OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of satwell »
  • Show Posts »
  • Messages
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Messages - satwell

Pages: [1]
1
22.7 Legacy Series / Re: ixv virtualized NIC (KVM with SR-IOV) broken in 22.7.5
« on: November 07, 2022, 03:42:13 pm »
I've been able to narrow down the problem to VLAN tagging.  If I reconfigure the hypervisor to tag the virtual interface for a specific VLAN and disable VLAN tagging in OPNsense, I get a working network interface.  But obviously for that specific VLAN only, so this isn't a work-around.

2
22.7 Legacy Series / ixv virtualized NIC (KVM with SR-IOV) broken in 22.7.5
« on: November 07, 2022, 01:58:22 am »
I run OPNsense in a Linux KVM virtual machine with an Intel X520-D2 NIC.  I use SR-IOV with the NIC and provide a single VF to the OPNsense VM.  I use multiple VLANs on the VF.

This was working fine in 22.7.4.  But after upgrading to 22.7.5, I can't send or receive packets on any VLANs.  And it's still broken with 22.7.7.  I've rebooted the host, and I've rolled back/re-upgraded multiple times.  I'm pretty confident that it's a change in 22.7.5 that broke it.

No obvious error messages on the OPNsense console.  But on the Linux host, I'm now getting these kernel messages when booting OPNsense:

Code: [Select]
[  +1.841648] vfio-pci 0000:02:10.2: enabling device (0000 -> 0002)
[ +14.454283] ixgbe 0000:02:00.0 enp2s0f0: VF Reset msg received from vf 1
[  +0.011681] ixgbe 0000:02:00.0 enp2s0f0: Unhandled Msg 00000010
[ +13.688786] ixgbe 0000:02:00.0 enp2s0f0: VF Reset msg received from vf 1
[  +0.071553] ixgbe 0000:02:00.0 enp2s0f0: VF Reset msg received from vf 1
[  +0.016387] ixgbe 0000:02:00.0 enp2s0f0: Unhandled Msg 00000010
[  +0.089071] ixgbe 0000:02:00.0 enp2s0f0: VF Reset msg received from vf 1
[  +0.071373] ixgbe 0000:02:00.0 enp2s0f0: VF Reset msg received from vf 1
[  +0.012678] ixgbe 0000:02:00.0 enp2s0f0: Unhandled Msg 00000010
[  +0.104481] ixgbe 0000:02:00.0 enp2s0f0: VF Reset msg received from vf 1
[  +0.073417] ixgbe 0000:02:00.0 enp2s0f0: VF Reset msg received from vf 1
[  +0.015499] ixgbe 0000:02:00.0 enp2s0f0: Unhandled Msg 00000010
[  +0.105531] ixgbe 0000:02:00.0 enp2s0f0: VF Reset msg received from vf 1
[  +0.071245] ixgbe 0000:02:00.0 enp2s0f0: VF Reset msg received from vf 1
[  +0.015634] ixgbe 0000:02:00.0 enp2s0f0: Unhandled Msg 00000010
[  +1.808707] ixgbe 0000:02:00.0 enp2s0f0: 4 Spoofed packets detected
[  +2.015959] ixgbe 0000:02:00.0 enp2s0f0: 1 Spoofed packets detected
[  +2.015956] ixgbe 0000:02:00.0 enp2s0f0: 1 Spoofed packets detected

The spoofed packets message repeats.  I'm guessing from DHCP attempts on the WAN VLAN.

Any idea what could be wrong, or ideas to try?

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2