoben werden. Nur jetzt geht das nicht mehr 

Fehlermeldung beim öffnen im Menü von Zenarmor->Dashboard:

Fatal error: Uncaught Error: Class 'Phalcon\Config' not found in /usr/local/opnsense/mvc/app/models/OPNsense/Sensei/Sensei.php:113 Stack trace: #0 /usr/local/opnsense/mvc/app/models/OPNsense/Base/BaseModel.php(364): OPNsense\Sensei\Sensei->init() #1 /usr/local/opnsense/mvc/app/controllers/OPNsense/Sensei/IndexController.php(21): OPNsense\Base\BaseModel->__construct() #2 [internal function]: OPNsense\Sensei\IndexController->indexAction() #3 [internal function]: Phalcon\Dispatcher\AbstractDispatcher->callActionMethod(Object(OPNsense\Sensei\IndexController), 'indexAction', Array) #4 [internal function]: Phalcon\Dispatcher\AbstractDispatcher->dispatch() #5 /usr/local/opnsense/www/index.php(72): Phalcon\Mvc\Application->handle('/ui/sensei/inde...') #6 {main} thrown in /usr/local/opnsense/mvc/app/models/OPNsense/Sensei/Sensei.php on line 113

Fehlermeldung beim Deinstallieren von Zenarmor:

***GOT REQUEST TO REMOVE***
Currently running OPNsense 22.1.10 (amd64/OpenSSL) at Thu Jul  7 16:44:57 CEST 2022
Checking integrity... done (0 conflicting)
Deinstallation has been requested for the following 1 packages (of 0 packages in the universe):

Installed packages to be REMOVED:
   os-sensei: 1.11.2

Number of packages to be removed: 1

The operation will free 128 MiB.
[1/1] Deinstalling os-sensei-1.11.2...
Zenarmor service is running, saving state to resume after upgrade...
Stopping eastpect.
Waiting for PIDS: 56605.
No matching processes were found
Removing Zenarmor cron jobs...
pkg: DEINSTALL script failed
[1/1] Deleting files for os-sensei-1.11.2: .......... done
Invalidating OPNsense cache...done
Remove dashboard...
Invalidating Zenarmor cache...done
Restarting configd service...done
Removing Zenarmor rc configuration file...done
Reloading OPNsense plugin configuration...done
Restarting web gui...done
Unregistering plug-in from the OPNsense firmware system...done
Checking integrity... done (0 conflicting)
Deinstallation has been requested for the following 1 packages:

Installed packages to be REMOVED:
   ubench: 0.32

Number of packages to be removed: 1
[1/1] Deinstalling ubench-0.32...
[1/1] Deleting files for ubench-0.32: ..... done
***DONE***

Möchte ungern alles neu aufsetzen. Gibt es noch eine Möglichkeit Zenarmor sauber zu deinstallieren ?

Danke vorab.

8

German - Deutsch / Re: Zenarmor - "Recreate Index" funktioniert nicht!

« on: February 16, 2022, 12:04:24 pm »

Hi, was für eine DB Engine ist am Laufen ?

(Mongodb oder elasticsearch)

Dieses Problem hatte ich nur mit Mongodb, da half nur ein deinstallieren über die Zenarmor WebGUI, dann wieder normal installieren. Mit Elastic hatte ich diese Probleme noch nicht.

9

German - Deutsch / Re: Update von 21.7.1 auf 21.7.6 schlägt fehl

« on: December 13, 2021, 01:41:24 pm »

Sorry für die späte Antwort.

JA, das war der mirror "CloudFlare".

1000send Dank.

10

German - Deutsch / Update von 21.7.1 auf 21.7.6 schlägt fehl

« on: December 04, 2021, 07:17:21 pm »

Hi zusammen,

versuche vergeblich ein Update auf die Sense 21.7.6 zu starten. Leider schlägt das Update mit der Meldung fehl:

Fetching change log information, please wait... done

This will automatically fetch all available updates and apply them.

This update requires a reboot.

Proceed with this action? [y/N]: y

Updating OPNsense repository catalogue...
OPNsense repository is up to date.
Updating SunnyValley repository catalogue...
SunnyValley repository is up to date.
All repositories are up to date.
Updating OPNsense repository catalogue...
OPNsense repository is up to date.
Updating SunnyValley repository catalogue...
SunnyValley repository is up to date.
All repositories are up to date.
Checking for upgrades (139 candidates): .......... done
Processing candidates (139 candidates): ....... done
The following 87 package(s) will be affected (of 0 checked):

New packages to be INSTALLED:
        lua53: 5.3.6 [OPNsense]
        openldap24-client: 2.4.59_4 [OPNsense]
        py38-dnspython2: 2.1.0 [OPNsense]

