Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - th3voic3

Pages1
#1
General Discussion / Bridge or other way to have a VLAN on two Ports (DEC2752)
January 28, 2025, 09:23:20 AM
Hi,

I recently got the DEC2752 which I'm very happy with so far.

My switch is a Unifi 16 PoE Lite which has no SFP+ Ports and only Gigabit Ports.
Before getting the DEC2752 my plan was to use the SFP+ Ports to connect my Server and my main desktop PC with a 10Gbit connection by getting two PCIe cards with SFP+ ports. So far so good. Concerning the server that is not a problem, since it's the only device on my management VLAN, so I can just switch the management VLAN from my trunk port going to the switch to the AX0 Port (SFP+ on the DEC).

Now my main desktop is in the trusted VLAN (and I want to keep it there). The trusted VLAN though still needs to be in the trunk Port but I would also like it to be on the AX1 (second SFP+ port).

As far as I can see I need to create a bridge for this. I'm no stranger to bridges in general, but concerning the implementation in opnsense I have some questions:
Do I need to create the bridge containing the trusted VLAN and the AX1 Interface? (since I need that VLAN specifically) or do I need to take the physical ports interface?
And I'm guessing I would then have to redo any firewall rules for that VLAN?
#2
General Discussion / Re: Please Make a Donation to OPNsense
February 06, 2024, 11:38:13 PM
Donated 50€ recently and have now setup a 5€/Month donation.
Thank you for your work!
#3
24.1, 24.4 Legacy Series / Re: fq_codel shaping halves download speed
February 05, 2024, 06:09:01 AM
With speed shift disabled with the hint I can use PowerD again. The temperatures are in the 50-60 degrees Celsius range again as before the upgrade.

I can check the core boot settings for anything related but I'm wondering if I should just leave it like it is now or if there is any advantage to making it work with speed shift.

Update: I wrote a ticket to Protectli. I'll post an update once I have anything to report.
#4
24.1, 24.4 Legacy Series / Re: fq_codel shaping halves download speed
February 04, 2024, 09:27:27 AM
Okay it's definitely related to speedshift.
I added hint.hwpstate_intel.0.disabled="1" to /boot/loader.conf.local and the issue is gone after a reboot.
#5
24.1, 24.4 Legacy Series / fq_codel shaping halves download speed
February 02, 2024, 01:44:59 PM
Hi,

I have a 1000/50 connection.

I setup shaping according to this https://maltechx.de/en/2021/03/opnsense-setup-traffic-shaping-and-reduce-bufferbloat/ which worked just fine in the versions below 24.1
In 24.1 my speed is halved if I enable the download rule.

Maybe related:
I also found out that in 24.1 the PowerD settings no longer had an effect and I had to set the tunables:
dev.hwpstate_intel.0.epp=80
dev.hwpstate_intel.1.epp=80
dev.hwpstate_intel.2.epp=80
dev.hwpstate_intel.3.epp=80

to keep my CPU from going to 70 Celsius.

I'm using a Protectli VP2420.

#6
General Discussion / Re: Web GUI on mobile browser
December 07, 2023, 08:50:56 PM
That is at least a valid workaround and I can confirm that that makes it usable.
#7
General Discussion / Web GUI on mobile browser
December 07, 2023, 08:03:32 AM
Hi,

I recently switched to OPNsense from pfSense and while it took some time to set everything up I have completely reproduced my setup.
All in all I'm pretty happy but there is one thing that's bugging me a bit.
On pfSense I did a lot of the configuration from my Android phone.
On opnsense a lot of the pages are completely unusable or at least illegible on a small screen.
Here is a screenshot from the Haproxy config, another example would be the DHCP leases page.

Is this normal or is there something wrong on my end?
Pages1