Messages

I'm also experiencing that issue; apologies for adding to the noise.

In an attempt to minimise exposure (I'd argue this is good practice in sec infra [1]), my Web GUI is indeed restricted to listen to a MGMT interface with a static IPv4 address, with IPv6 config set to 'None' as I don't have a use for it here.  This used to work fine (I know, until it doesn't...)

I also get the smoking gun noted above:

Code Select Expand

/usr/obj/usr/ports/www/lighttpd/work/lighttpd-1.4.76/src/network.c.604) bind() [fe80::5054:ff:febb:5a2b]:443: Can't assign requested address

Is it right for the WebUI to attempt to bind to a disabled IPv6 interface?  Many thanks!!

[1] https://en.wikipedia.org/wiki/Defense_in_depth_(computing)

Ditto here: internal DNS names specified on static DHCPv4 leases now only work within Aliases when fully qualified; thanks for the FQDN/suffix tip!

I'd say this looks like a pretty serious showstopper with 21.7.4; been upgrading various OPNsense deployments since 18.1 and it's the first time I have encountered such a serious issue.  Has a defect been raised and/or does this need doing?  Is there anything I can do to contribute investigations?

(sorry for the English; my German is a little rusty)