"
The problem is most likely with emergingthreats. I reported it to their forum : https://community.emergingthreats.net/t/opnsense-suricata-rule-update-for-et-telemetry/1952/22
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#1
25.7, 25.10 Series / Re: Telemetry widget fails to load on dashboard
September 18, 2025, 11:39:59 AM #2
25.1, 25.4 Series / Re: Little cosmetic issue after upgrade to 25.1.1
February 17, 2025, 10:44:43 PM
As pointed by gpb, the incorrect logging is not limited to IPv6. Since 25.1.1, having IPv4 only and NAT redirection for ntp and dns, my 2 associated 'quick pass no log' firewall rules for ntp and dns generate wrong cosmetic block logs. This misbehavior was not present in 25.1.
My other pass rules don't generate any block logs
My other pass rules don't generate any block logs
#3
24.7, 24.10 Legacy Series / Re: C2-Domains in Host Alias cause false positives 💀
January 23, 2025, 03:59:30 PM
That's expected behavior from the firewall component. It cannot filter based on hostnames but only on IPs and ports.
You should use a DNS blocklist with unbound for your purpose. That way you won't get these expected name resolutions.
You should use a DNS blocklist with unbound for your purpose. That way you won't get these expected name resolutions.
#4
24.1, 24.4 Legacy Series / Re: 24.1.2 Wireguard does not work after updating
February 20, 2024, 07:53:47 PM
Faced wireguard errors and not connecting.
Looks like the new code cannot handle dns resolutions and requires ip address for Endpoint address.
Looks like the new code cannot handle dns resolutions and requires ip address for Endpoint address.
#5
23.7 Legacy Series / Re: Static Routing with Routed vpn
November 16, 2023, 12:06:59 AM
Your setup should work with siteB having a /16 or /24 (NAT has nothing to do here and there is no madness) if you have the redundant static routes set for each tunnel at both sites. At least on cisco and juniper, it would work.
Don't know if there is something fishy with bsd handling for 2 static routes with the same destination prefix.
If the static routes don't work, you might try the frr plugin and setting a routing protocol like ospf with redistribute connected. Ospf would only need to be enabled on the 2 tunnels.
Don't know if there is something fishy with bsd handling for 2 static routes with the same destination prefix.
If the static routes don't work, you might try the frr plugin and setting a routing protocol like ospf with redistribute connected. Ospf would only need to be enabled on the 2 tunnels.
#6
23.7 Legacy Series / Re: Continuous growing arc size
November 15, 2023, 11:56:38 PM
Suggest you read the pfsense page about arc tuning so you can limit its usage https://docs.netgate.com/pfsense/en/latest/hardware/tune-zfs.html
#7
23.7 Legacy Series / Re: [SOLVED] 23.7.8 - No Label in Live View
November 10, 2023, 11:04:32 PM
Still having weird thing maybe related. The tab "ui/diagnostics/firewall/pf_top" shows Rule = null for all entries.
"ui/diagnostics/firewall/states" shows the rules properly.
Just did a reinstall of base to be sure and still the same. Is that expected or not ?
"ui/diagnostics/firewall/states" shows the rules properly.
Just did a reinstall of base to be sure and still the same. Is that expected or not ?
#8
23.7 Legacy Series / Re: [SOLVED] 23.7.8 - No Label in Live View
November 10, 2023, 07:18:56 PM
Had the same problem with empty widget after base reinstall. It started to populate entries in the widget the next day. Don't know if there is any log rotation involved but maybe leave it alone for now and check back tomorrow if it finally works.
#9
23.7 Legacy Series / Re: 23.7.8 - Squid 6.4 unusable due to repeated crashes
November 10, 2023, 05:41:55 PM
6.5 seems fine. No crash so far.
Please improve the QA. Are updates not pushed first to development branch and test gear before deployment to production branch ? This issue and the others would have been quickly spotted. Guess it's better to wait a week before deploying updates
Please improve the QA. Are updates not pushed first to development branch and test gear before deployment to production branch ? This issue and the others would have been quickly spotted. Guess it's better to wait a week before deploying updates
#10
23.7 Legacy Series / Re: 23.7.8 - Squid 6.4 unusable due to repeated crashes
November 10, 2023, 11:15:24 AM
I guess almost constant crashing is a good way to prevent security risks.
More seriously, I think it would have been better to keep the previous version or go for 6.3 and highlight the risks rather than providing an updated version that doesn't work and will trigger people to ask for help.
More seriously, I think it would have been better to keep the previous version or go for 6.3 and highlight the risks rather than providing an updated version that doesn't work and will trigger people to ask for help.
#11
23.7 Legacy Series / 23.7.8 - Squid 6.4 unusable due to repeated crashes
November 10, 2023, 10:38:02 AM
Squid6.4 keeps crashing and dumping core. This wasn't happening with the previous version.
Always the same fatal error in cache log :
kid1| FATAL: assertion failed: stmem.cc:98: "lowestOffset () <= target_offset"
This isn't an isolated occurrence - see https://www.mail-archive.com/squid-users@lists.squid-cache.org/msg25028.html. Crashes were apparently not happening in 6.3
Always the same fatal error in cache log :
kid1| FATAL: assertion failed: stmem.cc:98: "lowestOffset () <= target_offset"
This isn't an isolated occurrence - see https://www.mail-archive.com/squid-users@lists.squid-cache.org/msg25028.html. Crashes were apparently not happening in 6.3
#12
23.7 Legacy Series / Re: Firewall Widget doesn´t work anymore
November 09, 2023, 10:18:33 PM
Widget still remains empty for me after reinstalling base and having Live view showing labels again
Pages1
