Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - picasso7it

Pages1

General Discussion / upgrade from 21.7.8 failed

Today at 06:33:42 PM

Hello everyone

I'm once again having an update problem on one of my many Opnsense firewalls. The firewall is in version 21.7.8, which normally corresponds to a version of Freebsd 12. But the problem is that my system is already running Freebsd 13.

root@pf:~ # opnsense-version
OPNsense 21.7.8 (amd64/OpenSSL)
root@pf:~ # uname -r
13.0-STABLE

If I launch the update via the graphical interface, it simply tells me that everything is up to date and doesn't offer me the option to upgrade to version 22.1.

***GOT REQUEST TO CHECK FOR UPDATES***
Currently running OPNsense 21.7.8 (amd64/OpenSSL) at Thu Feb 12 18:06:00 CET 2026
Fetching changelog information, please wait...
Updating OPNsense repository catalogue...
Fetching meta.conf: . done
Fetching packagesite.txz: .......... done
Processing entries: .......... done
OPNsense repository update completed. 777 packages processed.
All repositories are up to date.
Checking integrity... done (0 conflicting)
Your packages are up to date.
Checking for upgrades (0 candidates): . done
Processing candidates (0 candidates): . done
Checking integrity... done (0 conflicting)
Your packages are up to date.

So I tried to launch the following utility but I get an error

root@pf:~ # fetch https://raw.githubusercontent.com/opnsense/update/refs/heads/master/src/bootstrap/opnsense-bootstrap.sh.in
opnsense-bootstrap.sh.in 4906 B 34 MBps 00s

chmod 775 opnsense-bootstrap.sh.in
mv opnsense-bootstrap.sh.in opnsense-bootstrap.sh
./opnsense-bootstrap.sh -r 22.1

+ pkg bootstrap
Bootstrapping pkg from pkg+https://pkg.opnsense.org/FreeBSD:12:amd64/unsupported/base, please wait...
pkg: Error fetching https://pkg.opnsense.org/FreeBSD:12:amd64/unsupported/base/Latest/pkg.txz: Not Found
A pre-built version of pkg could not be found for your system.
Consider changing PACKAGESITE or installing it from ports: 'ports-mgmt/pkg'.

I tried modifying the following file /usr/local/etc/pkg/repos/OPNsense.conf by replacing the following line :
url: "pkg+https://pkg.opnsense.org/${ABI}/unsupported/base",

with
url: "pkg+https://pkg.opnsense.org/FreeBSD:13:amd64/22.1/latest",

and if I restart the bootstrap pkg, I get the following message:

root@pf:~ # pkg bootstrap
The package management tool is not yet installed on your system.
Do you want to fetch and install it now? [y/N]: y
Bootstrapping pkg from pkg+https://pkg.opnsense.org/FreeBSD:13:amd64/22.1/latest, please wait...
Verifying signature with trusted certificate pkg.opnsense.org.20210903... done
pkg-static: Warning: Major OS version upgrade detected. Running "pkg bootstrap -f" recommended
Installing pkg-1.17.5_1...
pkg-static: wrong architecture: FreeBSD:13:amd64 instead of FreeBSD:12:amd64

root@pf:~ # pkg bootstrap -f
The package management tool is not yet installed on your system.
Do you want to fetch and install it now? [y/N]: y
Bootstrapping pkg from pkg+https://pkg.opnsense.org/FreeBSD:13:amd64/22.1/latest, please wait...
Verifying signature with trusted certificate pkg.opnsense.org.20210903... done
pkg-static: Warning: Major OS version upgrade detected. Running "pkg bootstrap -f" recommended
Installing pkg-1.17.5_1...
pkg-static: wrong architecture: FreeBSD:13:amd64 instead of FreeBSD:12:amd64
Extracting pkg-1.17.5_1: 100%

root@pf:~ # pkg install opnsense
pkg: Warning: Major OS version upgrade detected. Running "pkg bootstrap -f" recommended
Updating OPNsense repository catalogue...
Fetching meta.conf: 100% 163 B 0.2kB/s 00:01
Fetching packagesite.pkg: 100% 221 KiB 226.2kB/s 00:01
Processing entries: 0%
pkg: wrong architecture: FreeBSD:13:amd64 instead of FreeBSD:12:amd64
pkg: repository OPNsense contains packages with wrong ABI: FreeBSD:13:amd64
Processing entries: 100%
Unable to update repository OPNsense
Error updating repositories!

Thanks for your good ideas.

Best Regards,

Thierry

General Discussion / Re: upgrade from 24.1.10 failed

July 01, 2025, 03:44:22 PM

Hello Franco
I just ran the opnsense-bootstrap script to upgrade to version 24.7, and everything went well. I'm now on version 24.7.12-4 and therefore able to upgrade to version 25.
Thank you very much for your help.

General Discussion / upgrade from 24.1.10 failed

June 26, 2025, 04:04:21 PM

Hello everyone

I'm once again having an update problem on one of my many Opnsense firewalls. This time, the firewall is in version 24.1.10_8, which normally corresponds to a version of Freebsd 13. But the problem is that my system is already running Freebsd 14.

root@parefeu21:~ # opnsense-version
OPNsense 24.1.10_8
root@parefeu21:~ # uname -r
14.1-RELEASE-p3

When updating from the graphical interface, it fails because at one point it tries to look for the next file, which doesn't exist due to this difference between the Opnsense and Freebsd versions.

