1
General Discussion / Re: Strange SSL issue when using Vlan
« on: December 20, 2022, 12:00:01 pm »
Interesting, I don't run IDS/IPS.
Maybe I should tag the parent interface?
Maybe I should tag the parent interface?
Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
2
General Discussion / Strange SSL issue when using Vlan
« on: December 20, 2022, 09:36:36 am »
I have split my wifi network into Guest (no VLAN) and Private (vlan2). When my laptop is connected to Private, I have an intermittent problem with git and https://dev.azure.com/. About 80% of the time I get this error:
On my laptop, if I switch to the Guest network it works fine, and never fails. Any ideas?
Code: [Select]
git pull
OpenSSL SSL_connect: Connection was reset in connection to dev.azure.com:443On my laptop, if I switch to the Guest network it works fine, and never fails. Any ideas?
3
General Discussion / Re: IPv6 stopped working, reboot fixed it - ideas?
« on: November 18, 2022, 06:18:22 pm »Since the problem is already (for now) fixed, it's hard to find out anything. Only the logs remain, no idea what to look for, as the problem can be manifold...
Did you check if clients still had (public) v6 addresses? If it occurs again I would first check this, then looking at the sense´s WAN and LAN interface: is there a public v6 assigned? If so, start a traceroute from sense (or client if it still has a v6 address) to somewhere in WAN (eg google.com). Also try to ping or traceroute v6 IPs on WAN (and sense itself), to see if it is just a DNS problem.
I didn't think to check if the clients had an IPv6 address, the WAN interface did have one though. I will get more logs next time. Thanks for replying.
4
General Discussion / Re: IPv6 stopped working, reboot fixed it - ideas?
« on: November 18, 2022, 02:25:54 pm »You can check logs for the time where the problem occured, but did you also check v6 connectivity on other devices?
Yes I checked other devices and they showed the same issue. All devices worked fine after router was rebooted... I get a bit lost in the diagnostics section of OPNsense as I'm a long time pfSense user. Could you suggest a good place to look for this problem?
5
General Discussion / IPv6 stopped working, reboot fixed it - ideas?
« on: November 18, 2022, 11:56:25 am »
I've been using IPv6 for a few months now with no problem. However, today it stopped working for some reason. I got 0/10 on the test-ipv6.com site. I rebooted the OPNsense router and it's all fine now. There were no stopped services in OPNsense, radvd and the WAN interfaces were fine, as was IPv4.
Any ideas on what I could check to find a cause for this?
Any ideas on what I could check to find a cause for this?
6
General Discussion / Re: Traffic Shaper and IPv6
« on: November 02, 2022, 11:31:23 am »
I "solved this" by setting rules for the Upload to TCP and UDP only. Seems to work.
7
General Discussion / Traffic Shaper and IPv6
« on: November 01, 2022, 02:29:15 pm »
I have IPv6 switched on at home and have a mediocre internet connection 50mbit down, 6 Mbit up. For this reason, I have implemented traffic shaping according to this article.
However when testing this it works fine for IPv4 traffic, but IPv6 traffic gets high packet loss according to the gateway pinger, so much so that it gets reported as offline. I pinged my gateway manually and it seems to happen only during the upload part. When the upload saturates the pipe, ping requests do not get a response.
Is this fixable in OPNsense? For now, I've disabled shaping for IPv6 by setting the rule to IPv4 only.
However when testing this it works fine for IPv4 traffic, but IPv6 traffic gets high packet loss according to the gateway pinger, so much so that it gets reported as offline. I pinged my gateway manually and it seems to happen only during the upload part. When the upload saturates the pipe, ping requests do not get a response.
Is this fixable in OPNsense? For now, I've disabled shaping for IPv6 by setting the rule to IPv4 only.
8
General Discussion / Why does the CPU Core temps from node-exporter plugin not match the dashboard?
« on: October 30, 2022, 06:05:23 pm »
I'm trying to build a Grafana dashboard for the first time using prometheus as a scaper but wondering why some figures don't match up.
Here are my thermal sensors using OPNsense bare metal install on a Protectli VP4630.
These are quite different to the data in prometheus from the node_exporter plugin. Why is that?
Here are my thermal sensors using OPNsense bare metal install on a Protectli VP4630.
These are quite different to the data in prometheus from the node_exporter plugin. Why is that?
9
General Discussion / Re: How to advertise ULAs as well as GUAs?
« on: October 27, 2022, 01:05:14 pm »
Thanks, all I had to do was add the virtual IP as a /64 without doing anything else and then it worked. Not intuitive but working fine 
10
General Discussion / Re: How to advertise ULAs as well as GUAs?
« on: October 27, 2022, 12:20:43 pm »
Thanks but I'm not using DHCPv6, only SLAAC. Any way to do it with SLAAC?
11
General Discussion / How to advertise ULAs as well as GUAs?
« on: October 27, 2022, 12:10:14 pm »
I want each of my IPv6 subnets in OPNsense to have a GUA subnet configured and ULA. GUA is working fine, but I can't find where to configure ULAs.
I've just moved over from pfSense and in there I added the ULA subnet in Services -> DHCPv6 Server and RA -> LAN -> Router Advertisements and then the Subnets section.
I can't seem to find that in OPNsense. Anyone know?
I've just moved over from pfSense and in there I added the ULA subnet in Services -> DHCPv6 Server and RA -> LAN -> Router Advertisements and then the Subnets section.
I can't seem to find that in OPNsense. Anyone know?
12
22.7 Legacy Series / How often backups are sent to Google Drive?
« on: October 24, 2022, 03:41:11 pm »
I have configured backups on OPNsense to go to Google drive and it works fine when I click Setup/Test Google Drive.
How often are backups sent there? I'm a long-time netgate pfSense+ user and trying out OPNsense as I have new hardware. In pfSense, backups can get done after every configuration change, is it the same with OPNsense? I made a configuration change, and saved it, but notice that a new backup file doesn't appear in Google Drive.
Or is it on a schedule? If so, where's the schedule and can I change it to every configuration change?
How often are backups sent there? I'm a long-time netgate pfSense+ user and trying out OPNsense as I have new hardware. In pfSense, backups can get done after every configuration change, is it the same with OPNsense? I made a configuration change, and saved it, but notice that a new backup file doesn't appear in Google Drive.
Or is it on a schedule? If so, where's the schedule and can I change it to every configuration change?
13
General Discussion / Re: Where to configure router advertisements?
« on: October 19, 2022, 12:49:57 pm »
Great thanks, all sorted now, makes sense
14
General Discussion / Re: Where to configure router advertisements?
« on: October 19, 2022, 11:22:02 am »
Thanks, but how do I allow manual adjustments for the interface? Can't see that anywhere either...
15
General Discussion / Where to configure router advertisements?
« on: October 19, 2022, 10:51:34 am »
I use IPv6 and have a new router on order and considering migrating from pfSense to OPNsense. I'm struggling to find where Router Advertisements are configured despite spending considerable time trying...
Pages: [1]