Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - hoondi

Pages: [1] 2

General Discussion / Re: Speed limited when using 5G Modem as WAN

« on: September 20, 2024, 11:21:34 am »

Have you considered StarLink?

Or is the cost v speed not there for you?
For me, StarLink is superior for both speed and latency, except that I have so many trees to contend with that the dish has to be on a pole of at least 40mt high before I cease experiencing any "obstruction".

The trees here are so dense and come so close to our house that I don't even need to own a lawn mover. Gives you and idea.

Hope the MTU is all it is for you.

General Discussion / Re: is this going to work? (Bridges with UniFi hardware)

« on: September 20, 2024, 11:09:25 am »

mmm,
So my options are:
1. Run a physical parallel ethernet cable to both the shed and the rest of the house purely for management.
or
2. Change the VLAN management to something other than "VLAN ID 1" on the router and all the Unifi switches.

Both are not fun.
The latter more so as these cheap managed flex mini switches limit their capabilities when not doing it the "UniFi" way. (I can't tag individual ports anymore, it's either all or none if I move management off vlanID 1 on these things) and from what I've read, it's agony if you need to re-adopt anything when not using VlanID 1.

mmm, option $3$ it is then.

Thanks again to everyone helping me with this. I really have learnt heaps and here's what I'm taking away from my homelab endeavours:
1. Keep away from attempting to use OPNSense as a switch with vlans.

2. OPNSense with bridges using physical ports only is simple and works fine, even with 10Gb interfaces. Kind've defeats the purpose of actually using OPNSense (for me), if you're not going to use vlans though.

3. Vendor switch research when used with OPNSense needs more attention than I thought. I like the idea of the UniFi controller but am not keen on the VLANID 1 emphasis so much now.

Thanks again all.

General Discussion / Re: Speed limited when using 5G Modem as WAN

« on: September 20, 2024, 10:38:50 am »

Hi FraLem,
I'm also on Cellular and I only wish I had your issue of attaining those speeds in the first place!
I'm surrounded by 4acres of forest right up to the house and it's illegal (not that I'd want to anyway) to cut down the trees.

Strength	17 / 31, dBm : -79
Selected Network	LTENR5G
Sub Network Type	FDD LTE / NR5G-NSA
Band:	5 / 1,450 + "LTE BAND 3",1275
RSRP:	-114 dBm
RSRQ:	-18 dB
SINR:	11 dB
5G RSRP:	-96 dBm
5G RSRQ:	-13 dB
5G SINR:	5 dB

As you can see, lousy at best.
My MTU is 1472 which is the default set by my carrier. That's all that comes to my mind to look at.

Otherwise, save your current config, erase your boot drive and do a quick clean and simple setup to test and see if speeds improve.

Cheers.

General Discussion / Re: is this going to work? (Bridges with UniFi hardware)

« on: September 19, 2024, 05:27:52 pm »

okay, after 1am here, so brain is being super challenged,

Q1.
Bridges 1 through to 5 are okay, because none of the VLANs' parents are any of the included physical NICs, and so that's why they all work fine, correct?

Q2.
Bridge 6 though is in error. i.e. both the VLANs are included with their physical parent NICs in this bridge and this is why I seeing the issue, correct?

If so, I'm kind've scratching my head on what I need to do to fix this still.

what I do know is that physical ports ix0 and igb0 are trunked ports and both physically connect to a trunked port of the switches, being the flex 10GB in the shed and the flex mini at the other end of the house.

So that means I have to take the MGMT vlans out of that bridge? if so, how do I configure these VLANs? do I create another trunk?

I'm thinking I'm way off in the weeds now and so am pausing.

Thank you to everyone for the help on this too, I'm finding this topic extremely interesting.

General Discussion / Re: is this going to work? (Bridges with UniFi hardware)

« on: September 19, 2024, 04:50:32 pm »

oh...

