Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - ehaxhi1

#1
Hello,

I have 2 pi-hole servers I want to setup for load-balancing from my local network, I want to setup a virtual IP listening on the same subnet as my pi-hole servers which
clients can use to query both pi-hole server via round robin.

I am having a issue with the relayd plugin not working via the GUI, when I try to configure a Virtual Server with the following parameters, it will not allow me to save.
I don't get any errors, clicking on the save button does nothing.

Name: pi-hole-dns
Enable: checked
Server Type: Redirection
Listen Address: IP in the same subnet as pi-hole servers
Listen IP Protocol: UDP
Listen Port: 53
Interface: Pi-hole servers vlan
Transport Type: Forward
Table: Pi-hole-DNS servers
Port: 53
Scheduler: Round-Robin
Table Check: ICMP

If i change the Server type to Relay I can save the settings and I can see the virtual server configured but its not working, when i try to do a manual nslookup via "nslookup google.com <Virtual Server IP> i get nothing.

I am running the latest version of OPNsense  OPNsense 23.7.7_3-amd64.

Thank You
#2
Hello,

I have recently upgraded my firewall to 23.1.8 and noticed that there are multiple sessions open for the following:

root@OPNsense:~ # w
12:01PM  up 6 mins, 9 users, load averages: 0.20, 0.20, 0.10
USER       TTY      FROM            LOGIN@  IDLE WHAT
root       v0       -              11:56AM     5 /bin/sh /usr/local/sbin/opnsense-shell
root       v1       -              11:56AM     5 /bin/sh /usr/local/sbin/opnsense-shell
root       v5       -              11:56AM     5 /bin/sh /usr/local/sbin/opnsense-shell
root       v7       -              11:56AM     5 login [pam] (login)
root       v2       -              11:56AM     5 login [pam] (login)
root       v4       -              11:56AM     5 /bin/sh /usr/local/sbin/opnsense-shell
root       v3       -              11:56AM     5 /bin/sh /usr/local/sbin/opnsense-shell
root       v6       -              11:56AM     5 login [pam] (login)
root       pts/0    192.168.1.220  12:01PM     - w
root@OPNsense:~ #

I run my firewall on a Dell Wyse 5070 Extended thin client with 8GB of ram and 256GB SSD.

I dont have SSH access enabled and rebooting does not seem to make the TTY logins go away, after a reboot, they are back.

I am using 2FA configured to login via web and ssh, the console menu is not password protected.

I also have a virtual OPNsense running on Proxmox with the same version and same plugins but the opnsense-shell is not running on that device unless i SSH in or console via the Proxmox console login.