Installed packages to be UPGRADED:
        acme.sh: 2.9.0_1 -> 3.0.1 [OPNsense]
        bash: 5.1.8 -> 5.1.12 [OPNsense]
        bind-tools: 9.16.19 -> 9.16.23 [OPNsense]
        boost-libs: 1.72.0_5 -> 1.72.0_6 [OPNsense]
        c-icap: 0.5.8,2 -> 0.5.10,2 [OPNsense]
        ca_root_nss: 3.68 -> 3.71 [OPNsense]
        clamav: 0.103.3,1 -> 0.104.1,1 [OPNsense]
        curl: 7.78.0 -> 7.79.1 [OPNsense]
        dnsmasq: 2.85_1,1 -> 2.86,1 [OPNsense]
        e2fsprogs-libuuid: 1.46.2 -> 1.46.4 [OPNsense]
        filterlog: 0.4_3 -> 0.5 [OPNsense]
        glib: 2.66.8,2 -> 2.70.1,2 [OPNsense]
        groff: 1.22.4_3 -> 1.22.4_4 [OPNsense]
        icu: 69.1,1 -> 70.1_1,1 [OPNsense]
        ifinfo: 10.1 -> 13.0 [OPNsense]
        jansson: 2.13.1 -> 2.14 [OPNsense]
        libcjson: 1.7.14 -> 1.7.15 [OPNsense]
        libfido2: 1.8.0 -> 1.9.0 [OPNsense]
        libgcrypt: 1.9.3 -> 1.9.4 [OPNsense]
        libgpg-error: 1.42 -> 1.43 [OPNsense]
        libnghttp2: 1.44.0 -> 1.46.0 [OPNsense]
        libuv: 1.41.0 -> 1.42.0 [OPNsense]
        lighttpd: 1.4.59 -> 1.4.61 [OPNsense]
        monit: 5.28.0 -> 5.29.0_1 [OPNsense]
        mpd5: 5.9 -> 5.9_4 [OPNsense]
        mysql57-client: 5.7.35_1 -> 5.7.36 [OPNsense]
        ndpi: 3.4.d20201222_1,1 -> 4.0.d20210818,1 [OPNsense]
        nss: 3.68 -> 3.72 [OPNsense]
        ntopng: 4.2.d20210615,1 -> 5.0.d20210923,1 [OPNsense]
        ntp: 4.2.8p15 -> 4.2.8p15_3 [OPNsense]
        openssh-portable: 8.6.p1,1 -> 8.8.p1_1,1 [OPNsense]
        openssl: 1.1.1k_1,1 -> 1.1.1l,1 [OPNsense]
        openvpn: 2.5.3 -> 2.5.4_1 [OPNsense]
        opnsense: 21.7.1 -> 21.7.6 [OPNsense]
        opnsense-update: 21.7.1 -> 21.7.5_2 [OPNsense]
        os-acme-client: 2.6 -> 3.5 [OPNsense]
        os-c-icap: 1.7_1 -> 1.7_2 [OPNsense]
        os-dyndns: 1.24_2 -> 1.27 [OPNsense]
        os-etpro-telemetry: 1.5 -> 1.6 [OPNsense]
        os-wireguard: 1.7 -> 1.9 [OPNsense]
        pcre: 8.44_1 -> 8.45 [OPNsense]
        pcre2: 10.37 -> 10.39 [OPNsense]
        php74: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-ctype: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-curl: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-dom: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-filter: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-gettext: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-json: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-ldap: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-mbstring: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-openssl: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-pdo: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-phpseclib: 2.0.32 -> 2.0.34 [OPNsense]
        php74-session: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-simplexml: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-sockets: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-sqlite3: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-xml: 7.4.22_1 -> 7.4.25 [OPNsense]
        php74-zlib: 7.4.22_1 -> 7.4.25 [OPNsense]
        py38-Jinja2: 2.11.2_1 -> 3.0.1 [OPNsense]
        py38-beautifulsoup: 4.9.3 -> 4.10.0 [OPNsense]
        py38-certifi: 2021.5.30 -> 2021.10.8 [OPNsense]
        py38-cffi: 1.14.6 -> 1.15.0 [OPNsense]
        py38-dns-lexicon: 3.6.1 -> 3.8.2 [OPNsense]
        py38-lxml: 4.6.3 -> 4.6.4 [OPNsense]
        py38-markupsafe: 1.1.1_1 -> 2.0.1 [OPNsense]
        py38-pytz: 2021.1,1 -> 2021.3,1 [OPNsense]
        py38-sqlite3: 3.8.11_7 -> 3.8.12_7 [OPNsense]
        py38-urllib3: 1.26.6,1 -> 1.26.7,1 [OPNsense]
        python38: 3.8.11 -> 3.8.12_1 [OPNsense]
        redis: 6.0.15 -> 6.2.6 [OPNsense]
        smartmontools: 7.2_1 -> 7.2_2 [OPNsense]
        socat: 1.7.4.1_1 -> 1.7.4.2 [OPNsense]
        sqlite3: 3.35.5_3,1 -> 3.35.5_4,1 [OPNsense]
        strongswan: 5.9.2_2 -> 5.9.4 [OPNsense]
        sudo: 1.9.7p1 -> 1.9.8p2 [OPNsense]
        suricata: 5.0.7 -> 6.0.4 [OPNsense]
        syslog-ng: 3.33.2 -> 3.34.1 [OPNsense]
        unbound: 1.13.1 -> 1.13.2 [OPNsense]
        wireguard-go: 0.0.20210424,1 -> 0.0.20211016,1 [OPNsense]
        wireguard-tools: 1.0.20210424 -> 1.0.20210914_1 [OPNsense]

Installed packages to be REINSTALLED:
        readline-8.1.1 [OPNsense] (options changed)
        squid-4.15 [OPNsense] (direct dependency changed: openldap24-client)

Number of packages to be installed: 3
Number of packages to be upgraded: 82
Number of packages to be reinstalled: 2

The process will require 15 MiB more space.
98 MiB to be downloaded.
[1/85] Fetching unbound-1.13.2.txz: .......... done
pkg-static: cached package unbound-1.13.2: size mismatch, fetching from remote
[2/85] Fetching unbound-1.13.2.txz: .......... done
pkg-static: cached package unbound-1.13.2: size mismatch, cannot continue
Consider running 'pkg update -f'
Starting web GUI...done.
Generating RRD graphs...done.

Der versuch pkg update -f per console läuft durch, aber der Fehler bleibt weiterhin mit dem Hinweis auf unbound 1.13.2.

Auch ein Versuch per console das Update zu starten bringt den selben Fehler.

Hm, keine Ahnung was man noch machen kann.

Viele Grüße 

11

German - Deutsch / Re: OPNsense 21.7 upgrade

« on: July 29, 2021, 10:33:45 am »

Tja, eine Neuinstallation hat erstmal funktioniert. Restore der OPNsense Konfig hat auch funktioniert.

ABER: Sobald wieder Sensei ins Spiel kommt, war es das, schon wieder mal Sensei. Danach keine Möglichkeit mehr auf die GUI zu kommen etc. Sämtliche Dienste auf der Sense laufen dann auch nicht mehr.

Sensei ist mit ElasticSearch DB installiert.

