Messages

1

24.7 Production Series / How to call API for "reloadinterface"

« on: October 13, 2024, 10:57:38 am »

Hi!

Anyone knows how to achieve this?
I want to call the API for reloading the wan interface, using "reloadinterface". Or just a command to use in shell, but still, using the same "reloadinterface" function.

Thank you!

2

24.7 Production Series / Re: LTE Modem Failure after Upgrade 24.1 to 24.7

« on: July 31, 2024, 01:26:09 pm »

Nobody? :-(

3

24.7 Production Series / Re: LTE Modem Failure after Upgrade 24.1 to 24.7

« on: July 30, 2024, 05:38:47 pm »

I have exactly the same issue... Using a Quectel EP06-E

Code: [Select]

2024-07-30T18:37:39 Informational ppp [opt1_link0] Link: reconnection attempt 4
2024-07-30T18:37:38 Informational ppp [opt1_link0] Link: reconnection attempt 4 in 1 seconds
2024-07-30T18:37:38 Informational ppp [opt1_link0] LCP: Down event
2024-07-30T18:37:38 Informational ppp [opt1_link0] Link: DOWN event
2024-07-30T18:37:38 Informational ppp [opt1_link0] MODEM: chat script failed
2024-07-30T18:37:38 Informational ppp [opt1_link0] CHAT: The modem is not responding to "AT" at MomCmd: labeell.
Through SSH, I get this

Code: [Select]

root@OPNsense:~ # cu -l /dev/cuaU0.2
Connected
AT
OK
AT+CPIN
ERROR

But if I connect the modem to my pc, the internet is ok...

EDIT: I have connected the modem to another OPNSense, with the old version, the modem works... So, it is 100% something from the new update...

4

24.1 Legacy Series / Re: 24.1.9 - Web GUI stopped working

« on: July 27, 2024, 03:35:00 pm »

Correct. Though the described loopback approach is much safer if you require explicit single point access.


Cheers,
Franco

Hi! I'm very new to opnsense and I read everything about the new "issue". I made it work again, but I would really love to only have access to the web gui from the local IPs - 192.168.0.0/24 (LAN interface). I read something about loopback address, but I don't understand nothing. Can you please explain step by step, what and where to click, in order to achieve this? Maybe there are more like me and it will help us more. Thank you in advance!

5

General Discussion / Re: Split DNS & duckdns.org

« on: June 22, 2024, 02:31:49 pm »

Nobody? Split DNS and some DDNS service? :-(

6

General Discussion / OPNsense automations (Notify Home Assistant if Internet down)

« on: June 09, 2024, 08:48:10 pm »

Hi!

I am trying to automate OPNsense, in order to get important notifications into my Home Assistant.

For this, I thought that 'devd' will be great, because it can run scripts when something is happening (like the link down event).

So, till now, I done these:

- I added a new file to devd (homeassistant.conf), which have the following lines:

Code: [Select]

notify 101 {
        match "system"          "IFNET";
        match "type"            "LINK_DOWN";
        media-type              "ethernet";
action "/usr/local/bin/homeassistant/wan1_down.sh";
};
- After that, I created the script 'wan1_down.sh' to '/usr/local/bin/homeassistant/' with +x chmod

The script is working very fine if I run it manually, but when you wait for 'devd' to do its job, it is not working.
I tested more and I have stopped the devd service, then I run the 'devd -d', in order to see what is happening into the console, and I had a very big surprise, 'devd' was working flowless, the script have been loaded, the notification to home assistant was there, all good.

Now, the problem is that 'devd' won't run the script if is loaded as service, only if I run it manually 'devd -d', will work. Why? And how can I made it work as service as well?

Another problem which I had even when devd was loaded manually, if I use 'notify'  less than 101, the script won't run. But I understood that it is not running because another 'devd' config file, have an action with priority 101 and won't let anything else to take action. Still, how can I run the script with any priority? Or how can I add two actions into the same action?

Edit: Ok, I have found a temporary solution to run multiple actions, but I don't know that this is the proper way. I just added a secondary 'action" line, to the same notify. Is this ok? I thought that devd can run multiple actions for a similar notify...

