Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - OPNSense_toq

Pages1
#1
General Discussion / How to completely remove os-ddclient?
April 03, 2025, 07:15:54 PM
My installation of os-ddclient is still trying to contact https://domains.google.com/checkip which of course has been deprecated and no longer functions.  It does not seem to matter what method i choose for checking IP it still calls google. Even if I delete and reinstall the plugin it still calls that domain. I have tried deleting manually but there is still a residual file somewhere. I have found ddclient files in these directories. Are there any others?

/var/tmp
/usr/local/etc
/var/run
/usr/local/opnsense/scripts

I am on 25.1.4

Thanks.
#2
General Discussion / Re: Configuring ddclient on OPNSense for dynamic DNS
March 20, 2025, 10:37:17 PM
That fact that it is working for you with Porkbun does help.  I double checked all my settings and everything seems correct but still getting the same error. I will email porkbun again.
#3
General Discussion / Configuring ddclient on OPNSense for dynamic DNS
March 20, 2025, 04:57:52 PM
Using os-ddclient 1.2.7 on OPNSense 25.1.3 to dynamically update my IP on my domain at Porkbun getting error

FAILED: {"status":"ERROR","message":"Invalid domain."})

Using pk1 and sk1 from the API as username password. Hostname is set correctly.

I emailed Porkbun and they blamed ddclient saying it hasn't been updated to the new API, which from what I can tell it has been.

Any suggestions?

Yes, I tried os-caddy 1.8.3 but I get "unable to lookup current IPs from DNS records" in the logs.
#4
General Discussion / Re: Caddy won't route external requests - get Default deny / state violation
April 12, 2024, 06:35:40 PM

I knew it was something stupid simple that I was missing.  Thank you for your comment.   I had port forwards in place for 80 and 443.  (Firewall -> NAT -> Port Forward) Completely forgotten about them. Removed those, everything works as expected.

Thank you everyone for your help.
#5
General Discussion / Re: Caddy won't route external requests - get Default deny / state violation
April 11, 2024, 09:33:08 PM
An any/any floating rule does appear to allow caddy to forward requests but they go to the wrong port. does that offer any insight?  I can look into it more later.
#6
General Discussion / Re: Caddy won't route external requests - get Default deny / state violation
April 11, 2024, 09:12:04 PM
Wow, there is a lot in FIREWALL: DIAGNOSTICS: STATISTICS: rules.

is there an easy way to output that? from command line maybe?
#7
General Discussion / Re: Caddy won't route external requests - get Default deny / state violation
April 11, 2024, 07:56:38 PM
screenshot is attached. Is there another way to list the rules?
#8
General Discussion / Re: Caddy won't route external requests - get Default deny / state violation
April 11, 2024, 07:26:05 PM
Yes, OPNSense is on 8443.
#9
General Discussion / Caddy won't route external requests - get Default deny / state violation
April 11, 2024, 07:15:38 PM
OPNSense 24.1.5_2-amd64
Caddy os-caddy (installed)   1.5.3

I have installed caddy and gotten internal requests to https://server1.mydomain.tld to route properly. Works great. However, if I try to hit the same site from external I get Default deny / state violation error in the logs. So I know the request is actually making it to my OPNsense but for some reason they aren't making it to Caddy.

I do have Firewall rules on both the LAN and WAN interfaces that point 80 and 443 to 'This Firewall' as specified in the documentation. But it doesn't look like the external requests are actually making it that far.

I tried troubleshooting this with the folks at Caddy but they sent me over here. Here is the support thread.
https://caddy.community/t/caddy-opnsense-internal-working-external-not/23426/9

Appreciate any help or ideas of what to look at. Thanks.
Pages1