So the bridges I have atm are:

Code: [Select]

bridge0 phy_igb1_Denon, phy_igb2_LGTV, phy_igb3_ATV, vlan_IoT_igb0, vlan_IoT_ix0, vlan_IoT_ix1  
bridge2 phy_ix1_LRM, vlan_Raywood_igb0, vlan_Raywood_ix0
bridge3 vlan_IPCAM_igb0, vlan_IPCAM_ix0
bridge4 vlan_Neighbour_ix0
bridge5 vlan_Guest_ix1
bridge6 vlan_MGMT_ix0, vlan_MGTM_igb0, phy_ix0, phy_igb0

Yes, I have created vlans for each physical interface individually, and yes, I have then created bridges that only include those vlans where the VLAN ID number matches.

However, you're saying that I cannot add multiple physical NICs to a bridge?

Looking at bridge0 for example then, you're saying that I can only have one physical NIC in that bridge? and not 3 like I do atm? (eg: phy_igb1_Denon, phy_igb2_LGTV and phy_igb3_ATV)

oh dear.

Because I have two physical ethernet cables heading in opposite directions, (shed/homelab & the rest of the house) I'm not able bridge these physical ports in conjunction with a vlan?

mmm.

General Discussion / Re: 8 Cores 4 Threads?

« on: September 19, 2024, 02:56:17 pm »

Hi Visseroth,
I've been seeking advice from our Networks team for my homelab ventures.

They advised me that when using a PC as a router, it's not a bad idea to disable a few things to keep the PC as stable as possible.
eg: threads, all S sleep/standby states and any applicable CPU boosting of clock speeds for example.
RAM timing can also be set Jedec instead of XMP too.

It's for these reasons I went with an I5 that has 4 cores and 4 threads only, and I keep it at base clock speeds.

You want your router to be as stable/consistent as possible at all times if you can.

General Discussion / Re: is this going to work? (Bridges with UniFi hardware)

« on: September 19, 2024, 02:35:31 pm »

Hi bimbar,

Thank you, the flex mini switch is a managed device and does allow vlan assignment to ports.

I'm not convinced my issue is purely with the flex mini switches at this stage, especially considering the setup does work with changes to OPNSense only.

General Discussion / is this going to work? (Bridges with UniFi hardware)

« on: September 19, 2024, 01:03:25 pm »

Hello,

Am new to OPNSense (and also UniFi hardware) and have been learning a lot when it comes to bridges, vlan networks, physical networks and vlans bridged with physical networks.

Anyway, it has been fun to tinker, reset, tinker again, reset again and have now come to the point of asking for advice before I continue.
I've attached a PNG of my ideal setup and I'm getting stuck on the management side of things.

What I'm seeing is that if I include the physical ports in the MGMT bridge, the U6Pro WAPs can no longer issue respective IP addresses for any of the vlans/SSIDs. Clients connect to the SSID, give up and self assign. Attempting to statically assign an IP address does not work either and so there is no route/plumbing for any of the vlans back to the OPNSense router.

What I don't understand though, is that I'm able to ping both WAPS (192.168.1.249 & 192.168.1.251) from the Mac Mini, they just don't seem to parse the VLANs onto any WiFi clients. Any endpoint directly patched into the router (TV, MacMini, AppleTV etc etc) all work fine, and so this tells me that the vlans are not able to extend past/through the flex mini switches for some reason?

If I remove the physical ports from the MGMT vlan, everything works!
WiFi devices receive the correct IP on the respective SSID and able to route out to internet fine.

But

All UniFi hardware is no longer able to talk to the controller (192.168.1.1) and the UniFi controller shows them all as offline. They're clearly working though.

And so here I am with the situation of either a), having a working network with no way to manage the UniFi hardware.
Or
b), a broken network where the Waps don't see the vlans and thus don't assign IPs, but I can see all the UniFi hardware in the Controller.

I hope the above makes sense.

