Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - nuke

Pages1
#1
25.7, 25.10 Series / Re: After updating Opnsense from 25.7.10 to 25.7.11_1 opening WebGUI eats all memory
January 19, 2026, 03:45:28 PM
I had exactly the same issue.  The disk filled up completely and all processes stopped.

It looks to be the logs in /var/log/hostwatch are so large that the disk is full and nothing else will work.  The GUI dies.

I had to reboot, connect locally to the OPNsense device, turn off/disable the Interfaces:Neighborhood (see post in German forum) and then manually delete the logs from /var/log/hostwatch.

Once the logs were deleted and I rebooted again, everything appears to be back to normal.

BTW, check out the other posts about hostwatch in the forum.  It appears they are all related to this.
#2
25.7, 25.10 Series / Thank you. Update 25.1.12 without issue so far
August 30, 2025, 03:21:09 PM
I wanted to thank everyone for creating such an amazing software.  There are often posts about problems but I wanted to voice my thanks to Deciso and those who participate in the project and forum. 

I'm a hobby user protecting my home network.  I had a friend who helped me set up OPNsense a few years ago.  He installed OPNsense on a separate device.  My friend passed away a few months ago and I was concerned that the update from 25.1.12 to 25.7.2 would have some problems and I'd have no help.  Thankfully the forums are very helpful!

I had a short panic when the GUI didn't come back up after the 25.1.12 to 25.7 update. That issue was remedied by pulling the plug to force a restart.  But after that, it rebooted like a champion and the updates from 25.7 to 25.7.2 went without issue. 

During this panic I realized that I've never used the serial port before.  When the device rebooted and I logged in, I found it was disabled. Now it is enabled!!

Please accept my heartfelt thanks for making the software robust so a hobby user can keep it running.

Thank you!
#3
24.1, 24.4 Legacy Series / Re: GeoIP alias problem
July 15, 2024, 04:26:21 PM
I can confirm that the 24.1.10_3 update fixes this issue. Thank you for reporting here, reporting the bug and fixing.  :)
#4
Intrusion Detection and Prevention / Re: SOLVED: ET Open, IPS mode: why is the action for the compromised rule set Allow
May 30, 2023, 11:09:55 PM
@gctwnl
Did you check the log?  I tried to add Threatfox but found that it didn't complete either.
The log shows:
Code Select
Error suricata [100110] <Error> -- [ERRCODE: SC_ERR_INVALID_SIGNATURE(39)] - error parsing signature "alert dns $HOME_NET any -> $EXTERNAL_NET any (msg:"ThreatFox payload delivery (domain - confidence level: 50%)"; dns_query; content:"slotgamings.com"; depth:15; fast_pattern; isdataat:!1,relative; nocase; reference:url, threatfox.abuse.ch/ioc/1047040/; target:src_ip; metadata: confidence_level 50, first_seen 2022_12_14; classtype:trojan-activity; sid:9104704" from file /usr/local/etc/suricata/opnsense.rules/abuse.ch.threatfox.rules at line 70885
Error suricata [100110] <Error> -- [ERRCODE: SC_ERR_INVALID_SIGNATURE(39)] - no terminating ";" found

So it would appear there is a missing ";" on the line.
I need to recheck the rule file.
Pages1