Messages

Worked like a charm. Thanks, franco!

Seems broken no matter which UI theme is chosen...it's broken in the standard "opnsense" theme is well. 

Hi, I have that problem too.

Always good to know I'm not the only one...must be a bug/glitch within the widget itself. The "Firewall States" widget is working fine, as well as the other ones. Rebooting OPNsense doesn't restore the Firewall widget's function.

Seeing this from the firewall widget post 25.1.4 update...otherwise everything else seems fine...



Using Vicuna theme...

After clearing cache, etc., in MS Edge, the drop-down issue with vicuna seems to be fixed.

Might be browser-related...I tend to use MS Edge/Chrome and only MS Edge appears to have this issue (vicuna works fine in Chrome). Can't select anything in the add-widget drop-down on MS Edge, when vicuna is used as the theme. I did recently update Vicuna, but the problem still persists within Edge. Other themes are working fine, as far as the Add-Widget drop-down is concerned.

When selecting "add widget" from the main dashboard with the vicuna theme, the widgets fall behind the "add widget" window so nothing can be selected. Changing the theme is a quick and easy workaround. Not sure if anyone else reported, definitely nitpicky.

So the web GUI within OPNsense only has input for up to 2 DNS servers. I have a tertiary DNS that I'd like to send out to all clients on my LAN but am unsure of how to go about it.

I found an older post that mentioned using hexadecimal numbers in "Additional Options" using "6" as the number and type "String", using a concatenated hex string for the 3 DNS IP's in the Value field, then leaving the DNS servers "blank" in the GUI. I've found that this doesn't work...after an ipconfig /renew on one of my Windows clients, the OPNsense router's IP is given out as the DNS server instead of the 3 IP's converted over to hex. Any additional suggestions? Thanks.

Thanks Franco. Can also confirm that patch works. Updated the interface_statistics.widget.php file.

Anyone else notice this issue? The Interface Statistics widget no longer updates in real-time unless the entire page is refreshed.

I've observed the same behavior with multi-WAN, which is what I currently have on my own setup. Occasionally I see the arpresolve messages on my console, but it's not frequent. All I know is that it seems to happen more often after an initial config, or following an update, then it settles down and becomes more intermittent/sparse after OPNsense has had a few days of uptime.

I was itching to resolve this as you are currently...but after researching the arpresolve "failed to allocate llinfo on <wan interface>" for days, I found overall that it probably wasn't worth any further concern. Seems that the arpresolve behavior has been around for several years (on pfSense as well) and it relates to anything from NIC driver issues to WAN flapping. In my case, it doesn't seem to coincide with connectivity or performance issues, it seems to be related to one WAN interface attempting to resolve something on the other WAN interface (something related to dpinger), and vice-versa. Also, what may resolve this issue for some users doesn't work for others.

What IP's are you using for gateway monitoring? Check Systems > Gateways > Single - generally it's recommended that you use a public DNS IP for monitoring, such as 1.1.1.1. Each gateway needs a different IP assigned, so your 2nd WAN could have 1.0.0.1 for example.

In System > Settings > General what are you using as your DNS servers assigned to each Gateway? The DNS IP's should match up with what you used for each gateway for gateway monitoring.

I see the arpresolve: can't allocate llinfo for <WAN IP> as well, but from my experience they're usually benign and WAN access is working fine from both gateways. The arpresolve messages will generally pop up if there are brief instances of packet loss on either gateway, which does happen occasionally.

Also try rebooting your OPNsense device to see if that helps cut down and/or eliminate the llinfo messages. Sometimes my OPNsense appliance will go a few days without any of those arpresolve messages, other times they seem to occur more frequently.

The instructions in this article worked perfectly for me. I moved to different hardware and switching from 1Gbps to 2.5Gbps interfaces with different names as well as locations for WAN, etc. This article lays out what to look for when making changes. Highly recommend reviewing it.
https://homenetworkguy.com/how-to/migrate-opnsense-to-new-hardware/

Great link! I ended up following some of it, some config I did from scratch. Fortunately my setup wasn't terribly complex. Once I physically swapped the appliances, I had to spend an hour or so finishing off the config when the new device was live and connected to the WANs. One thing that drove me nuts for awhile was a typo in one of my port forwarding rules that kept redirecting all web traffic on my LAN to an internal web server...turned out I was forwarding all port 80 and 443 traffic to an internal web server on the LAN/WAN, instead of just the WAN. I ended up figuring out the problem after disabling reflection for port forwards, then it quickly became obvious. Good thing I use a custom https port for OPNsense.

Appreciate the tips!

Since I have both appliances running side-by-side right now, with my new appliance having a temporary IP, I have been re-doing the config from scratch on the new device. Problem is certain things can't be done until I actually swap the appliances out, because I can't create Gateway groups, etc. until the new appliance is actually connected to the cable modem/network terminals in order to get WAN connections online. I have been able to reconfigure DHCP static entries and port forwarding rules however on the new appliance without problems, as well as creating aliases for certain devices that I force out through my primary WAN (I just use those devices' MAC addresses and alias them).

Another challenge will be the LAGG config...I have 3 LAGG'd ports used between the appliance/managed switch...won't be able to flip those over on the new device until I swap it out with the older one.

I plan on migrating to a new Mini PC appliance for running OPNsense as my primary firewall/router. I have a fairly simple setup overall, but do have quite a few static mappings, some port forwarding rules, as well as a multi-wan configuration on my current appliance. The new appliance has a couple of extra NICs, a better CPU, more RAM/NVMe SSD space, etc.

Current OPNsense appliance is running 23.1.1-amd64, new appliance will run the same version. Right now I have both devices up and running, but there's only so much I can configure on the new device without causing conflicts since the devices are both on the same network (can't enable DHCP on the new device yet for obvious reasons).

Short of taking screenshots from my current appliance and reconfiguring the new one from scratch, which obviously will involve a chunk of time, is there an easy way to pull some of the configuration over from the old appliance to the new once, so that I don't have to redo all of my static DHCP mappings, etc.? I understand certain configs can't be migrated over because interface names and assignments will vary from one to the other. If I could simply pull over static DHCP mappings, perhaps firewall aliases, and a few other bits of config (without doing the manual screenshot method), that would be quite helpful.

Any suggestions/recommendations appreciated as always.