Because the Flex Mini switches are somewhat less configurable, I was wanting to use the Primary VLAN ID 1 to manage all the UniFi hardware. The reason for this is that using VLAN ID 1 enables me to choose ports on the Flex Mini switches to be individually tagged or not.
If I choose not to use the primary VLAN ID 1 and use a different VLAN to manage all the UniFi hardware, I loose this ability and can only allow all Vlans or only Allow none per port which will deny me tagging ports as IPCAM vlan and IoT vlan only for endpoint devices.

The reason for using bridges with OPNSense in the first place was to save some money on having to purchase another 10Gb switch. After tinkering with this setup, I'm not honestly sure if this will even make a difference with respect to the issue I'm seeing, because note that ix0 is running out to the shed (to a UniFi switch), and also igb0 is running to the rest of the house (i.e. another UniFi switch).
The OPNSense Router is in the living room behaving as another 10Gb switch.
The router is a PC with:
Intel i5 7500 @3.40GHz
16GB RAM
ZFS Mirror SSD Boot
1 x 1GB onboard (em0) onboard
4 x 1GB Intel PCIe (igb)
2 x 10GB Intel PCIe (ix)
2 x 10GB SFP+ Chelsio PCIe (cxgb) ← yet to install

As for firewalls, every bridge is "wide open", in that I've created a rule that says pass on each bridge interface while setting this up:

Code: [Select]

Action: Pass
Interface: Bridge_xyz
Direction: In
TCP/IP: IPv4
Protocol: Any
Source: Any
Destination/Invert: unchecked
Destination: Any

No firewall rules exist nor ip addresses assigned to any vlan or physical interfaces. (i.e. all done on the bridges)
The LAN interface is not presently assigned to anything (it was on interface re0 and assigned)
No IPv6 configured.

Well, I think that is everything, everything that I can think of in terms of information for anyone to explain to me what I'm doing wrong with the MGMT bridge.
All the other bridges work wonderfully well with vlans and physical networks ports and so I'm just not sure why I'm seeing the issue I'm seeing.
I'm fairly sure it's got something to do with how UniFi uses that VLAN ID 1 as I understand it to be somewhat a unique approach compared to other smart switches.

Anyway, if anyone is able to assist, I'd be very grateful to learn more.

(updated: changed attachment to vector so is clearer to read)

General Discussion / Re: Reasons to get OPNSense with Unifi General Home Use

« on: August 12, 2024, 04:41:10 pm »

I just recently got OPNSense up and running on an PC.
I like to keep my networking on one box and services on another so I can bring down either independently when/if needed.
Router hardware:
i5-7500 CPU @ 3.40GHz
16GB RAM
9 network ports using 4 x PCIe adapters:
builtin is 1GB Intel Copper (WAN)
1 x PCIe with 2 x SFP+ Chelsio Fibre
2 x PCIe with 2 x 1Gb Intel Copper
1 x PCIe with 2 x 10GB Chelsio Copper

Using mimugmail's plugins for OPNSense, I have the UniFi controller and AdGuardHome running on the same IP as the router. (ports 8443 & 3000)
UniFi hardware:
USW-Flex-Mini-01
USW-Flex-Mini-02
USW-Flex-Mini-03
U6-Pro-02-Library
U6-Pro-01-Living
USW-Flex-XG
I have 5 vlans on top of the default untagged "LAN" that gets created which I only use for management.
vlans are for:
IoT
Guest
IPCAM
Neighbours
Raywood
IoT, Guest and Raywood are the three vlans having SSIDs broadcasted via the 2 x U6Pros. This works well and I don't see any issues so far when using both together.

AdGuardHome works well! I'm using it to also block my LGC9 TV so I don't get Firmware reminders for example.
Just have to work out how to allow it to get ntp and not the update from the same domain which will likely require me to learn more about wireshark.

I've learnt heaps, stuffed up just as much along the way, mainly because I've bridged spare ethernet ports in the router so I don't have to buy another smart 10Gig switch for the shed/homelab.

Certainly would not have managed all of the above if it weren't for the great people here in the forums so this is just as important for me.

I'm really happy with what OPNSense can do and so will be donating once I finish my setup.