Edit2: Seems that 'devd' it is working as service too, but it won't take action if I use 'ifconfig pppoe0 down', instead of this, it is working if I take out the cable or I use this 'ifconfig igc1 down/up'

>>Edit2: In this moment, everything works well, I just need some explication about the 'notify' from devd.conf. Why devd is not loading two similar notify, but with different actions? It is only loading one, and it is always the one with higher priority. Ok, I can understand that higher priority is the real deal, but I thought that the 'nofity' codes are loaded secvential, regarding the priority, not only the one with higher priority...

If I can figure out more, I will write it here, maybe someone else like and need this.

Thank you!

7

General Discussion / Split DNS & duckdns.org

« on: June 08, 2024, 09:46:33 pm »

Hi, all!

I am trying to access my ftp server from inside the local network, but through the external ip. I already made the port forwarding, but it is not working. I manage to achieve this through NAT Reflection, but I want to do it through SPLIT DNS.
Anyone know how to achieve this, step by step?
The duckdns url is bywhonowho.duckdns.org. I added an override to unbound DNS, writing "bywhonowho" to the host and "duckdns.org" to the domain, then the IP of the computer which have the FTP open, but it is not working.

Any idea?

Thank you in advance!

8

General Discussion / Re: Two subnets, same port, how to access eachother?

« on: May 28, 2024, 08:08:54 pm »

I don't know why, but now, I can access the other IP from the other subnet... And I have changed the subnet mask back to 192.168.0.0/24

All I done more, just activated 4 settings, but I don't think that these have something to do with...

The Reflection NAT on my port forwarding for my local server (port 80) and another three in advanced settings of the firewall: "Reflection for port forwards, Reflection for 1:1, Automatic outbound NAT for Reflection".

So... I don't need to change the subnet mask to 192.168.0.0/23 or create virtual IPs. Still, I don't understand how now it is working and till now, didnt...

Edit: After doing some tests of changing the subnet back and forward, I see that on 192.168.0.0/24 I can only ping that ip, in order to access the services, I need to be on 192.168.0.0/23 :-(

9

General Discussion / Re: PPPOE manually disconnect/connect/restart from SSH

« on: May 28, 2024, 07:38:37 pm »

I found a solution for VERY fast disconnect/reconnect of the pppoe, but it is not changing my external dynamic IP.
This is what I used

Code: [Select]

ifconfig pppoe0 down
ifconfig pppoe0 up
Any solution to do this as fast as ifconfig does, but to change the external IP as well? Normally the extenal IP it is changing every time I restart the router

10

General Discussion / Re: Two subnets, same port, how to access eachother?

« on: May 28, 2024, 07:37:00 pm »

Interesting, can you please tell me step by step, what I need to do? I have never worked with Virtual IPs

11

General Discussion / Re: Two subnets, same port, how to access eachother?

« on: May 28, 2024, 07:11:07 pm »

My only solution till now, was to modify the subnet mask to 192.168.0.0/23, in order to cover 192.168.1.0-254 IPs. If someone have other idea, please share. Thanks!

PS: any disadvantages of using a network of ~500 possible addresses, instead of ~255 ?

12

General Discussion / Re: Trying to access opnsense SSH with keys but I get "Server refused our key"

« on: May 28, 2024, 05:45:01 pm »

Oh, damn, this I didn't tried. I thought that putty is better.
Seems that it is working ok with the ssh of windows cmd. Thanks!

PS: if you have any idea how to make it work with putty as well, don't hesitate to tell me. I am trying to understand that putty is doing wrong.

13

General Discussion / Re: Trying to access opnsense SSH with keys but I get "Server refused our key"

« on: May 28, 2024, 03:05:06 pm »

Yes, of course. I already did it in a proper way. I imported the key into puttygen, copy the code and pasted in opnsense, one line key, no line break

14

General Discussion / Re: Trying to access opnsense SSH with keys but I get "Server refused our key"

« on: May 28, 2024, 02:44:57 pm »

SSH-2 RSA key (2048 bits), generated with puttygen

In opnsense, I added the public key to the root username, into the Authorized Keys field.
And used the private .ppk key with putty.

PS: I even created a different user, doesn't have nothing to do with what user I use, same error

15

General Discussion / PPPOE manually disconnect/connect/restart from SSH

« on: May 28, 2024, 11:39:18 am »

Hi!

There is any command I can use, in order to restart the PPPOE connection?  Disconnect, connect or even just restart, it would help me.

Using "service netif restart wan" it is way TOOO slow. I get a reconnection after more than 1-2 minutes. Any other command?

Thanks