Also wieder auf ein Update der Sensei warten 

12

German - Deutsch / Re: OPNsense 21.7 upgrade

« on: July 29, 2021, 08:41:36 am »

Hallo zusammen, leider lief das upgrade bei mir nicht 

Habe Sensei mit Lizenz im Einsatz, da gab es schon bei dem letzten größeren UPDATE Probleme. Leider kann ich nichts mehr aus der Sense an Protokollen ziehen, da sie nicht mehr hochfährt (BlackScreen auf der Maschine)

ERGÄNZUNG: Putty Promptcopy

FreeBSD/amd64 EFI loader, Revision 1.1
(Wed Jul 21 14:24:43 CEST 2021 root@sensey)

   Command line arguments: loader.efi -S115200 -h
   EFI version: 2.60
   EFI Firmware: American Megatrends (rev 5.12)
   Console: comconsole (0x1000)
   Load Path: HD(3,GPT,247A4DEE-A65F-11EB-9D93-406231093DE5,0x64428,0x1AD244A8)
   Load Device: PciRoot(0x0)/Pci(0x17,0x0)/Sata(0x1,0xFFFF,0x0)/HD(3,GPT,247A4DE                                                                  E-A65F-11EB-9D93-406231093DE5,0x64428,0x1AD244A8)
   BootCurrent: 0001
   BootOrder: 0001

   BootInfo Path: HD(1,GPT,2365876F-A65F-11EB-9D93-406231093DE5,0x28,0x64000)/\E                                                                  FI\BOOT\BOOTX64.EFI
Ignoring Boot0001: Only one DP found
Trying ESP: PciRoot(0x0)/Pci(0x17,0x0)/Sata(0x1,0xFFFF,0x0)/HD(3,GPT,247A4DEE-A6                                                                  5F-11EB-9D93-406231093DE5,0x64428,0x1AD244A8)
Setting currdev to disk0p3:
Loading /boot/defaults/loader.conf
|

                  ______  _____  _____
                 /  __  |/ ___ |/ __  |
                 | |  | | |__/ | |  | |___  ___ _ __  ___  ___
                 | |  | |  ___/| |  | / __|/ _ \ '_ \/ __|/ _ \
                 | |__| | |    | |  | \__ \  __/ | | \__ \  __/
                 |_____/|_|    |_| /__|___/\___|_| |_|___/\___|

 +=========================================+     @@@@@@@@@@@@@@@@@@@@@@@@@@@@
 |                                         |   @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
 |  1. Boot Multi User [Enter]             |   @@@@@                    @@@@@
 |  2. Boot Single User                  |       @@@@@            @@@@@
 |  3. [Esc]ape to loader prompt           |    @@@@@@@@@@@       @@@@@@@@@@@
 |  4. Reboot                              |         \\\\\         /////
 |                                         |   ))))))))))))       (((((((((((
 |  Options:                               |         /////         \\\\\
 |  5. [K]ernel: kernel (1 of 2)           |    @@@@@@@@@@@       @@@@@@@@@@@
 |  6. Configure Boot