24.7 Production Series / solved: Re: unifi with opnsense with bridges/vlans not happening?

« on: August 01, 2024, 04:08:59 pm »

mimugmail suggested I "allow all" across all interfaces as a temp test.

Unify could be reached after that...

Even tho I was testing with a client PC on the same subnet (192.168.140.0/24), I had to add a pass rule to 192.168.140.1:8080 before I could get to it with bridges in the mix. (don't need this rule with just basic LAN/WAN setup)

General Discussion / [solved]Re: help for having VLANs setup across spare router ports

« on: August 01, 2024, 04:06:17 pm »

mimugmail suggested I "allow all" across all interfaces as a temp test.

Unify could be reached after that...

General Discussion / Re: help for having VLANs setup across spare router ports

« on: July 29, 2024, 03:56:32 pm »

just setup a new box.

added mimugmail's repo: https://github.com/mimugmail/opn-repo

Code: [Select]

***GOT REQUEST TO INSTALL***
Currently running OPNsense 24.7_9 at Mon Jul 29 23:37:04 AEST 2024
Updating OPNsense repository catalogue...
OPNsense repository is up to date.
Updating mimugmail repository catalogue...
mimugmail repository is up to date.
All repositories are up to date.
The following 48 package(s) will be affected (of 0 checked):

New packages to be INSTALLED:
   alsa-lib: 1.2.11 [mimugmail]
   brotli: 1.1.0,1 [OPNsense]
   dejavu: 2.37_3 [mimugmail]
   encodings: 1.1.0,1 [mimugmail]
   font-bh-ttf: 1.0.3_5 [mimugmail]
   font-misc-ethiopic: 1.0.4 [mimugmail]
   font-misc-meltho: 1.0.3_5 [mimugmail]
   fontconfig: 2.15.0_3,1 [OPNsense]
   freetype2: 2.13.2 [OPNsense]
   giflib: 5.2.2 [OPNsense]
   graphite2: 1.3.14 [mimugmail]
   harfbuzz: 9.0.0 [OPNsense]
   javavmwrapper: 2.7.10 [mimugmail]
   jbigkit: 2.1_3 [OPNsense]
   jpeg-turbo: 3.0.3 [OPNsense]
   lcms2: 2.16_2 [mimugmail]
   lerc: 4.0.0 [OPNsense]
   libICE: 1.1.1,1 [mimugmail]
   libSM: 1.2.3_1,1 [mimugmail]
   libX11: 1.8.9,1 [mimugmail]
   libXau: 1.0.9_1 [mimugmail]
   libXdmcp: 1.1.5 [mimugmail]
   libXext: 1.3.6,1 [mimugmail]
   libXfixes: 6.0.0_1 [mimugmail]
   libXi: 1.8_1,1 [mimugmail]
   libXrandr: 1.5.2_1 [mimugmail]
   libXrender: 0.9.10_2 [mimugmail]
   libXt: 1.3.0,1 [mimugmail]
   libXtst: 1.2.3_3 [mimugmail]
   libdeflate: 1.20 [OPNsense]
   libfontenc: 1.1.8 [OPNsense]
   libunwind: 20240221 [OPNsense]
   libxcb: 1.17.0 [mimugmail]
   mkfontscale: 1.2.3 [mimugmail]
   mongodb60: 6.0.15_3 [mimugmail]
   openjdk17: 17.0.11+9.1 [mimugmail]
   os-unifi-maxit: 1.3 [mimugmail]
   pcre: 8.45_4 [OPNsense]
   png: 1.6.43 [OPNsense]
   snappy: 1.2.1 [mimugmail]
   snappyjava: 1.1.10.5 [mimugmail]
   snowballstemmer: 2.2.0 [mimugmail]
   tiff: 4.6.0 [OPNsense]
   unifi8: 8.2.93 [mimugmail]
   xorg-fonts-truetype: 7.7_1 [mimugmail]
   xorgproto: 2024.1 [mimugmail]
   yaml-cpp: 0.8.0 [mimugmail]
   zstd: 1.5.6 [OPNsense]

