Messages

One of the issues that I found and now appears to be ok at leats for this is that on the device I have bridge connection made between 3 LAN ports. After the update I was seetings lots of output errors. I disabled the Spanning Tree Protocol and now no more output errors appear. At least for now.

Issues mainly arise when using Zenamor. Native netmap is no longer working and only emulated.

I have just made the update. The interface itself is barely usable. CPU tops out from time to time without having any traffic and LAN2 and LAN3 interface are flip flopping every 10 seconds or so like loosing connection :( Some help would kindly be appreciated.

This issue shows up when the etpro-telemetry & os-intrusion-detection-content-et-open is installed and the etpro-sensor is switched to et_open because of connectivity issues.
So you have two different et-open sets.

See https://forum.opnsense.org/index.php?topic=45112.0

Did you manage to solve the issue with the duplicate Open rulesets?

I remove the ETPRO Telemetry and now this. I have double ET Open rules. Does someone know how to fix this?

I did that but it still seems to be something left. But i manage to fix the problem that i had.

Can you please specify how you solved the issue? I am facing the same thing.

Tried like so but nothing is resolving

Hi,

Some help here would be highly appreciated  ;D

I currently have AdguardHome setup using port 53. Unbound is not used.
OPNsense GUI running on port 8443 and Adguard GUI on 3000. I am trying to use the DoH and DoT but cannot manage to set it up. I also have the certificate in place and it is detecting it and seen as verified.
In the Adgurd GUI it works only by using plain DNS.

Thanks in advance.

Does anyone know why all of a sudden I have Suricata with more than 100% cpu load and also syslog-ng? Have I made any modifications that probably messed this up?


last pid: 80260;  load averages:  3.31,  3.04,  2.63                                                                                                                                                              up 1+05:12:37  20:54:05
39 processes:  1 running, 38 sleeping
CPU: 22.0% user,  0.0% nice, 11.6% system,  0.0% interrupt, 66.3% idle
Mem: 243M Active, 2581M Inact, 3824M Wired, 40K Buf, 9073M Free
ARC: 2123M Total, 232M MFU, 1644M MRU, 70M Anon, 42M Header, 133M Other
     1742M Compressed, 14G Uncompressed, 7.99:1 Ratio
Swap: 8192M Total, 8192M Free

  PID USERNAME    THR PRI NICE   SIZE    RES STATE    C   TIME    WCPU COMMAND
55950 root         27  20    0  2733M  2065M nanslp   4  60:28 146.37% suricata
13964 root          4  23    0    62M    15M kqread   7  33:05 102.74% syslog-ng
6085 root          1  20    0    64M    36M accept   1   0:00   0.95% php-cgi
  222 root          1  52    0   116M    54M accept   6   1:14   0.87% python3.11
85826 root          1  20    0    64M    35M accept   5   0:02   0.43% php-cgi

[SOLVED]

How can I make the traffic from the wireguard pass through the AdGuard server? I currently can acces through the wireguard the local network but can access other websites only by manually setting the DNS server to 8.8.8.8 for example and would like to pass all the DNS request through the AdGuard server.

Hello people,

Can someone please help me with the following issues I am facing? I have managed to make the wireguard accessible via phone and can connect to the local IP address of the OPNsense but as soon as I activate the tunnel, on all other devices the DNS stops working. I can ping all other devices except no more internet. Not on localhosts and not on mobile. In the allowed IP's I've set 0.0.0.0/0
I am using also AdGuard if it's relevant or not.

[EDIT]
My checking " disable routes" it starts working but it does not work with my own DNS that I have set on the OPNSense. I must enter a DNS like 8.8.8.8 manually on the client side.

Can I use the DNS from the OPNsense cause it has adguard on it?

Hi,

I am new to this place and would like to replace the UCG-Ultra from Ubiquiti with the DEC850. I would like to run the PPPoE connection directly on it with an ISP plan of 1Gbps download / upload.
Would I achieve these speeds on this devices with IPS / IDS enabled? No VLAN or other complicated things.
Has someone tested PPPoE on this device? I know there are discussions about CPU performance and so on an the overhead of PPoE

Thanks in advance.