• ptions...         |       @@@@@            @@@@@

 |                                         |   @@@@@                    @@@@@
 |                                         |   @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
 |                                         |   @@@@@@@@@@@@@@@@@@@@@@@@@@@@
 +=========================================+
                                                21.7  ``Noble Nightingale''
/boot/kernel/kernel text=0x184dd54 data=0x1e3968+0x76ed60 syms=[0x8+0x18fde0+0x8                                                                  +0x1ae221]
/boot/entropy size=0x1000
/boot/kernel/carp.ko size 0x10250 at 0x2892000
/boot/kernel/if_bridge.ko size 0xf998 at 0x28a3000
loading required module 'bridgestp'
/boot/kernel/bridgestp.ko size 0x72a8 at 0x28b3000
/boot/kernel/if_enc.ko size 0x3e78 at 0x28bb000
/boot/kernel/if_gre.ko size 0xb1c0 at 0x28bf000
/boot/kernel/if_lagg.ko size 0x16008 at 0x28cb000
/boot/kernel/if_tap.ko size 0x8b60 at 0x28e2000
/boot/kernel/pf.ko size 0x584a0 at 0x28eb000
/boot/kernel/pflog.ko size 0x2af8 at 0x2944000
/boot/kernel/pfsync.ko size 0xec30 at 0x2947000
Booting...
Start @ 0xffffffff80372000 ...
KDB: debugger backends: ddb
KDB: current backend: ddb
---<<BOOT>>---
Copyright (c) 2013-2019 The HardenedBSD Project.
Copyright (c) 1992-2019 The FreeBSD Project.
Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994
        The Regents of the University of California. All rights reserved.
FreeBSD is a registered trademark of The FreeBSD Foundation.
FreeBSD 12.1-RELEASE-p19-HBSD #0  c89981353e9(stable/21.7)-dirty: Wed Jul 21 14:                                                                  36:43 CEST 2021
    root@sensey:/usr/obj/usr/src/amd64.amd64/sys/SMP amd64
FreeBSD clang version 8.0.1 (tags/RELEASE_801/final 366581) (based on LLVM 8.0.1                                                                  )
VT(vga): resolution 640x480
HardenedBSD: initialize and check features (__HardenedBSD_version 1200059 __Free                                                                  BSD_version 1201000).
CPU: Intel(R) Core(TM) i5-7300U CPU @ 2.60GHz (2712.14-MHz K8-class CPU)
  Origin="GenuineIntel"  Id=0x806e9  Family=0x6  Model=0x8e  Stepping=9
  Features=0xbfebfbff<FPU,VME,DE,PSE,TSC,MSR,PAE,MCE,CX8,APIC,SEP,MTRR,PGE,MCA,C                                                                  MOV,PAT,PSE36,CLFLUSH,DTS,ACPI,MMX,FXSR,SSE,SSE2,SS,HTT,TM,PBE>
  Features2=0x7ffafbff<SSE3,PCLMULQDQ,DTES64,MON,DS_CPL,VMX,SMX,EST,TM2,SSSE3,SD                                                                  BG,FMA,CX16,xTPR,PDCM,PCID,SSE4.1,SSE4.2,x2APIC,MOVBE,POPCNT,TSCDLT,AESNI,XSAVE,                                                                  OSXSAVE,AVX,F16C,RDRAND>
  AMD Features=0x2c100800<SYSCALL,NX,Page1GB,RDTSCP,LM>
  AMD Features2=0x121<LAHF,ABM,Prefetch>
  Structured Extended Features=0x29c6fbf<FSGSBASE,TSCADJ,SGX,BMI1,HLE,AVX2,SMEP,                                                                  BMI2,ERMS,INVPCID,RTM,NFPUSG,MPX,RDSEED,ADX,SMAP,CLFLUSHOPT,PROCTRACE>
  Structured Extended Features3=0xc000000<IBPB,STIBP>
  XSAVE Features=0xf<XSAVEOPT,XSAVEC,XINUSE,XSAVES>
  VT-x: PAT,HLT,MTF,PAUSE,EPT,UG,VPID
  TSC: P-state invariant, performance statistics
real memory  = 8589934592 (8192 MB)
avail memory = 8175194112 (7796 MB)
Event timer "LAPIC" quality 600
ACPI APIC Table: <ALASKA A M I >
FreeBSD/SMP: Multiprocessor System Detected: 4 CPUs
FreeBSD/SMP: 1 package(s) x 2 core(s) x 2 hardware threads
random: unblocking device.
ioapic0 <Version 2.0> irqs 0-119 on motherboard
Launching APs: 1 3 2
Timecounter "TSC-low" frequency 1356072462 Hz quality 1000
wlan: mac acl policy registered
random: entropy device external interface
kbd0 at kbdmux0
module_register_init: MOD_LOAD (vesa, 0xffffffff812907f0, 0) error 19
random: registering fast source Intel Secure Key RNG
random: fast provider: "Intel Secure Key RNG"
000.000054 [4344] netmap_init               netmap: loaded module
[ath_hal] loaded
nexus0
efirtc0: <EFI Realtime Clock> on motherboard
efirtc0: registered as a time-of-day clock, resolution 1.000000s
cryptosoft0: <software crypto> on motherboard
acpi0: <ALASKA A M I > on motherboard
acpi0: Power Button (fixed)
cpu0: <ACPI CPU> on acpi0
hpet0: <High Precision Event Timer> iomem 0xfed00000-0xfed003ff on acpi0
Timecounter "HPET" frequency 24000000 Hz quality 950
Event timer "HPET" frequency 24000000 Hz quality 550
Event timer "HPET1" frequency 24000000 Hz quality 440
Event timer "HPET2" frequency 24000000 Hz quality 440
Event timer "HPET3" frequency 24000000 Hz quality 440
Event timer "HPET4" frequency 24000000 Hz quality 440
atrtc0: <AT realtime clock> port 0x70-0x77 irq 8 on acpi0
atrtc0: Warning: Couldn't map I/O.
atrtc0: registered as a time-of-day clock, resolution 1.000000s
Event timer "RTC" frequency 32768 Hz quality 0
attimer0: <AT timer> port 0x40-0x43,0x50-0x53 irq 0 on acpi0
Timecounter "i8254" frequency 1193182 Hz quality 0
Event timer "i8254" frequency 1193182 Hz quality 100
Timecounter "ACPI-fast" frequency 3579545 Hz quality 900
acpi_timer0: <24-bit timer at 3.579545MHz> port 0x1808-0x180b on acpi0
pcib0: <ACPI Host-PCI bridge> port 0xcf8-0xcff on acpi0
pci0: <ACPI PCI bus> on pcib0
vgapci0: <VGA-compatible display> port 0xf000-0xf03f mem 0xde000000-0xdeffffff,0                                                                  xc0000000-0xcfffffff at device 2.0 on pci0
vgapci0: Boot video device
xhci0: <Intel Sunrise Point-LP USB 3.0 controller> mem 0xdf610000-0xdf61ffff at                                                                   device 20.0 on pci0
xhci0: 32 bytes context size, 64-bit DMA
usbus0 on xhci0
usbus0: 5.0Gbps Super Speed USB v3.0
pci0: <simple comms> at device 22.0 (no driver attached)
ahci0: <Intel Sunrise Point-LP AHCI SATA controller> port 0xf090-0xf097,0xf080-0                                                                  xf083,0xf060-0xf07f mem 0xdf628000-0xdf629fff,0xdf62d000-0xdf62d0ff,0xdf62c000-0                                                                  xdf62c7ff at device 23.0 on pci0
ahci0: AHCI v1.31 with 3 6Gbps ports, Port Multiplier not supported
ahcich0: <AHCI channel> at channel 0 on ahci0
ahcich1: <AHCI channel> at channel 1 on ahci0
ahcich2: <AHCI channel> at channel 2 on ahci0
pcib1: <ACPI PCI-PCI bridge> at device 28.0 on pci0
pci1: <ACPI PCI bus> on pcib1
igb0: <Intel(R) I211 (Copper)> port 0xe000-0xe01f mem 0xdf500000-0xdf51ffff,0xdf                                                                  520000-0xdf523fff at device 0.0 on pci1
igb0: Using 1024 TX descriptors and 1024 RX descriptors
igb0: Using 2 RX queues 2 TX queues
igb0: Using MSI-X interrupts with 3 vectors
igb0: Ethernet address: 40:62:31:09:3d:e5
igb0: netmap queues/slots: TX 2/1024, RX 2/1024
pcib2: <ACPI PCI-PCI bridge> at device 28.1 on pci0
pci2: <ACPI PCI bus> on pcib2
igb1: <Intel(R) I211 (Copper)> port 0xd000-0xd01f mem 0xdf400000-0xdf41ffff,0xdf                                                                  420000-0xdf423fff at device 0.0 on pci2
igb1: Using 1024 TX descriptors and 1024 RX descriptors
igb1: Using 2 RX queues 2 TX queues
igb1: Using MSI-X interrupts with 3 vectors
igb1: Ethernet address: 40:62:31:09:3d:e6
igb1: netmap queues/slots: TX 2/1024, RX 2/1024
pcib3: <ACPI PCI-PCI bridge> at device 28.2 on pci0
pci3: <ACPI PCI bus> on pcib3
igb2: <Intel(R) I211 (Copper)> port 0xc000-0xc01f mem 0xdf300000-0xdf31ffff,0xdf                                                                  320000-0xdf323fff at device 0.0 on pci3
igb2: Using 1024 TX descriptors and 1024 RX descriptors
igb2: Using 2 RX queues 2 TX queues
igb2: Using MSI-X interrupts with 3 vectors
igb2: Ethernet address: 40:62:31:09:3d:e7
igb2: netmap queues/slots: TX 2/1024, RX 2/1024
pcib4: <ACPI PCI-PCI bridge> at device 28.3 on pci0
pci4: <ACPI PCI bus> on pcib4
igb3: <Intel(R) I211 (Copper)> port 0xb000-0xb01f mem 0xdf200000-0xdf21ffff,0xdf                                                                  220000-0xdf223fff at device 0.0 on pci4
igb3: Using 1024 TX descriptors and 1024 RX descriptors
igb3: Using 2 RX queues 2 TX queues
igb3: Using MSI-X interrupts with 3 vectors
igb3: Ethernet address: 40:62:31:09:3d:e8
igb3: netmap queues/slots: TX 2/1024, RX 2/1024
pcib5: <ACPI PCI-PCI bridge> at device 28.4 on pci0
pci5: <ACPI PCI bus> on pcib5
igb4: <Intel(R) I211 (Copper)> port 0xa000-0xa01f mem 0xdf100000-0xdf11ffff,0xdf                                                                  120000-0xdf123fff at device 0.0 on pci5
igb4: Using 1024 TX descriptors and 1024 RX descriptors
igb4: Using 2 RX queues 2 TX queues
igb4: Using MSI-X interrupts with 3 vectors
igb4: Ethernet address: 40:62:31:09:3d:e9
igb4: netmap queues/slots: TX 2/1024, RX 2/1024
pcib6: <ACPI PCI-PCI bridge> at device 28.5 on pci0
pci6: <ACPI PCI bus> on pcib6
igb5: <Intel(R) I211 (Copper)> port 0x9000-0x901f mem 0xdf000000-0xdf01ffff,0xdf                                                                  020000-0xdf023fff at device 0.0 on pci6
igb5: Using 1024 TX descriptors and 1024 RX descriptors
igb5: Using 2 RX queues 2 TX queues
igb5: Using MSI-X interrupts with 3 vectors
igb5: Ethernet address: 40:62:31:09:3d:ea
igb5: netmap queues/slots: TX 2/1024, RX 2/1024
isab0: <PCI-ISA bridge> at device 31.0 on pci0
isa0: <ISA bus> on isab0
pci0: <memory> at device 31.2 (no driver attached)
hdac0: <Intel Kaby Lake-LP HDA Controller> mem 0xdf620000-0xdf623fff,0xdf600000-                                                                  0xdf60ffff at device 31.3 on pci0
acpi_button0: <Sleep Button> on acpi0
acpi_button1: <Power Button> on acpi0
acpi_tz0: <Thermal Zone> on acpi0
acpi_tz1: <Thermal Zone> on acpi0
uart0: <16950 or compatible> port 0x3f8-0x3ff irq 4 flags 0x10 on acpi0
uart0: console (115200,n,8,1)
uart1: <16950 or compatible> port 0x2f8-0x2ff irq 3 on acpi0
est0: <Enhanced SpeedStep Frequency Control> on cpu0
Timecounters tick every 1.000 msec
hdacc0: <Intel Kaby Lake HDA CODEC> at cad 2 on hdac0
hdaa0: <Intel Kaby Lake Audio Function Group> at nid 1 on hdacc0
pcm0: <Intel Kaby Lake (HDMI/DP 8ch)> at nid 3 on hdaa0
ugen0.1: <0x8086 XHCI root HUB> at usbus0
uhub0: <0x8086 XHCI root HUB, class 9/0, rev 3.00/1.00, addr 1> on usbus0
ada0 at ahcich1 bus 0 scbus1 target 0 lun 0
ada0: <KINGSTON SUV500MS240G 003056RA> ACS-4 ATA SATA 3.x device
ada0: Serial Number 50026B76823426D6
ada0: 600.000MB/s transfers (SATA 3.x, UDMA6, PIO 512bytes)
ada0: Command Queueing enabled
ada0: 228936MB (468862128 512 byte sectors)
Trying to mount root from ufs:/dev/gpt/rootfs [rw]...
WARNING: /mnt was not properly dismounted
WARNING: /mnt: mount pending error: blocks 480 files 2
Mounting filesystems...
tunefs: soft updates remains unchanged as enabled
WARNING: /mnt: reload pending error: blocks 480 files 2
tunefs: file system reloaded
tunefs: issue TRIM to the disk remains unchanged as enabled
WARNING: /mnt: reload pending error: blocks 480 files 2
tunefs: file system reloaded
** /dev/gpt/rootfs
** Last Mounted on /mnt
** Root file system
** Phase 1 - Check Blocks and Sizes
INCORRECT BLOCK COUNT I=3210266 (80 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=3210267 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=3210275 (80 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=3210280 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=3210287 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=3210289 (128 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=3210290 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=3210295 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=3210296 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=3210297 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=3210299 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=8747910 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=24480957 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=24480958 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=24959796 (64 should be
CORRECT? yes