Number of packages to be installed: 48

The process will require 754 MiB more space.
341 MiB to be downloaded.
[1/48] Fetching png-1.6.43.pkg: .......... done
[2/48] Fetching javavmwrapper-2.7.10.pkg: ... done
[3/48] Fetching libxcb-1.17.0.pkg: .......... done
[4/48] Fetching freetype2-2.13.2.pkg: .......... done
[5/48] Fetching jpeg-turbo-3.0.3.pkg: .......... done
[6/48] Fetching libXt-1.3.0,1.pkg: .......... done
[7/48] Fetching libXrandr-1.5.2_1.pkg: .... done
[8/48] Fetching os-unifi-maxit-1.3.pkg: . done
[9/48] Fetching lcms2-2.16_2.pkg: .......... done
[10/48] Fetching openjdk17-17.0.11+9.1.pkg: .......... done
[11/48] Fetching snowballstemmer-2.2.0.pkg: .......... done
[12/48] Fetching mkfontscale-1.2.3.pkg: ... done
[13/48] Fetching libdeflate-1.20.pkg: ......... done
[14/48] Fetching libXfixes-6.0.0_1.pkg: .. done
[15/48] Fetching snappyjava-1.1.10.5.pkg: .......... done
[16/48] Fetching font-misc-ethiopic-1.0.4.pkg: .......... done
[17/48] Fetching libX11-1.8.9,1.pkg: .......... done
[18/48] Fetching giflib-5.2.2.pkg: ......... done
[19/48] Fetching libXrender-0.9.10_2.pkg: .... done
[20/48] Fetching xorgproto-2024.1.pkg: .......... done
[21/48] Fetching libXtst-1.2.3_3.pkg: ... done
[22/48] Fetching libXi-1.8_1,1.pkg: .......... done
[23/48] Fetching yaml-cpp-0.8.0.pkg: .......... done
[24/48] Fetching graphite2-1.3.14.pkg: .......... done
[25/48] Fetching encodings-1.1.0,1.pkg: .......... done
[26/48] Fetching alsa-lib-1.2.11.pkg: .......... done
[27/48] Fetching harfbuzz-9.0.0.pkg: .......... done
[28/48] Fetching snappy-1.2.1.pkg: ..... done
[29/48] Fetching libfontenc-1.1.8.pkg: ... done
[30/48] Fetching libunwind-20240221.pkg: .......... done
[31/48] Fetching zstd-1.5.6.pkg: .......... done
[32/48] Fetching font-bh-ttf-1.0.3_5.pkg: .......... done
[33/48] Fetching mongodb60-6.0.15_3.pkg: .......... done
[34/48] Fetching brotli-1.1.0,1.pkg: .......... done
[35/48] Fetching libXext-1.3.6,1.pkg: .......... done
[36/48] Fetching libXau-1.0.9_1.pkg: .. done
[37/48] Fetching libICE-1.1.1,1.pkg: .......... done
[38/48] Fetching fontconfig-2.15.0_3,1.pkg: .......... done
[39/48] Fetching pcre-8.45_4.pkg: .......... done
[40/48] Fetching libSM-1.2.3_1,1.pkg: ... done
[41/48] Fetching jbigkit-2.1_3.pkg: ........ done
[42/48] Fetching font-misc-meltho-1.0.3_5.pkg: .......... done
[43/48] Fetching libXdmcp-1.1.5.pkg: .. done
[44/48] Fetching tiff-4.6.0.pkg: .......... done
[45/48] Fetching xorg-fonts-truetype-7.7_1.pkg: . done
[46/48] Fetching dejavu-2.37_3.pkg: .......... done
[47/48] Fetching unifi8-8.2.93.pkg: .......... done
[48/48] Fetching lerc-4.0.0.pkg: .......... done
Checking integrity... done (0 conflicting)
[1/48] Installing xorgproto-2024.1...
[1/48] Extracting xorgproto-2024.1: .......... done
[2/48] Installing libXau-1.0.9_1...
[2/48] Extracting libXau-1.0.9_1: .......... done
[3/48] Installing libXdmcp-1.1.5...
[3/48] Extracting libXdmcp-1.1.5: ......... done
[4/48] Installing png-1.6.43...
[4/48] Extracting png-1.6.43: .......... done
[5/48] Installing libxcb-1.17.0...
[5/48] Extracting libxcb-1.17.0: .......... done
[6/48] Installing brotli-1.1.0,1...
[6/48] Extracting brotli-1.1.0,1: .......... done
[7/48] Installing freetype2-2.13.2...
[7/48] Extracting freetype2-2.13.2: .......... done
[8/48] Installing libX11-1.8.9,1...
[8/48] Extracting libX11-1.8.9,1: .......... done
[9/48] Installing libfontenc-1.1.8...
[9/48] Extracting libfontenc-1.1.8: ......... done
[10/48] Installing jpeg-turbo-3.0.3...
[10/48] Extracting jpeg-turbo-3.0.3: .......... done
[11/48] Installing mkfontscale-1.2.3...
[11/48] Extracting mkfontscale-1.2.3: ....... done
[12/48] Installing libdeflate-1.20...
[12/48] Extracting libdeflate-1.20: .......... done
[13/48] Installing libXfixes-6.0.0_1...
