Messages

ou need a reverse proxy like Caddy for that. Start with the well written documentation

I run traefik but had only been using it for external access, didn't know it worked for internal domains too. I'll give the traefik documentation a read. Thanks :)

Host should be : homeassistant
Domain should be : internal

This fixed my issue, i didn't know I had to add 'internal' to 'domain' in the DNSmasq DNS & DCHP server - Hosts section

One last question. My unraid server has different docker applications served on different ports (e.g. jellyfin). Is there a way to set it up so that an internal domain resolves directly to an application even without a port number. In other words, can I have jellyfin.internal resolve to jellyfin instead of needing to write unraid.internal:8096?

Hi, I read the documentatation and did the steps as suggested, filling the domain field as 'internal' in the DHCP default domain, the DHCP ranges domain and also in the unbound Query forwarding domain field. Yet for some reason it only resolves correctly if i do unraid.lan.internal. Also none of my other hostnames resolve (e.g. homeassistant.lan.internal). Just confirming, the hostname is the whatever appears in the 'Host' field of Dnsmasq DNS & DHCP - Hosts?

Thanks

I've lost all my dhcp mappings.

Why didn't you export them into a .CSV file ?!

You can do it from the webGUI directly :)

My unraid server IP address has been given to another device.
How do I kick this device off the address and give it to my unraid server?

Your UNRAID Server should have a Static IP Address configured in it's OS and only use the Static DHCP Mapping based on the MAC Address as a backup solution in case some OS update/upgrade does something weird to your network's configuration !!

I would put the device that has "stolen" the IP Address offline now and configure your UNRAID Server correctly first.
Then when the "bad device" goes online again it should get a new IP Address :)

And last but not least :
Make sure all your Clients that connect to the UNRAID Server use host.domain.tld to connect to it instead of the IP Address.
So for example unraid.athome.lan or simply use the new .internal domain for private use : unraid.internal

This way you can just change the IP Address of the DNS Record and solve the issue too if something like this happens again in the future...

Thanks for the comprehensive reply. I managed to set the static IP as suggested in the opnsense webui. I like the idea for using the internal domain instead of an IP address but am fairly new to networking so not sure how to set this up. How do i set up an internal domain to point to my unraid server IP address? Thanks

I upgraded to opnsense 26.1.7 yesterday and for some reason the internet just completely stopped working through both wifi and wired. I only had a backup from 25.7 so I did a fresh install of 25.7 and now the internet works but I've lost all my dhcp mappings.

My unraid server IP address has been given to another device. How do I kick this device off the address and give it to my unraid server? Sorry if my question seems silly, I'm still new to opnsense

Hi
I set up all traffic to be passed through NordVPN using wireguard, according to the guide linked below:
https://sysadmin102.com/2025/01/opnsense-wireguard-nordvpn-setup/

It works fine but every few weeks, the internet completely stops working and the nordvpn gateway shows as offline. To fix this, I just go through the same guide and update the IP endpoint for the NordVPN server to get everything working again. Is there a way to make it so that the rules are disabled if the internet doesn't work due to the gateway being offline? Or is there a way to fix the NordVPN server more permanently so that I don't need to constantly regenerate a new gateway every few weeks?

TIA

You are correct, that was the exact script I was using! I have removed the modifications and everything is fine now
Thanks again

Hi
I used to use PIA through wireguard on OPNsense but recently switched to NordVPN through wireguard so created a new instance + peer and deleted the old ones. However the PIA wireguard instance and peer seem to regenerate automatically after a short while. How can I delete them permanently and stop them from regenerating?

Not sure if it helps but I run the latest verson of OPNsense:
OPNsense 25.7.11_2-amd64
FreeBSD 14.3-RELEASE-p7
OpenSSL 3.0.18

Thanks

A simple restart of adguard home solved the issue. I should have tried that first, thanks for helping anyway

I tried this on opnsense and it said all packages are up to date so I think I already have the updated plugin

Hi, I run opnsense 24.7.10 with adguard home and have always been able to update adguard home from the UI. Just today, it prompted me to install an update but gives me an error when I try to update and asks me to install a manual update instead. How can I do a manual update on OPNSense? Thanks

You sir are a gentleman and a scholar...
Worked perfectly :)

Hi
I just upgraded to 24.7 and every time I check for updates now, it says that there are 4 packages needing update:
New packages to be INSTALLED:
   libICE: 1.1.0_2,1 [SunnyValley]
   libXau: 1.0.9_1 [SunnyValley]
   libXdmcp: 1.1.5 [SunnyValley]
   xorgproto: 2023.2 [SunnyValley]

Once I let the update finish and see **DONE**, and check for updates again, it says the same packages need updating. Is this a bug? I've tried 4 times now

Thanks

Hi
I run opnsense with adguard home & unbound DNS and wish to set up a custom DNS record to point app.mydomain.com to my application locally. I have Traefik reverse proxy running on one of the ports of my unraid server so if I could arrange for the app.mydomain.com to resolve to Traefik, I think Traefik would be able to connect to my application. How can I set this record up? Hopefully my question makes sense

Thanks for the prompt reply. Is it an issue to just have 0.0.0.0 as the only dns bind host or should I add the 192 one? Sorry, fairly new to networking.

Also regarding DNS encryption, if I don't want external access to the admin interface, do I still need a domain and certificate?