Messages

Thanks, I had not seen that post. I should have searched by processor instead of SOPHOS. I'm still thinking about this, most of the ones I'm looking at go up to 75 watts, which isn't much savings over a T740. Not going to jump into this purchase until I make up my mind.

Looks like the service I just paid for may not have been required to conform.

I have one tool that will probably never comply, and a website that needs a MAJOR rework. I'll have to look into the latest version of Wordpress and make someone in my department learn it and build it. That said, if we get rid of the tool, we can dump the website too. More work off my plate would be nice.

I just got throw a curve ball by purchasing, and luckily the company had gone through the compliance testing. This is a new initiative and law and it's going to be sweeping the USA next year. Kind of a heads up and as a question... Does OPNsense meet any accessibility standards? Here is a brief description of what is coming if you haven't already gone through a test:

https://www.suny.edu/meansbusiness/procurementpp/digital-resources/

https://www.itic.org/policy/accessibility/vpat

It looks like there is already an EU standard set, and that might be enough to get through the US process, but you never know.

I bring this up because I'm going to need to renew my Business license next year, and this will be in full force by then.

I'm pretty sure that I'm going to update my lab firewall, my old HP T620 is having some issues when it boots, requires pressing power button to turn it back off, and press again to boot, then fine. Yes I have a fresh CMOS battery installed, I think it is just old and lived a long life with me and longer before I bought it.

I'm looking at things like n100/n150 powered devices, but more likely an HP T740. The other strong choice is a used Sophos device, but having trouble finding one with a CPU I like, needs to be at least an Atom 3000 series and would really like newer for the money they are charging.

Some of the REV 3 Sophos devices are going for over $200 and I can buy a new old stock T740 for around the same. I have network cards, ram, and SSD for expanding the T740 to do what I need, all the way up to quad x710 if I want to try and do some 10g lan to lan routing, but probably a quad i350 card.

Any tips on what I should be looking for in a Sophos device before I just get another T740 for the job? I want at least 4 ports, a fifth Realtek port is fine because I use it like a management port when things go wrong. I can also add an i226 port to the T740 giving me a total of 6 ports which is far more than I need in my lab. But power draw at idle for the T740 is higher than other choices, and it spends a lot of time at almost idle.

Due to availability and tariffs, I'm looking at a similar Protectli device, so watching this.

Forti (shivers)...

More cores, faster clock, plenty of RAM seems to be the way to go.

Not if you use ZA, which is singlecore bound.

Regards,
S.

Unfortunately true.

Do they get paid? I'm just guessing there is some amount of money behind this, and them wanting to keep getting that money.

I'm leaning towards a Protectli, it's too hard to get the OPNsense hardware in the USA, and the tariffs make it unaffordable right now. I was looking at a DEC2770, the only thing I'm missing with some of the Protectli boxes will be the 10g connections, and I don't really need that right now. It might have been nice to route between LANs at 10g, but I only have gigabit to the WAN.

Thanks, I may update (again) and see if the patch helps me. I see there is an update to the current OPN version anyway.

Kind of looks like I need to roll back, my net bird no longer connects and I'm kind of expecting the update to be the issue. I'll do that tomorrow and update if it's working after the roll back. Possible it is other factors that I'll need to fix.

It certainly reads like an AI wrote it. Or at least not an English first or even second language user that has a translator making this post.

https://en.wikipedia.org/wiki/Executive_Order_14203

https://www.justiceinfo.net/en/156847-living-with-us-sanctions-means-living-in-constant-uncertainty.html

I can write here, I'm not going to travel to the US again...

I live in the USA, I can say what I want, and you are not wrong! Our electronics prices fluctuate so wildly these days that's it's difficult to get through an equipment purchase.

And that said, this is probably more politics than should be allowed, here for OPNsense, not more politics.

To add to this, it is syncing. I can see the counters change in the status screen as I refresh the page. "When" changes and eventually resets to a low number after about 64 seconds (which is where "POLL" is set). But it still says not considered. The log stops says it is unsync after a few minutes too, but never reports successful sync either.

I'm messing around in my lab firewall, just (finally) upgraded to current, and found something that may or may not be a problem.

In Services -> Network Time -> Status it is showing my GPS NTP server as "Not Considered"

I deleted the pool servers, all of which had a DNS issue and could not be found (a my end problem) and my local GPS NTP server was set to prefer, but no log entries that it has ever been connected. After a reboot it is reporting "Clock Unsynchronized"

I have verified that my local server is up, and that other clients are connecting. Not sure why this is happening.

I do see the firewall in the access logs of the NTP server, not sure why the firewall says unsync.