Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - jhw

Pages1

Virtual private networks / OpenVPN Instaces Road Warrior Setup - Keepalive necessary

November 20, 2024, 10:42:07 AM

Hello OPNsense Community,

I recently migrated 12 OpenVPN servers from the legacy configuration to the new "Instances" setup, following the updated documentation:

OPNsense SSL VPN Road Warrior (Instance Configuration)
https://docs.opnsense.org/manual/how-tos/sslvpn_instance_roadwarrior.html

After the migration, many users experienced frequent disconnections after a short period. Although there were no error messages in the server logs, the client logs consistently displayed the following line:

SIGUSR1[soft,ping-restart] received, process restarting

To resolve this, I adjusted the Keep Alive settings in the advanced options. I set the Keep Alive Interval to 10 and the Keep Alive Timeout to 120. Following these changes, all disconnection issues were resolved.

I hope this information helps anyone facing similar problems.

Best regards,
JHW

Virtual private networks / Re: Can not delete OpenVPN Server (legacy) config

November 18, 2024, 02:09:31 PM

Hello Forum,

i updated to 24.7.1 and now it is possible to delete the legacy connections.

Regards,
JHW

Virtual private networks / Can not delete OpenVPN Server (legacy) config

November 11, 2024, 03:41:39 PM

Hello Forum,

OPNsense Version: OPNsense 24.1.10_8-amd64

Today, I completed migrating all connections to instances. I disabled the legacy configurations and attempted to delete them, but it doesn't work. When I click the trash bin icon under VPN: OpenVPN: Servers [legacy], a pop-up appears asking if I want to delete it. After clicking "Yes," I return to the list view, but the configuration remains, and the page becomes unresponsive.

In the backend log files, I found the following error:

2024-11-11T09:22:06 Error configd.py Timeout (120) executing : openvpn configure

I have to restart the WebGUI via console.

I've tried both Chrome and Firefox with the same result.

Thank you for any help!

24.1, 24.4 Legacy Series / Re: Simple Firewall Log Viewer

June 06, 2024, 10:06:13 AM

Thanks, sorano.

If you have already done this, could you explain a bit further. Do you suggest to install it on the OPNsense like described in this post (https://forum.opnsense.org/index.php?topic=12325.0) and point it to /var/log/filter?

Regards,
Jan

24.1, 24.4 Legacy Series / Simple Firewall Log Viewer

June 05, 2024, 03:23:17 PM

Hello,

is there a simple, small solution for analysing the firewall logs?

I am happy with features of the Live View but could not find a way to display events of the past. The Plain View does not offer the filter features of Live View.

I searched the forum and the web and found a lot about SIEM / SOC posts with for example pfelk which needs 16 GB RAM minimum.

Regards,
Jan

German - Deutsch / Re: Ändern vom OPNsene Hostnamen im uBound DNS Server A Record

August 17, 2022, 08:33:34 AM

Super vielen Dank, das werde ich auf einem Testsystem mal ausprobieren.

Gruß,
JHW

German - Deutsch / Ändern vom OPNsene Hostnamen im uBound DNS Server A Record

August 16, 2022, 01:41:26 PM

Hallo Forum,

im Standard übernimmt der A Record für den Hostnamen im uBound jede IP von jedem Interface welches für Static IPv4 konfiguriert ist. Kann man dies irgendwie ändern?

Ein Host Override hat nicht funktioniert. Ich möchte gerne das der A Record nur die IP vom WebGUI Interface beinhaltet.

Gruß,
JHW

Pages1