[13/48] Extracting libXfixes-6.0.0_1: ....... done
[14/48] Installing zstd-1.5.6...
[14/48] Extracting zstd-1.5.6: .......... done
[15/48] Installing libXext-1.3.6,1...
[15/48] Extracting libXext-1.3.6,1: .......... done
[16/48] Installing libICE-1.1.1,1...
[16/48] Extracting libICE-1.1.1,1: .......... done
[17/48] Installing fontconfig-2.15.0_3,1...
[17/48] Extracting fontconfig-2.15.0_3,1: .......... done
[18/48] Installing jbigkit-2.1_3...
[18/48] Extracting jbigkit-2.1_3: .......... done
[19/48] Installing lerc-4.0.0...
[19/48] Extracting lerc-4.0.0: ........ done
[20/48] Installing font-misc-ethiopic-1.0.4...
[20/48] Extracting font-misc-ethiopic-1.0.4: ... done
[21/48] Installing libXrender-0.9.10_2...
[21/48] Extracting libXrender-0.9.10_2: .......... done
[22/48] Installing libXi-1.8_1,1...
[22/48] Extracting libXi-1.8_1,1: .......... done
[23/48] Installing graphite2-1.3.14...
[23/48] Extracting graphite2-1.3.14: .......... done
[24/48] Installing encodings-1.1.0,1...
[24/48] Extracting encodings-1.1.0,1: .......... done
[25/48] Installing font-bh-ttf-1.0.3_5...
[25/48] Extracting font-bh-ttf-1.0.3_5: .......... done
[26/48] Installing libSM-1.2.3_1,1...
[26/48] Extracting libSM-1.2.3_1,1: .......... done
[27/48] Installing font-misc-meltho-1.0.3_5...
[27/48] Extracting font-misc-meltho-1.0.3_5: .......... done
[28/48] Installing tiff-4.6.0...
[28/48] Extracting tiff-4.6.0: .......... done
[29/48] Installing dejavu-2.37_3...
[29/48] Extracting dejavu-2.37_3: .......... done
[30/48] Installing javavmwrapper-2.7.10...
[30/48] Extracting javavmwrapper-2.7.10: .......... done
[31/48] Installing libXt-1.3.0,1...
[31/48] Extracting libXt-1.3.0,1: .......... done
[32/48] Installing libXrandr-1.5.2_1...
[32/48] Extracting libXrandr-1.5.2_1: .......... done
[33/48] Installing lcms2-2.16_2...
[33/48] Extracting lcms2-2.16_2: .......... done
[34/48] Installing snowballstemmer-2.2.0...
[34/48] Extracting snowballstemmer-2.2.0: ..... done
[35/48] Installing giflib-5.2.2...
[35/48] Extracting giflib-5.2.2: .......... done
[36/48] Installing libXtst-1.2.3_3...
[36/48] Extracting libXtst-1.2.3_3: .......... done
[37/48] Installing yaml-cpp-0.8.0...
[37/48] Extracting yaml-cpp-0.8.0: .......... done
[38/48] Installing alsa-lib-1.2.11...
[38/48] Extracting alsa-lib-1.2.11: .......... done
[39/48] Installing harfbuzz-9.0.0...
[39/48] Extracting harfbuzz-9.0.0: .......... done
[40/48] Installing snappy-1.2.1...
[40/48] Extracting snappy-1.2.1: .......... done
[41/48] Installing libunwind-20240221...
[41/48] Extracting libunwind-20240221: .......... done
[42/48] Installing pcre-8.45_4...
[42/48] Extracting pcre-8.45_4: .......... done
[43/48] Installing xorg-fonts-truetype-7.7_1...
[44/48] Installing openjdk17-17.0.11+9.1...
[44/48] Extracting openjdk17-17.0.11+9.1: .......... done
[45/48] Installing snappyjava-1.1.10.5...
[45/48] Extracting snappyjava-1.1.10.5: ..... done
[46/48] Installing mongodb60-6.0.15_3...
===> Creating groups
Creating group 'mongodb' with gid '922'
===> Creating users
Creating user 'mongodb' with uid '922'
===> Creating homedir(s)
[46/48] Extracting mongodb60-6.0.15_3: ........ done
[47/48] Installing unifi8-8.2.93...
===> Creating groups
Creating group 'unifi' with gid '975'
===> Creating users
Creating user 'unifi' with uid '975'
[47/48] Extracting unifi8-8.2.93: .......... done
[48/48] Installing os-unifi-maxit-1.3...
[48/48] Extracting os-unifi-maxit-1.3: .......... done
Stopping configd...done
Starting configd.
Migrated OPNsense\Unifi\General from 0.0.0 to 0.0.1
Reloading plugin configuration
Configuring system logging...done.
Reloading template OPNsense/Unifi: OK
Running fc-cache to build fontconfig cache...
=====
Message from freetype2-2.13.2:

