Messages

1

24.7 Production Series / Re: 24.7 CPU Temps

« on: October 26, 2024, 12:08:56 am »

Holy Heisenberg, Batman.

Sorry, that related to the general problem of measuring temps affecting temps, and I am not sure how to delete it from this context.

2

24.7 Production Series / Re: Problem upgrading from 24.7.1 to 24.7.5

« on: October 05, 2024, 09:43:51 am »

Yes, that fixed it thank you newsense.

3

24.7 Production Series / Problem upgrading from 24.7.1 to 24.7.5

« on: October 05, 2024, 03:47:21 am »

I have two routers running 24.7.5 happily. I have upgraded a newer (intended replacement) box from 24.1_10 to 24.7.1 but it wishes to go no further. Upgrade starts then produces the following message:

Code: [Select]

[1/53] Fetching php82-session-8.2.23.pkg: ..... done
pkg-static: cached package php82-session-8.2.23: missing or size mismatch, fetching from remote
[2/53] Fetching php82-session-8.2.23.pkg: ..... done
[2/53] Fetching php82-session-8.2.23.pkg: ..... done
pkg-static: cached package php82-session-8.2.23: missing or size mismatch, cannot continue
Consider running 'pkg update -f'
I duly tried

Code: [Select]

pkg update -f to no avail; it simply said my packages were up to date:

Code: [Select]

Updating OPNsense repository catalogue...
Fetching meta.conf: 100%    163 B   0.2kB/s    00:01   
Fetching packagesite.pkg: 100%  240 KiB 246.0kB/s    00:01   
Processing entries: 100%
OPNsense repository update completed. 848 packages processed.
All repositories are up to date.
Including with a reboot, the GUI still shows 24.7.1 as would be expected after the error.

Preferably without doing a new installation from scratch, what should I check or how do I get past this please?

4

24.7 Production Series / Re: Source routing tunable?

« on: September 23, 2024, 05:30:24 am »

Thank you Patrick.

5

24.7 Production Series / Source routing tunable?

« on: September 22, 2024, 01:45:17 am »

Reading the XML file for my configuration (what else do you do on a Sunday?) I came across this:

Code: [Select]

<item>
      <descr>
        Source routing is another way for an attacker to try to reach non-routable addresses behind your box.
        It can also be used to probe for information about your internal networks. These functions come enabled
        as part of the standard FreeBSD core system.
      </descr>
      <tunable>net.inet.ip.sourceroute</tunable>
      <value>default</value>
...
      <tunable>net.inet.ip.accept_sourceroute</tunable>
      <value>default</value>
    </item>
Checking the manual, I did not discover mention of source routing or such tunables. The description above is unclear, in that it says the tunable is on by default in FreeBSD but not what is the default value in OPNsense.

I know what source routing is, but what is the setting for it here, should I consider this an issue in a home network, and where is it set anyway (other than importing a modified configuration)?

6

Hardware and Performance / Re: OpnSense and WiFi Mesh

« on: June 27, 2024, 07:57:29 am »

So long as the Deco is set as a DHCP client upstream there should be no need to set it in bridge mode. If left in routing mode then downstream devices will not be visible to OPNsense which will see only the Deco. This is why you normally set it to bridge, for full visibility and management, and also avoiding double-translation of addresses. I have used both modes behind OPNsense.


If using bridge mode, I would set that after other reconfiguration, not before.

7

General Discussion / Re: OPNSense Discord is growing!

« on: June 19, 2024, 06:07:41 am »

No such thing as live support would be blatantly false.  We've got people troubleshooting "live" even as we speak in discord.

How to miss the point.

Never mind. I am not here to debate it and won't post further on it.

8

General Discussion / Re: OPNSense Discord is growing!

« on: June 15, 2024, 01:10:32 am »

Greg_E gave most of the detail, to which I will add that there is no such thing as "live" support from a single differentiated location in a world with 24 hours. The forum is asynchronous but reliable. Replication and resource-splitting are therefore pointless from that perspective. I have yet to see a good reason advanced.

I do not control what others do, only my own optimal response to the conditions presented. The fact is that whereas where OPNsense won out in previous consideration, my other three options retain coherent support and I continue to follow their activities the same as I peruse this site daily. Optionality helps.

9

General Discussion / Re: OPNSense Discord is growing!

« on: June 14, 2024, 05:31:56 am »

Observing this deliberate division of the community and support, I am reassessing my commitment to OPNsense and monetary contributions thereto.

It wasn’t broken.

10

General Discussion / Re: Unofficial OPNSense Discord - Link

« on: May 05, 2024, 01:20:06 am »

I sincerely hope the OPNsense team decline the "invitation" to split the community.

If smaller groups wish to have private chats they are welcome, not at the expense of the enterprise.

11

24.1 Legacy Series / Re: changing IP address of OPNsense

« on: April 09, 2024, 11:44:35 pm »

I have done this for an internal Opnsense router, assigning its management LAN port 10.a.b.1 rather than 192.168.1.1. I found the least error path was to plan the assignments then do it in initial setup.

12

General Discussion / Re: OPNsense Discord

« on: April 04, 2024, 11:33:30 pm »

My experience of chat-style meeting places is that they are exclusionary.

For simple population reasons, most activity is in a very different time zone from a reasonable proportion of other users, substantially unavailable to the latter. To the extent it deals with real issues, it is (in my experience) neither a record nor very accessible, especially if practically no-one is around when you ask. While it may appear a parochial view, the effect is real.

A great virtue of a forum of record rather than transitory exchange is that it alleviates the tyranny of distance.

13

General Discussion / Re: Please Make a Donation to OPNsense

« on: March 18, 2024, 05:28:21 am »

Added my bi-annual €50. A bit is better than nothing. Very happy with Opnsense.

14

General Discussion / Re: Switching forum to discourse?

« on: March 12, 2024, 11:17:46 pm »

If it has the features to list new posts (as this does) AND to jump to the first unread thread post (which I have not found here) then I am for it. Otherwise I am against it.

Across different boards over many years, these are the two things which consistently affect my experience. The rest is either expected or nice to have or tolerated.

15

General Discussion / Re: Webgui keeps disconnecting on apple products only?

« on: March 06, 2024, 08:57:14 am »

I suspect DNS or related. What are your settings for DHCP and DNS on each of your Opnsense and wifi? Does your iPhone randomise its MAC?

I use various current MacOS and iOS devices with no problem.