INCORRECT BLOCK COUNT I=25040632 (8 should be 0)uhub0: 18 ports with 18 removabl                                                                  e, self powered

CORRECT? yes

INCORRECT BLOCK COUNT I=26002953 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26002994 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003005 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003012 (112 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003061 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003063 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003203 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003215 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003217 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003221 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003386 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003393 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003396 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003397 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003725 (32 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26003790 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26083397 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26083401 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26083561 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26083583 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26083609 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26083612 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26083615 (8 should be 0)
CORRECT? yes

INCORRECT BLOCK COUNT I=26083617 (8 should be 0)
CORRECT? yes

** Phase 2 - Check Pathnames
** Phase 3 - Check Connectivity
** Phase 4 - Check Reference Counts
LINK COUNT DIR I=3210240  OWNER=root MODE=41777
SIZE=1536 MTIME=Jul 29 08:17 2021  COUNT 11 SHOULD BE 9
ADJUST? yes

ZERO LENGTH DIR I=3210280  OWNER=elasticsearch MODE=40755
SIZE=0 MTIME=Jul 29 08:17 2021
CLEAR? yes

UNREF FILE  I=3210292  OWNER=elasticsearch MODE=100600
SIZE=32768 MTIME=Jul 29 08:17 2021
RECONNECT? yes

