Messages

Well I stopped it by powering my router off and then back on again.

But I sure would appreciate hearing from someone on how I should proceed now.
I'm so very new to all of this.

I went to Sunnyvalley searching for help/info but got nowhere.
I did general web searches also no good.
And I took a peak in the documentation, but a search there also did help.

So after doing an update and backup -  I updated to 22.7_4, and my router did not auto restart.

So I did windows troubleshooting of the connection, and after a bit my router rebooted.

I then logged back into my console, and saw a lot of package updates waiting so I selected update, and it has been hung up at nss-3.18 pkg for hours now.

How do I stop the 'updating'/running?

I have the Error Report, but I do not know what parts may be helpful here...

I have OPNSense installed on ProtectLi box -

Currently running OPNsense 22.7_4 (amd64/OpenSSL) at Thu Jan 19 11:14:42 PST 2023
Updating OPNsense repository catalogue...
OPNsense repository is up to date.
Updating SunnyValley repository catalogue...
SunnyValley repository is up to date.
All repositories are up to date.
Updating OPNsense repository catalogue...
OPNsense repository is up to date.
Updating SunnyValley repository catalogue...
SunnyValley repository is up to date.
All repositories are up to date.
Checking for upgrades (33 candidates): .......... done
Processing candidates (33 candidates): .......... done
The following 33 package(s) will be affected (of 0 checked):

Is there anything else I need to add here in order to get help?

Thanks

I have searched for the openssl downloads, but have only found their blog with limited info and nothing on this issue.  I thought I might have to learn how to download and install by hand.

I went to my packages and did a reinstall, that did not help as it just reinstalled this vulnerable versions.

I've read the OPNsense documentation about SSL - nothing I can use there.

Anyone out there. . . . .?

Hello -

After upgrading to opnsense 22.1.3, I got the message that my flavor of SSL was being let go and that I should switch to openSSL instead, I did so.  However now I'm getting a security vulnerability warning. 

I do my research and see where my version 111m is vulnerable but the fix is in version 111m - how do I update my openssl?  I switched to it from my settings tab, I have no idea where else to find it, nor why it doesn't auto-update it's self.....

Thanks for your help,

Perfect!  Thanks Bart  ;D

I have another question regarding your words "Any additional network needs explicit rules to access anything (LAN, internet, or other networks)."

Can you point me to some basic how to for setting FW rules for an interface other than LAN?  I thought about cloning the LAN rules and assigning those -as a total guess- but my gut says unforeseen issues will arise.

I feel that this isn't the place for those just getting started to rolling their own, can you point me to a place, maybe for a different router OS where I can get the basics?  Just thought I'd ask :D

Okay, good to know  ;)

Thanks

Hey Bart, thanks for the reply!

I've been reading/searching since this post and so I think follow you -a little bit-  ;)

It's a Firewall (OPNS standard setup) issue?
I thought the (OPNS standard FW setup) was mostly just like an off the shelf router = allow all..... but based on what I've been dealing with something is blocking that other switch for sure.

So I looked at the FW rules and I do not see any for my other interface - your right.

Not able to find good info for those just starting out to all things home-network/router I have planned my home network from my imagination - using switches, I now realize, like most would use VLANS.  I imagined I'd limit things on certain switches because my home-net is going to be very a simple in layout.  Only devices in my office/LAN need more complicated/fuller range access.  This em2 switch should be limited, but that is a huge learning for me just now - I'm working my way up to such things a FW rules and limited certain assess.  While answering this I managed to kill my LAN internet access, I know not how LOL

Q: Wood setting up a VLAN for this other switch help my troubles, or would it just be a different way not necessarily better.... This second switch is for my Living room TV and laptop, Ethernet wired, only.  I will add one final switch, same as the second for a bedroom, same use situation.

Q: Can I just add a FW rule to accept the other switch?  I have 6 ports on my box, I hate the idea that using any past the LAN is going to require I wait months to learn and not bring down my router.  I'd prefer good security, but I'd settle on cloning the FW rule for my LAN and pasting onto my em2 interface - this sound like very bad practice to me though.

Please forgive the newbie questions - I have researched books and such to help get a bit up to speed, but complaints on them all from new to it all people that they are for those in the professional sector and/or assume to much base knowledge and/or do not give any steps just generalities and theories - Sigh

There is a huge gap in this space, if I may say so - people who want to learn, be more secure, and self sufficient, but do NOT want to become an expert, network manager, etc.  They like myself are pulled in other directions, diving to deep is just not an option.   Just good enough to secure one's home, yet better than trusting off-the-shelf.

As always - Your help is greatly appreciated, again :D

Hello ~

Soooo I have some questions - I have a protectli 6 port with OPNsense pre-installed, and I've updated it to  21.7.1-amd64

After using Ethernet to direct connect to my opns I did the updates and then added a user and disabled root.

I then connected my TP-Link 8 port to my computer and the LAN port on opns box - it worked for any devices I attach to that switch in my office - Yea!

Here's where I run into trouble - I then connect another switch (Tp-Link 5 port) to em2 on my opns box - and enabled it from Interfaces in opns.  I noticed that my LAN was already enabled (probably why it was working) and so I assumed I should enable my second interface for the other switch in another room.  But nothing I connect to that switch will access the internet.  I know nothing about networking, but started this journey because I want a home network which is 90% wired, and much more secure all around. 

Now there is a lot to this stuff, and I mostly just guessed at trying to set up the second switch - So I'm here asking for your help.... I set the em2 to use static ip4 like my LAN interface, but with the IP of 192.168.10.20/28
all other settings are the same.  OPNS shows all 3 working (green) - LAN WAN & em2 on the dashboard.

Can someone point me in the right direction?

Thank you