Messages

1

22.7 Legacy Series / Re: Unbound DNS not working fron internal interfaces

« on: September 04, 2022, 06:11:54 pm »

This also did the trick for me, I was having issues with DNS on every interface except my default LAN subnet. This all started happening after I installed adguard on opnsense. I was really struggling with wireguard, I figured it was something I did wrong with my roadwarrior config, but when troubleshooting I always had handshakes and everything else looked good except I could never browse to a website.

Thanks for posting your results!

quote author=DEC670airp414user link=topic=29883.msg144400#msg144400 date=1660751564]
I did 2 things since reading this thread.   it is is working now :

1.  changed the gateway rule to Default.   which the default IS wan_gw
2. Add the address AGAIN.   to  ACL a 2nd time, they were already posted as default rules,   following this :  https://docs.opnsense.org/manual/unbound.html

and it works.   I've removed all Static DNS servers to all the devices and it continues to work.  I've cleared states and rebooted all the devices

interesting is all I have to say
[/quote]

2

21.7 Legacy Series / Re: Fresh install over existing UFS, import config and format as ZFS - possible?

« on: March 19, 2022, 04:15:21 pm »

This worked perfectly, thanks for taking the time to do this write-up!

Patience is not a virtue here; answering my own question.

Yes it worked for me. I followed these steps:

1. Backup your configuration - most likely you won't need it, but do it anyway.
2. Boot from USB stick with installer. Do not remove/disconnect your drive(s)
3. Upon boot, watch for import_config and import - IMPORTANT - failing this step will leave you with default configuration
4. Wait until login prompt with instructions to login as either root or installer
5. Optional - let your box run live version with your configuration. Test it. Some services won't work, I'll explain later
6. Login as installer. If you logger asa root, logout first, duh.
7. Select your keyboard layout
8. Now in in main installer window, select [ZFS] (that was my goal)
9. Do not select Import - it hangs. Waited twice for long enough to confirm hanging
10. Proceed with install. First thing you'll see is copying your configuration or something to that meaning
11. After install, remove installation media and reboot.
12. Verify that your setting were migrated - mine were
13. IMPORTANT - some plugins are not included with installer. Go to System, Status, Resolve Plugins. It will download missing plugins.
14. Voila, you're done


For me, step 13 was problematic because I run HAProxy in front of WebGUI, and because the HAProxy plugin was not installed, I had to remember how to reach WebGUI bypassing HAProxy. After I logged to the WebGUI, everything was easy.

Note to developers/maintainers - excellent migration implementation. You might want to add a menu item to a CLI, the one that shows when you ssh to the system and become root. The menu, #14 would offer to resolve plugins conflicts, just like WebGUI counterpart - that wold allow me to avoid logging on to WebGUI without functioning HAProxy.

Now I must say, I LOVE OPNSENSE!