LINK COUNT DIR I=3210293  OWNER=www MODE=40750
SIZE=512 MTIME=Jul 29 08:17 2021  COUNT 6 SHOULD BE 2
ADJUST? yes

ZERO LENGTH DIR I=3210295  OWNER=www MODE=40750
SIZE=0 MTIME=Jul 29 08:17 2021
CLEAR? yes

ZERO LENGTH DIR I=3210296  OWNER=www MODE=40750
SIZE=0 MTIME=Jul 29 08:17 2021
CLEAR? yes

ZERO LENGTH DIR I=3210297  OWNER=www MODE=40750
SIZE=0 MTIME=Jul 29 08:17 2021
CLEAR? yes

ZERO LENGTH DIR I=3210299  OWNER=www MODE=40750
SIZE=0 MTIME=Jul 29 08:17 2021
CLEAR? yes

UNREF FILE  I=3210306  OWNER=root MODE=100644
SIZE=0 MTIME=Jul 29 08:10 2021
RECONNECT? yes

UNREF FILE  I=24959797  OWNER=root MODE=100644
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=24959798  OWNER=root MODE=100644
SIZE=3 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=25040632  OWNER=root MODE=100644
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26003012  OWNER=unbound MODE=100640
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26003013  OWNER=root MODE=100640
SIZE=8720 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26003019  OWNER=root MODE=100640
SIZE=8720 MTIME=Jul 29 08:12 2021
RECONNECT? yes

UNREF FILE  I=26003077  OWNER=root MODE=100600
SIZE=16384 MTIME=Jul 29 08:16 2021
RECONNECT? yes

UNREF FILE  I=26003086  OWNER=root MODE=140666
SIZE=0 MTIME=Jul 29 08:16 2021
RECONNECT? yes

UNREF FILE  I=26003096  OWNER=unbound MODE=140666
SIZE=0 MTIME=Jul 29 08:16 2021
RECONNECT? yes

UNREF FILE  I=26003097  OWNER=root MODE=140755
SIZE=0 MTIME=Jul 29 08:16 2021
RECONNECT? yes

LINK COUNT FILE I=26003198  OWNER=unbound MODE=100640
SIZE=758 MTIME=Jul 29 08:17 2021  COUNT 2 SHOULD BE 1
ADJUST? yes

UNREF FILE  I=26003214  OWNER=redis MODE=140700
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26003215  OWNER=redis MODE=100644
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

LINK COUNT DIR I=26003222  OWNER=www MODE=40755
SIZE=512 MTIME=Jul 29 08:17 2021  COUNT 5 SHOULD BE 4
ADJUST? yes

UNREF FILE  I=26003223  OWNER=root MODE=100640
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26003256  OWNER=root MODE=100640
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26003257  OWNER=root MODE=100640
SIZE=8720 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26003388  OWNER=root MODE=100640
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26003389  OWNER=root MODE=100640
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26003390  OWNER=root MODE=100640
SIZE=8720 MTIME=Jul 29 08:17 2021
RECONNECT? yes

LINK COUNT DIR I=26003988  OWNER=ntopng MODE=40755
SIZE=512 MTIME=Jul 29 08:17 2021  COUNT 6 SHOULD BE 5
ADJUST? yes

LINK COUNT DIR I=26083215  OWNER=root MODE=40755
SIZE=512 MTIME=Jul 29 08:17 2021  COUNT 8 SHOULD BE 5
ADJUST? yes

UNREF FILE  I=26083331  OWNER=ntopng MODE=100600
SIZE=103112 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26083379  OWNER=root MODE=140700
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26083397  OWNER=root MODE=100644
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

NO SPACE LEFT IN /lost+found
EXPAND? yes

UNREF FILE  I=26083401  OWNER=root MODE=100644
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26083560  OWNER=root MODE=140700
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26083561  OWNER=root MODE=100644
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26083583  OWNER=root MODE=100644
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26083602  OWNER=root MODE=140700
SIZE=0 MTIME=Jul 29WARNING: /mnt: reload pending error: blocks 480 files 2
 08:17 2021
RECONNECT? yes

UNREF FILE  I=26083609  OWNER=root MODE=100644
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26083612  OWNER=root MODE=100644
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26083615  OWNER=ntopng MODE=100644
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26083617  OWNER=elasticsearch MODE=100644
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

UNREF FILE  I=26083622  OWNER=ntopng MODE=100600
SIZE=0 MTIME=Jul 29 08:17 2021
RECONNECT? yes

** Phase 5 - Check Cyl groups
CG 0: BAD CHECK-HASH 0xde412024 vs 0x895c889f
FREE BLK COUNT(S) WRONG IN SUPERBLK
SALVAGE? yes

SUMMARY INFORMATION BAD
SALVAGE? yes

BLK(S) MISSING IN BIT MAPS
SALVAGE? yes

89453 files, 2716093 used, 51766118 free (13278 frags, 6469105 blocks, 0.0% frag                                                                  mentation)

***** FILE SYSTEM STILL DIRTY *****

***** FILE SYSTEM WAS MODIFIED *****

***** PLEASE RERUN FSCK *****
** /dev/gpt/rootfs
** Last Mounted on /mnt
** Root file system
** Phase 1 - Check Blocks and Sizes
** Phase 2 - Check Pathnames
** Phase 3 - Check Connectivity
** Phase 4 - Check Reference Counts
** Phase 5 - Check Cyl groups
89453 files, 2716093 used, 51766118 free (13278 frags, 6469105 blocks, 0.0% frag                                                                  mentation)

