"
Ahhh... :-(
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
#1
General Discussion / Re: Enable/Disable Port Forwarding rule through API
May 28, 2025, 07:29:19 PM #2
General Discussion / Enable/Disable Port Forwarding rule through API
May 28, 2025, 03:31:58 PM
Hi!
Anyone knows how to do this in the latest OPNsense version?
I have tried so many things but none worked...
First of all, I need to get the uuid of that port forwarding rule, which I don't know how to get it. I found something in two places, but both were different...
Then, trying with togglerule or toggle_rule, with both of the uuid's found, stil not working.
Any idea?
Thanks!
Anyone knows how to do this in the latest OPNsense version?
I have tried so many things but none worked...
First of all, I need to get the uuid of that port forwarding rule, which I don't know how to get it. I found something in two places, but both were different...
Then, trying with togglerule or toggle_rule, with both of the uuid's found, stil not working.
Any idea?
Thanks!
#3
Virtual private networks / OpenVPN Server (Instances) & 2 WANS (noob question)
May 07, 2025, 06:34:35 PM
Hi!
I have this OPNsense router, configured with two WANs, one with PPPOE (WAN1) and another with LAN DHCP (WAN2) (WAN2 takes internet from another router, which have DMZ rule created directed to OPNsense). Till now, I didn't had the second WAN, OpenVPN was working ok with only one WAN, it is still working ok now, but not when I try to connect through WAN2... WAN1 and WAN2 have different gateways, of course, and I created a FailOver rule (Tier1 WAN1, Tier WAN2)... When there is no internet on WAN1, I get internet from WAN2, but I cannot connect to OpenVPN Server...
I idea how to achieve this?
Please, keep the idea of a noob user here...
Thanks!
I have this OPNsense router, configured with two WANs, one with PPPOE (WAN1) and another with LAN DHCP (WAN2) (WAN2 takes internet from another router, which have DMZ rule created directed to OPNsense). Till now, I didn't had the second WAN, OpenVPN was working ok with only one WAN, it is still working ok now, but not when I try to connect through WAN2... WAN1 and WAN2 have different gateways, of course, and I created a FailOver rule (Tier1 WAN1, Tier WAN2)... When there is no internet on WAN1, I get internet from WAN2, but I cannot connect to OpenVPN Server...
I idea how to achieve this?
Please, keep the idea of a noob user here...
Thanks!
#4
24.7, 24.10 Legacy Series / How to call API for "reloadinterface"
October 13, 2024, 10:57:38 AM
Hi!
Anyone knows how to achieve this?
I want to call the API for reloading the wan interface, using "reloadinterface". Or just a command to use in shell, but still, using the same "reloadinterface" function.
Thank you!
Anyone knows how to achieve this?
I want to call the API for reloading the wan interface, using "reloadinterface". Or just a command to use in shell, but still, using the same "reloadinterface" function.
Thank you!
#5
24.7, 24.10 Legacy Series / Re: LTE Modem Failure after Upgrade 24.1 to 24.7
July 31, 2024, 01:26:09 PM
Nobody? :-(
#6
24.7, 24.10 Legacy Series / Re: LTE Modem Failure after Upgrade 24.1 to 24.7
July 30, 2024, 05:38:47 PM
I have exactly the same issue... Using a Quectel EP06-E
Through SSH, I get this
But if I connect the modem to my pc, the internet is ok...
EDIT: I have connected the modem to another OPNSense, with the old version, the modem works... So, it is 100% something from the new update...
Code Select
2024-07-30T18:37:39 Informational ppp [opt1_link0] Link: reconnection attempt 4
2024-07-30T18:37:38 Informational ppp [opt1_link0] Link: reconnection attempt 4 in 1 seconds
2024-07-30T18:37:38 Informational ppp [opt1_link0] LCP: Down event
2024-07-30T18:37:38 Informational ppp [opt1_link0] Link: DOWN event
2024-07-30T18:37:38 Informational ppp [opt1_link0] MODEM: chat script failed
2024-07-30T18:37:38 Informational ppp [opt1_link0] CHAT: The modem is not responding to "AT" at MomCmd: labeell.Through SSH, I get this
Code Select
root@OPNsense:~ # cu -l /dev/cuaU0.2
Connected
AT
OK
AT+CPIN
ERROR
But if I connect the modem to my pc, the internet is ok...
EDIT: I have connected the modem to another OPNSense, with the old version, the modem works... So, it is 100% something from the new update...
#7
24.1, 24.4 Legacy Series / Re: 24.1.9 - Web GUI stopped working
July 27, 2024, 03:35:00 PMQuote from: franco on June 22, 2024, 11:20:59 AM
Correct. Though the described loopback approach is much safer if you require explicit single point access.