--
The 2.7.x series now uses the new subpixel hinting mode (V40 port's option) as
the default, emulating a modern version of ClearType. This change inevitably
leads to different rendering results, and you might change port's options to
adapt it to your taste (or use the new "FREETYPE_PROPERTIES" environment
variable).

The environment variable "FREETYPE_PROPERTIES" can be used to control the
driver properties. Example:

FREETYPE_PROPERTIES=truetype:interpreter-version=35 \
   cff:no-stem-darkening=1 \
   autofitter:warping=1

This allows to select, say, the subpixel hinting mode at runtime for a given
application.

If LONG_PCF_NAMES port's option was enabled, the PCF family names may include
the foundry and information whether they contain wide characters. For example,
"Sony Fixed" or "Misc Fixed Wide", instead of "Fixed". This can be disabled at
run time with using pcf:no-long-family-names property, if needed. Example:

FREETYPE_PROPERTIES=pcf:no-long-family-names=1

How to recreate fontconfig cache with using such environment variable,
if needed:
# env FREETYPE_PROPERTIES=pcf:no-long-family-names=1 fc-cache -fsv

The controllable properties are listed in the section "Controlling FreeType
Modules" in the reference's table of contents
(/usr/local/share/doc/freetype2/reference/index.html, if documentation was installed).
=====
Message from dejavu-2.37_3:

--
Make sure that the freetype module is loaded.  If it is not, add the following
line to the "Modules" section of your X Windows configuration file:

   Load "freetype"

Add the following line to the "Files" section of X Windows configuration file:

   FontPath "/usr/local/share/fonts/dejavu/"

Note: your X Windows configuration file is typically /etc/X11/XF86Config
if you are using XFree86, and /etc/X11/xorg.conf if you are using X.Org.
=====
Message from pcre-8.45_4:

--
===>   NOTICE:

This port is deprecated; you may wish to reconsider installing it:

EOLed by upstream, use devel/pcre2 instead.
=====
Message from openjdk17-17.0.11+9.1:

--
This OpenJDK implementation requires fdescfs(5) mounted on /dev/fd and
procfs(5) mounted on /proc.