***** FILE SYSTEM MARKED CLEAN *****
Setting hostuuid: df5c1420-a65e-11eb-9d93-406231093de5.
Setting hostid: 0x0b2e58a2.
Configuring vt: blanktime.
Configuring crash dump device: /dev/gpt/swapfs
swapon: adding /dev/gpt/swapfs as swap device
.ELF ldconfig path: /lib /usr/lib /usr/local/lib /usr/local/lib/compat/pkg /usr/                                                                  local/lib/compat/pkg /usr/local/lib/ipsec /usr/local/lib/mysql /usr/local/lib/pe                                                                  rl5/5.32/mach/CORE
32-bit compatibility ldconfig path:
done.
>>> Invoking early script 'upgrade'
>>> Invoking early script 'configd'
Starting configd.
>>> Invoking early script 'templates'
Generating configuration: OK
>>> Invoking early script 'backup'
>>> Invoking backup script 'captiveportal'
>>> Invoking backup script 'dhcpleases'
>>> Invoking backup script 'duid'
>>> Invoking backup script 'netflow'
>>> Invoking backup script 'rrd'
>>> Invoking early script 'carp'
CARP event system: OK
Launching the init system...done.
Initializing...........done.
igb0: link state changed to UP
igb2: link state changed to UP
igb3: link state changed to UP
Starting device manager...done.
Configuring login behaviour...done.
Configuring loopback interface...done.
Configuring kernel modules...done.
Setting up extended sysctls...done.
Setting timezone...done.
Writing firmware setting...done.
Writing trust files...done.
Setting hostname: myopnsense.ddns.net
Generating /etc/hosts...done.
Configuring system logging...done.
Configuring loopback interface...done.
Creating wireless clone interfaces...done.
Configuring VLAN interfaces...done.
Creating OpenVPN instances...done.
Configuring VLAN50_SMART interface...done.
Configuring VLAN70_WLAN_GAST interface...done.
Configuring VLAN100_LAN_GAST interface...done.
Configuring igb0_LAN_WLAN_HOME interface...done.
Configuring igb2_LAN_GAST interface...done.
Configuring igb3_DMZ interface...done.
Configuring igb4_LABOR interface...done.
Configuring igb1_WAN interface...done.
Creating IPsec VTI instances...done.
Generating /etc/resolv.conf...done.
Configuring firewall.......done.
Starting PFLOG...done.
Configuring OpenSSH...done.
Starting web GUI...done.
Configuring CRON...done.
Setting up routes...done.
Generating /etc/hosts...done.
Starting DHCPv4 service...done.
Starting Unbound DNS...done.
Setting up gateway monitors...done.
Configuring firewall.......done.
Starting PFLOG...done.
Syncing OpenVPN settings...done.
Configuring dynamic DNS clients...done.
Starting NTP service...done.
Starting Unbound DNS...done.
Generating RRD graphs...done.
Configuring system logging...done.
>>> Invoking start script 'newwanip'
Reconfiguring IPv4 on ovpns1: OK
Reconfiguring routes: OK
>>> Invoking start script 'freebsd'
Certificates generated /usr/local/share/ntopng/httpdocs/ssl/ntopng-cert.pem

• ifconfig wg create name wg0
[!] Missing WireGuard kernel support (ifconfig: SIOCIFCREATE2: Invalid argument). Falling back to slow userspace implementation.

• wireguard-go wg0

┌───────────────────────────────────────────────────────
│                                                      │
│   Running wireguard-go is not required because this  │
│   kernel has first class support for WireGuard. For  │
│   information on installing the kernel module,       │
│   please visit:                                      │
│         https://www.wireguard.com/install/           │
│                                                      │
└───────────────────────────────────────────────────────

• wg setconf wg0 /dev/stdin

Warning: AllowedIP has nonzero host part: 100.65.1.2/24

• ifconfig wg0 inet 100.65.1.0/24 alias

route: route has not been found

• ifconfig wg0 mtu 1420
• ifconfig wg0 up
• resolvconf -a wg0 -x
• Backgrounding route monitor
• ifconfig wg create name wg1
[!] Missing WireGuard kernel support (ifconfig: SIOCIFCREATE2: Invalid argument). Falling back to slow userspace implementation.

• wireguard-go wg1

┌───────────────────────────────────────────────────────
│                                                      │
│   Running wireguard-go is not required because this  │
│   kernel has first class support for WireGuard. For  │
│   information on installing the kernel module,       │
│   please visit:                                      │
│         https://www.wireguard.com/install/           │
│                                                      │
└───────────────────────────────────────────────────────

• wg setconf wg1 /dev/stdin

Warning: AllowedIP has nonzero host part: 100.66.1.2/24

• ifconfig wg1 inet 100.66.1.0/24 alias

route: route has not been found

• ifconfig wg1 mtu 1420
• ifconfig wg1 up
• resolvconf -a wg1 -x
• Backgrounding route monitor
• ifconfig wg create name wg2
[!] Missing WireGuard kernel support (ifconfig: SIOCIFCREATE2: Invalid argument). Falling back to slow userspace implementation.

• wireguard-go wg2

┌───────────────────────────────────────────────────────
│                                                      │
│   Running wireguard-go is not required because this  │
│   kernel has first class support for WireGuard. For  │
│   information on installing the kernel module,       │
│   please visit:                                      │
│         https://www.wireguard.com/install/           │
│                                                      │
└───────────────────────────────────────────────────────

• wg setconf wg2 /dev/stdin
• ifconfig wg2 inet 100.67.1.1/24 alias

route: route has not been found

• ifconfig wg2 mtu 1420
• ifconfig wg2 up
• resolvconf -a wg2 -x
• route -q -n add -inet 100.67.1.3/32 -interface wg2
• route -q -n add -inet 100.67.1.2/32 -interface wg2
• Backgrounding route monitor