Cheers,
Franco
Hi! I'm very new to opnsense and I read everything about the new "issue". I made it work again, but I would really love to only have access to the web gui from the local IPs - 192.168.0.0/24 (LAN interface). I read something about loopback address, but I don't understand nothing. Can you please explain step by step, what and where to click, in order to achieve this? Maybe there are more like me and it will help us more. Thank you in advance!
#8
General Discussion / Re: Split DNS & duckdns.org
June 22, 2024, 02:31:49 PM
Nobody? Split DNS and some DDNS service? :-(
#9
General Discussion / OPNsense automations (Notify Home Assistant if Internet down)
June 09, 2024, 08:48:10 PM
Hi!
I am trying to automate OPNsense, in order to get important notifications into my Home Assistant.
For this, I thought that 'devd' will be great, because it can run scripts when something is happening (like the link down event).
So, till now, I done these:
- I added a new file to devd (homeassistant.conf), which have the following lines:
- After that, I created the script 'wan1_down.sh' to '/usr/local/bin/homeassistant/' with +x chmod
The script is working very fine if I run it manually, but when you wait for 'devd' to do its job, it is not working.
I tested more and I have stopped the devd service, then I run the 'devd -d', in order to see what is happening into the console, and I had a very big surprise, 'devd' was working flowless, the script have been loaded, the notification to home assistant was there, all good.
Now, the problem is that 'devd' won't run the script if is loaded as service, only if I run it manually 'devd -d', will work. Why? And how can I made it work as service as well?
Another problem which I had even when devd was loaded manually, if I use 'notify' less than 101, the script won't run. But I understood that it is not running because another 'devd' config file, have an action with priority 101 and won't let anything else to take action. Still, how can I run the script with any priority? Or how can I add two actions into the same action?
Edit: Ok, I have found a temporary solution to run multiple actions, but I don't know that this is the proper way. I just added a secondary 'action" line, to the same notify. Is this ok? I thought that devd can run multiple actions for a similar notify...
Edit2: Seems that 'devd' it is working as service too, but it won't take action if I use 'ifconfig pppoe0 down', instead of this, it is working if I take out the cable or I use this 'ifconfig igc1 down/up'
>>Edit2: In this moment, everything works well, I just need some explication about the 'notify' from devd.conf. Why devd is not loading two similar notify, but with different actions? It is only loading one, and it is always the one with higher priority. Ok, I can understand that higher priority is the real deal, but I thought that the 'nofity' codes are loaded secvential, regarding the priority, not only the one with higher priority...
If I can figure out more, I will write it here, maybe someone else like and need this.
Thank you!
I am trying to automate OPNsense, in order to get important notifications into my Home Assistant.
For this, I thought that 'devd' will be great, because it can run scripts when something is happening (like the link down event).
So, till now, I done these:
- I added a new file to devd (homeassistant.conf), which have the following lines:
Code Select
notify 101 {
match "system" "IFNET";
match "type" "LINK_DOWN";
media-type "ethernet";
action "/usr/local/bin/homeassistant/wan1_down.sh";
};- After that, I created the script 'wan1_down.sh' to '/usr/local/bin/homeassistant/' with +x chmod
The script is working very fine if I run it manually, but when you wait for 'devd' to do its job, it is not working.
I tested more and I have stopped the devd service, then I run the 'devd -d', in order to see what is happening into the console, and I had a very big surprise, 'devd' was working flowless, the script have been loaded, the notification to home assistant was there, all good.
Now, the problem is that 'devd' won't run the script if is loaded as service, only if I run it manually 'devd -d', will work. Why? And how can I made it work as service as well?
Another problem which I had even when devd was loaded manually, if I use 'notify' less than 101, the script won't run. But I understood that it is not running because another 'devd' config file, have an action with priority 101 and won't let anything else to take action. Still, how can I run the script with any priority? Or how can I add two actions into the same action?
Edit: Ok, I have found a temporary solution to run multiple actions, but I don't know that this is the proper way. I just added a secondary 'action" line, to the same notify. Is this ok? I thought that devd can run multiple actions for a similar notify...
Edit2: Seems that 'devd' it is working as service too, but it won't take action if I use 'ifconfig pppoe0 down', instead of this, it is working if I take out the cable or I use this 'ifconfig igc1 down/up'
>>Edit2: In this moment, everything works well, I just need some explication about the 'notify' from devd.conf. Why devd is not loading two similar notify, but with different actions? It is only loading one, and it is always the one with higher priority. Ok, I can understand that higher priority is the real deal, but I thought that the 'nofity' codes are loaded secvential, regarding the priority, not only the one with higher priority...