Fetching base-24.1.8-amd64.txz: ..[fetch2: https://pkg.opnsense.org/FreeBSD:13:amd64/24.7/sets/base-24.1.8-amd64.txz.sig: Not Found] failed, no signature found

The correct path should be this: https://pkg.opnsense.org/FreeBSD:14:amd64/24.7/sets/base-24.7.12-amd64.txz.sig

What should I do in this case?
Is it possible to downgrade from Freebsd 14 to Freebsd 13 to perform this update?
Or should I use the opnsense-bootstrap script?

Thanks for your good ideas.

General Discussion / Re: upgrade from 21.7.8 to 22.1

June 26, 2025, 12:15:55 PM

I forced it by setting the correct path to the repository in setting mirrors

But when I return to the status, the path is invalid.
it displays
Mirror https://pkg.opnsense.org/FreeBSD:13:amd64/22.1//FreeBSD:12:amd64/21.7

I can't test with another mirror because for the update, I use a Squid proxy that only whitelists certain sites, including pkg.opnsense.org.

I need to be able to modify the path to the mirror correctly. Is this possible from the command line?

General Discussion / upgrade from 21.7.8 to 22.1

June 25, 2025, 03:47:39 PM

Hello everyone,
I'm trying to update an older version of Opnsense, currently 21.7.8, but I'm having trouble.
I noticed that my FreeBSD system is on version 13, when it should be on version 12 with Opnsense 21.

root@pf:~ # opnsense-version
OPNsense 21.7.8 (amd64/OpenSSL)

root@pf:~ # uname -r
13.0-STABLE

When I run an update with the opnsense-update tool, I get the following message:
root@pf:~ # opnsense-update -p -A 22.1
Updating OPNsense repository catalogue...
pkg-static: https://pkg.opnsense.org/FreeBSD:12:amd64/22.1/latest/meta.txz: Not Found
repository OPNsense has no meta file, using default settings
pkg-static: https://pkg.opnsense.org/FreeBSD:12:amd64/22.1/latest/packagesite.txz: Not Found
Unable to update repository OPNsense
Error updating repositories!

How can I successfully update to version 22.1 and then to future versions?

Thank you.

General Discussion / Re: Safe Search doesn't work with Qwant.com

June 17, 2025, 11:07:10 AM

Hello everyone,
A quick clarification regarding my first message. Safesearch works very well with other search engines like Google; the results of a search for adult content are not displayed. This is important because the internet access concerns schools. However, for Qwant, the results are displayed including images, which is problematic. Of course, the sites are blocked, but I also want to hide the search results. In the source code core/src/opnsense/service/templates/OPNsense/Unbound/core/safesearch.conf
the content is as follows:
# Qwant
local-zone: "qwant.com" redirect
local-data: "qwant.com CNAME safeapi.qwant.com"

How can I redirect the Qwant site to benefit from safesearch protection?
Perhaps https://www.qwantjunior.com/?

Thanks for your suggestions.

General Discussion / Safe Search doesn't work with Qwant.com

June 16, 2025, 10:57:32 AM

Hello, I've enabled Safe Search in Opnsense, and I'm having a problem with the Qwant search engine. In the config file, Qwant is redirected to safeapi.qwant.com, but it no longer exists. How do I enable Safe Search with the Qwant.com search engine?
Thank you.

General Discussion / Re: upgrade from version 21.7 to 22.1 not possible with squid proxy

November 24, 2023, 10:13:03 PM

Hi,
thank you for the answer

It bothers me to have to restart a complete installation because I have a dozen virtual machines under vmware with opnsense and I can't see myself reinstalling from the beginning

I get the following message when I update a firewall to version 21.7 and it tells me that everything is up to date
I have a timeout with the fetch command

***GOT REQUEST TO CHECK FOR UPDATES***
Currently running OPNsense 21.7.8 (amd64/OpenSSL) at Fri Nov 24 17:12:37 CET 2023
Fetching changelog information, please wait... fetch: transfer timed out
Updating OPNsense repository catalogue...
Fetching meta.conf: . done
Fetching packagesite.txz: .......... done
Processing entries: .......... done
OPNsense repository update completed. 777 packages processed.
All repositories are up to date.
Checking integrity... done (0 conflicting)
Your packages are up to date.
Checking for upgrades (0 candidates): . done
Processing candidates (0 candidates): . done
Checking integrity... done (0 conflicting)
Your packages are up to date.
***DONE***

An idea ?

Best regards

General Discussion / upgrade from version 21.7 to 22.1 not possible with squid proxy

November 17, 2023, 10:36:54 PM

Good morning,

I am having difficulty updating opnsense through a squid proxy
I am in version 21.7 and I managed to update my server to version 21.7.8 via my squid proxy. The proxy connection string is entered in the /usr/local/etc/pkg.conf file.
pkg_env: {
http_proxy: "http://your-poxy-ip:port/"
}

I can only use the pkg.opnsense,org repository, it is the only one that is authorized on the proxy
However, I cannot upgrade to version 22.1, it tells me that I am up to date whether I launch an update via the graphical interface or via the pkg command on the command line

Has anyone ever encountered this problem?

Best Regards

Thierry

Pages1