Starting suricata.
29/7/2021 -- 08:47:52 - <Info> - Including configuration file installed_rules.yaml.
29/7/2021 -- 08:47:52 - <Info> - Configuration node 'rule-files' redefined.
29/7/2021 -- 08:47:52 - <Info> - Including configuration file custom.yaml.
usage: kill [-s signal_name] pid ...
       kill -l [exit_status]
       kill -signal_name pid ...
       kill -signal_number pid ...
Starting senpai.
Starting redis.
Starting ntopng.
29/Jul/2021 08:47:55 [Ntop.cpp:2347] Setting local networks to 127.0.0.0/8,fe80::/10
29/Jul/2021 08:47:55 [Redis.cpp:162] Successfully connected to redis 127.0.0.1@0
29/Jul/2021 08:47:55 [Redis.cpp:162] Successfully connected to redis 127.0.0.1@0
29/Jul/2021 08:47:56 [Ntop.cpp:2287] Parent process is exiting (this is normal)
WARNING: attempt to domain_add(netgraph) after domainfinalize()
setup igb0
setup igb1 [egress only]
/usr/local/etc/rc.d/haproxy: WARNING: /usr/local/etc/haproxy.conf is not readable.
/usr/local/etc/rc.d/haproxy: WARNING: failed precmd routine for haproxy
Starting flowd_aggregate.
Starting flowd.
Starting elasticsearch.
usage: kill [-s signal_name] pid ...
       kill -l [exit_status]
       kill -signal_name pid ...
       kill -signal_number pid ...
No matching processes were found
/dev/md43: 50.0MB (102400 sectors) block size 32768, fragment size 4096
        using 4 cylinder groups of 12.53MB, 401 blks, 1664 inodes.
        with soft updates
super-block backups (for fsck_ffs -b #) at:
 192, 25856, 51520, 77184
Starting eastpect.
Starting acme_http_challenge.
ipfw2 (+ipv6) initialized, divert loadable, nat loadable, default to accept, logging disabled
load_dn_sched dn_sched FIFO loaded
load_dn_sched dn_sched QFQ loaded
load_dn_sched dn_sched RR loaded
load_dn_sched dn_sched WF2Q+ loaded
load_dn_sched dn_sched PRIO loaded
load_dn_sched dn_sched FQ_CODEL loaded
load_dn_sched dn_sched FQ_PIE loaded
load_dn_aqm dn_aqm CODEL loaded
load_dn_aqm dn_aqm PIE loaded
Bump flowset buckets to 256 (was 0)
Bump flowset buckets to 256 (was 0)
289.225276 [ 853] iflib_netmap_config       txr 2 rxr 2 txd 1024 rxd 1024 rbufsz 2048
289.239980 [ 853] iflib_netmap_config       txr 2 rxr 2 txd 1024 rxd 1024 rbufsz 2048
pf disabled
pf enabled
Firewall rules loaded.
289.461807 [ 853] iflib_netmap_config       txr 2 rxr 2 txd 1024 rxd 1024 rbufsz 2048
Starting API dispatcher
Install : zone 0
overlay user template package for zone 0
Traceback (most recent call last):
  File "/usr/local/opnsense/scripts/OPNsense/CaptivePortal/overlay_template.py", line 46, in <module>
    zip_content = base64.b64decode(template_data)
  File "/usr/local/lib/python3.8/base64.py", line 87, in b64decode
    return binascii.a2b_base64(s)
binascii.Error: Invalid base64-encoded string: number of data characters (1285173) cannot be 1 more than a multiple of 4
Start : zone 0
2021-07-29T08:48:11.319071+02:00 XXXXXXXXXXX.ddns.net lighttpd 99013 - - (server.c.1513) server started (lighttpd/1.4.59)
start captiveportal background process
>>> Invoking start script 'syslog-ng'
Stopping syslog_ng.
Waiting for PIDS: 4769.
Starting syslog_ng.
>>> Invoking start script 'c-icap'
Cannot 'start' c_icap. Set c_icap_enable to YES in /etc/rc.conf or use 'onestart' instead of 'start'.
>>> Invoking start script 'ntopng'
ntopng already running?  (pid=15787).
>>> Error in start script 'ntopng'
>>> Invoking start script 'wireguard'
Setting up routes...sending datagram to 127.0.0.1:2056 failed: Permission denied
405.180179 [ 853] iflib_netmap_config       txr 2 rxr 2 txd 1024 rxd 1024 rbufsz 2048
405.205442 [ 853] iflib_netmap_config       txr 2 rxr 2 txd 1024 rxd 1024 rbufsz 2048
406.619985 [ 853] iflib_netmap_config       txr 2 rxr 2 txd 1024 rxd 1024 rbufsz 2048[/s][/s]


Zugriff auf die Routes verweigert, hmm, ich kann damit nichts anfangen, aber vielleicht hilft die Fehlermeldung

Also neu installieren und Backup einspielen. Melde mich ob das funktioniert.

Viele Grüße und einen schönen Start in den Tag  :)

13

German - Deutsch / Re: Update auf 21.1.8 wohl voreilig gemacht ;-)

« on: July 08, 2021, 12:01:13 pm »

@franco

Danke für den TIPP. Hat geholfen 

Kurzer Hinweis: Auf der OPNsense liegt die Datei unter /usr/local/etc/inc dann die Datei IPV6.inc in der Zeile 683 abändern in     $ip[$pos] = '_';

Ja sieht auf der ersten Blick gleich aus. Es sind die Klammern die den Unterschied machen.

Viel Erfolg für alle die dieses Problem auch haben.

14

German - Deutsch / Re: Update auf 21.1.8 wohl voreilig gemacht ;-)

« on: July 07, 2021, 07:29:15 pm »

Fehlermeldung im Post nachgetragen 

Danke für den Tipp. Aber das ist keine schnelle Lösung.

Irgendwas passt mit der 21.1.8 gar nicht. Selbst eine Neuinstallation mit 21.1.7 und danach Update auf 21.1.8 lässt sich keine db´s mehr starten, weder redisdb noch mongodb oder elasticsearch local.

Sieht wie ein PHP Thema aus, hat sich wohl was geändert.

Für mich bleibt nur Neuinstallation ohne Update auf 21.1.8.

15

German - Deutsch / Update auf 21.1.8 wohl voreilig gemacht ;-)

« on: July 07, 2021, 04:51:49 pm »

Hi zusammen, nach dem heutigen Update auf 21.1.8 (community) laufen viele Dienste nicht mehr.

Neuinstallation der Dienste brachte auch keinen Erfolg.

Hier ein Auszug der Fehlermeldungen:

User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/91.0.4472.124 Safari/537.36
FreeBSD 12.1-RELEASE-p19-HBSD #0  0c59842367b(stable/21.1)-dirty: Mon Jul  5 15:08:43 CEST 2021     root@sensey:/usr/obj/usr/src/amd64.amd64/sys/SMP amd64
OPNsense 21.1.8 1ce87376d
Plugins os-acme-client-2.5 os-bind-1.17 os-c-icap-1.7_1 os-clamav-1.7_1 os-dyndns-1.24_2 os-etpro-telemetry-1.5 os-haproxy-3.3 os-mdns-repeater-1.0_1 os-ntopng-1.2_1 os-redis-1.1_1 os-sensei-1.9.2 os-sensei-updater-1.9 os-smart-2.2 os-sunnyvalley-1.2_1 os-theme-cicada-1.28 os-wireguard-1.7 os-wol-2.4
Time Wed, 07 Jul 2021 16:49:00 +0200
OpenSSL 1.1.1k  25 Mar 2021
PHP 7.4.20

[07-Jul-2021 18:20:27 Europe/Berlin] PHP Deprecated:  Array and string offset access syntax with curly braces is deprecated in /usr/local/etc/inc/IPv6.inc on line 683

Diese Meldung tritt sekündlich auf.

Alle diese Dienste haben leider ihren Dienst eingestellt.

Gibt es eine Möglichkeit auf 21.1.7 downzugraden

Viele Dank vorab.