If I can figure out more, I will write it here, maybe someone else like and need this.
Thank you!
#10
General Discussion / Split DNS & duckdns.org
June 08, 2024, 09:46:33 PM
Hi, all!
I am trying to access my ftp server from inside the local network, but through the external ip. I already made the port forwarding, but it is not working. I manage to achieve this through NAT Reflection, but I want to do it through SPLIT DNS.
Anyone know how to achieve this, step by step?
The duckdns url is bywhonowho.duckdns.org. I added an override to unbound DNS, writing "bywhonowho" to the host and "duckdns.org" to the domain, then the IP of the computer which have the FTP open, but it is not working.
Any idea?
Thank you in advance!
I am trying to access my ftp server from inside the local network, but through the external ip. I already made the port forwarding, but it is not working. I manage to achieve this through NAT Reflection, but I want to do it through SPLIT DNS.
Anyone know how to achieve this, step by step?
The duckdns url is bywhonowho.duckdns.org. I added an override to unbound DNS, writing "bywhonowho" to the host and "duckdns.org" to the domain, then the IP of the computer which have the FTP open, but it is not working.
Any idea?
Thank you in advance!
#11
General Discussion / Re: Two subnets, same port, how to access eachother?
May 28, 2024, 08:08:54 PM
I don't know why, but now, I can access the other IP from the other subnet... And I have changed the subnet mask back to 192.168.0.0/24
All I done more, just activated 4 settings, but I don't think that these have something to do with...
The Reflection NAT on my port forwarding for my local server (port 80) and another three in advanced settings of the firewall: "Reflection for port forwards, Reflection for 1:1, Automatic outbound NAT for Reflection".
So... I don't need to change the subnet mask to 192.168.0.0/23 or create virtual IPs. Still, I don't understand how now it is working and till now, didnt...
Edit: After doing some tests of changing the subnet back and forward, I see that on 192.168.0.0/24 I can only ping that ip, in order to access the services, I need to be on 192.168.0.0/23 :-(
All I done more, just activated 4 settings, but I don't think that these have something to do with...
The Reflection NAT on my port forwarding for my local server (port 80) and another three in advanced settings of the firewall: "Reflection for port forwards, Reflection for 1:1, Automatic outbound NAT for Reflection".
So... I don't need to change the subnet mask to 192.168.0.0/23 or create virtual IPs. Still, I don't understand how now it is working and till now, didnt...
Edit: After doing some tests of changing the subnet back and forward, I see that on 192.168.0.0/24 I can only ping that ip, in order to access the services, I need to be on 192.168.0.0/23 :-(
#12
General Discussion / Re: PPPOE manually disconnect/connect/restart from SSH
May 28, 2024, 07:38:37 PM
I found a solution for VERY fast disconnect/reconnect of the pppoe, but it is not changing my external dynamic IP.
This is what I used
Any solution to do this as fast as ifconfig does, but to change the external IP as well? Normally the extenal IP it is changing every time I restart the router
This is what I used
Code Select
ifconfig pppoe0 down
ifconfig pppoe0 upAny solution to do this as fast as ifconfig does, but to change the external IP as well? Normally the extenal IP it is changing every time I restart the router
#13
General Discussion / Re: Two subnets, same port, how to access eachother?
May 28, 2024, 07:37:00 PM
Interesting, can you please tell me step by step, what I need to do? I have never worked with Virtual IPs
#14
General Discussion / Re: Two subnets, same port, how to access eachother?
May 28, 2024, 07:11:07 PM
My only solution till now, was to modify the subnet mask to 192.168.0.0/23, in order to cover 192.168.1.0-254 IPs. If someone have other idea, please share. Thanks!
PS: any disadvantages of using a network of ~500 possible addresses, instead of ~255 ?
PS: any disadvantages of using a network of ~500 possible addresses, instead of ~255 ?
#15
General Discussion / Re: Trying to access opnsense SSH with keys but I get "Server refused our key"
May 28, 2024, 05:45:01 PM
Oh, damn, this I didn't tried. I thought that putty is better.
Seems that it is working ok with the ssh of windows cmd. Thanks!
PS: if you have any idea how to make it work with putty as well, don't hesitate to tell me. I am trying to understand that putty is doing wrong.
Seems that it is working ok with the ssh of windows cmd. Thanks!
PS: if you have any idea how to make it work with putty as well, don't hesitate to tell me. I am trying to understand that putty is doing wrong.