If you have not done it yet, please do the following:

   mount -t fdescfs fdesc /dev/fd
   mount -t procfs proc /proc

To make it permanent, you need the following lines in /etc/fstab:

   fdesc   /dev/fd      fdescfs      rw   0   0
   proc   /proc      procfs      rw   0   0
=====
Message from mongodb60-6.0.15_3:

--
MongoDB on Rasperry Pi can work but is unsupported upstream.
Please read https://jira.mongodb.org/browse/SERVER-71772 if you run this on a non-LSE ARM cpu.
Checking integrity... done (0 conflicting)
Nothing to do.
***DONE***

Unifi is up and accessible after enabling in the plugin section. see attached.

I guess I'll log it as a bug with mimugmail and see what happens.

General Discussion / Re: help for having VLANs setup across spare router ports

« on: July 29, 2024, 02:09:13 pm »

Yes,
my 192.168.140.0/24 on OPNSense is the original LAN interface and thus untagged.
Right at the beginning, I changed all my Unifi devices to match this network which is what I understand they like to call VLAN1 from memory, even though it's not a tagged/logical network.
So I "manage" OPNSense and all Unify switches on the same untagged network.

Cheers

General Discussion / Re: help for having VLANs setup across spare router ports

« on: July 29, 2024, 11:34:05 am »

Hi Patrick,

2 x U6Pro
3 x Flex-Mini
1 x Flex-XG

as of 24.1, I had everything connected via a single 10GB copper port on OPNSense that goes to the Flex-XG and then branches out from there.
I've got two SSIDs running which work fine (vlan141 and vlan145) and have configured the respective ports for the vlans and I can't fault it. My setup provides the correct vlan to the device in question and DHCP is issuing the correct IPs etc etc.

Then I started over with 24.7. Please note that I have not altered any physical port connections, nor have I changed anything in Unify at the time. So all the vlans and devices are happily functioning fine and as expected on their respective vlans and ports.

It's just that after installing Unifi and starting the daemon via the plugin section, I'm not able to get to it on port 8080 to set it up.
As my MGMT/LAN (140) network is able to access all others atm, I expected Unify to appear on 140 subnet also. As that wasn't the case, I've since tried:
192.168.140.1:8080
192.168.141.1:8080
192.168.142.1:8080
192.168.143.1:8080
192.168.144.1:8080
192.168.145.1:8080

no cigar...

I've got more info over at: https://forum.opnsense.org/index.php?topic=41803.msg205501#msg205501 when I thought it was a 24.7 issue.

Update:
I've since installed AGH and I can't get to it on port 3000 either, i.e. I've tried all my vlan gateway IPs as well to no avail.

Just to be clear, all my Unifi equipment is functioning as expected atm, as I haven't even looked at removing the 10GB switch from the house and move it to the shed/home-lab yet. ← I wanted to get it all happening first before physically moving anything.

I can send screenshots if you're after more info.
I've attached what the Unifi controller "tree view" was showing before I started over.

The only difference from I can see from when it was working/accessible to not now is bridges and the new OPNSense version.

I'm writing the new 24.7 to USB stick now to test as well.

ta.

General Discussion / Re: mimugmail repo: Upcoming Unifi Plugin Upgrade will break your config

« on: July 29, 2024, 01:57:38 am »

[solved - just had to look at fw more]
Anyone using unif8 plugin with 24.7 and have bridges setup?

I thought it initially might be a v24.7 issue, but I'm starting to think otherwise.
https://forum.opnsense.org/index.php?topic=41803.0

It looks like Unifi is running, but I can't get to it to set it up.

Is it possible to edit a conf file for Unifi to tell it what IP/interface to listen on?

Pages: [1] 2