Messages

Hi Franco,

Odd that, but the machine booted without issue and seems to be working without any issues as far as I can see.

Chalking it up to gremlins ;)

Thanks for your help, appreciated!

Hi Franco,

I ran the audits (See attached) which seem to suggest everything is fine, but checking for the PY313 packages (Searching for 'py313' in the 'Audit upgrade') are not present in the audit (I can find references to the earlier installs of py311)

Thats why I think packages are missing...

Hi,

Tried to install 26.1.4 today but unfortunately it crashed the machine :(

Install progress stopped at package 51/118 (Extracting py313-trio...) and was no longer responding.

I waited 15mins (to be sure no progress was made with a task that needed more time or so) after which I powercycled the machine

I retried install again but got the 'already uptodate' message, but it hasn't installed all packages...

Is there a way to force the patch to be reinstalled completely (Overwriting/skipping the 51 steps already done)?

Hi,

I've been getting random events where my firewall becomes completely unresponsive, where the only thing possible to resolve it is literally unplugging it.

My Monit instance manages to send a final email before it dies:

Resource limit matched Service
some.domain.com
Date: Mon, 23 Feb 2026 23:44:12
Action: alert
Host: some.domain.com
Description: cpu usage of 99.9% matches resource limit [cpu usage > 75.0%]

I do not get any warnings other than that single email, which makes me think some process immediately gets the processor up to 100% mark.

The event seems to be happening after approx 2 weeks running after unplugging it and plugging it back in.

It is not something introduced in recent updates (running the latest, fully patched), because i've been having this issue for some time.

How can I find out which process is going rogue, knowing that once it happens I can no longer access anything on the OPNsense??


Is it possible to run a 'top' logging to a file, and if so what options would be useful?

Any help is appreciated!

Hi,

I migrated to KEA DHCP today, which went almost flawless:

For some reason the DHCP lease table shows 2 entries (With identical MAC adress belonging to an Ubuntu server), one having the correct IP (.76) & Leasetime, the other IP (.132) has a leasetime of 0

The server can no longer be reached via DNS but is otherwise working.

Tried rebooting the server, KEA and OPNsense completely, but the rogue item remains...

My questions:

1) As Kea has no options to release IP's in the current firmware: is it possible to remove the entry via commandline (SSH) in OPNsense, if so, what comnmands should be issued?

2) What is the roadmap for KEA in the GUI: Will it get these capabilities?

Thanks in advance!
 

Hi Dseven,

My issue is that I don't get the correct reply:

When I PING OPNSENSE.MY.DOMAIN I should get back 192.168.1.10

Instead I am getting results 192.168. 20.1 or 192.168.30.1 and even the IP from my WAN interface...

I don't get back the correct IP for the OPNsense management interface... I don't want the VLANs' interface address to respond at all: My laptop is on the same LAN as OPNSENSE.MY.DOMAIN)

Why are VLANs interface IP'S (The static IP specified when creating the VLAN) and my WAN IP  claiming to be OPNSENSE.MY.DOMAIN (Which is 192.168.1.10)

Hi all,

I ran into a small problem and have no idea how to solve it:

My OPNsense configured for a static IP address, for example: 192.168.1.10 and hostname opnsense.my.domain. My laptop is on the main LAN on 192.168.1.19 (obtained via DHCP)

I also have a couple of VLAN interfaces configured with a static IP:
VLAN 20:  192.168.20.1
VLAN 30:  192.168.30.1

The issue I run into is that when I PING my OPNsense (Running latest from my laptop, I see this:

ping opnsense.my.domain

Pinging opnsense.my.domain (192.168.30.1) with 32 bytes of data
Reply from 192.168.30.1 time=9ms
Reply from 192.168.30.1 time=10ms
Reply from 192.168.30.1 time=10ms
Reply from 192.168.30.1 time=9ms
Packets sent = 4, Packets received = 4, No packets lost

Note that my OPNsense IP actually is 192.168.1.10 (Not 192.168.30)

When I flush my DNS (Unbound) with IPCONFIG /FLUSHDNS I get:

Pinging opnsense.my.domain (192.168.20.1) with 32 bytes of data
Reply from 192.168.20.1 time=10ms
Reply from 192.168.20.1 time=11ms
Reply from 192.168.20.1 time=10ms
Reply from 192.168.20.1 time=9ms
Packets sent = 4, Packets received = 4, No packets lost

When I flush DNS again, sometimes even my WAN interface responds:

Pinging opnsense.my.domain (31.x.y.z) with 32 bytes of data
Reply from 31.x.y.z time=11ms
Reply from 31.x.y.z time=11ms
Reply from 31.x.y.z time=10ms
Reply from 31.x.y.z1 time=9ms
Packets sent = 4, Packets received = 4, No packets lost

Any idea what is causing this and how to correct it?

Any help is greatly appreciated!

Fred

Excuse me for using this german proverb, but do not fall for: "Operative Hektik ersetzt geistige Windstille".

Great proverb, I gotta remember than one :)

Hi,

Tried both suggestions, thank you, but nothing worked...

I reimaged the USB stick several times (Using DD from an Ubuntu PC), but still no difference.

Out of options I reimaged the USB stick from a Windows laptop with Rufus to write the image, which DID make a change: Now I got booted into the live image correctly and could start the installation process :)

Thanks again for your suggestions!

Hi all,

I am trying to reinstall my DEC750 ((Currently running 24.7_2) via serial console (Connected via the Mini USB, COM6 serial, 115200, 8N1) and a USB stick with the serial image.

Using Putty or MobaXterm I am able to go into the BIOS and set the UART 0 legacy option to DISABLED and select the USB image to boot, but then get stuck on a menu that simply does not accept any input from keyboard.

Any advice on how to solve this particular issue?

This does not affect Zenarmor operations.
The team is working on the issue, and it will be resolved shortly.

Good to hear @IHK

Would it be possible to include a description of what went wrong and how it was solved?

The trigger was clear: the upgrade to 24.7.8 started the erors from appearing.

Is this only happening to paying customers or also others using the free version?

After a complete removal and reinstall, I have not received any error emails thusfar, so whatever the cause is, it seems to be solved by reinstalling.

Edit 13 Nov.:

Still no new alert messages after reinstall. No idea if the issue is being investigated by ZenArmor or not, but this could be a workaround it seems.

Hi,

As I kept getting more emails, I decided to reinstall ZenArmor from scratch.

Several hours ago now, and so far no new emails....

Will check back tomorrow or earlier if mails start again.

I think there should also be some 'crowdfunding' possibility...

Is a facility set up where users that want to show their appreciation can deposit a financial 'thank you'?

Thanks, keep us posted pls

there must be more users with this problem...

Do you have a license like I do? possibly only paying customers get the email? Dunno...