1
24.7 Production Series / Re: Ipv6 firewall/nat possible?
« on: September 17, 2024, 11:57:46 pm »
Thanks.
Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
2
24.7 Production Series / Ipv6 firewall/nat possible?
« on: September 17, 2024, 11:35:53 pm »
Do the firewalling with ipv6 works only on end clients? Is there way to make nat/firewall for dual stack ipv4/ipv6 network? Im not network specialist. Simple explanation please.
3
24.1 Legacy Series / WebUI no longer acesible after router reboot
« on: May 29, 2024, 03:25:20 am »
I no longer can access to WebUI. Cant do this over http or https. 192.168.1.1 responds to ping and router is accesible over SSH. Internet connection trough the router works fine. What can i do for access to the WebUI?
Tired different browsers with no success.
EDIT: i get same situation after fresh install. Still have access over ssh but dont know what can i do to restore user interface. Just updated opnsense to 24.1.8 installed os-realtek-re and disabled user interface access over wan (it properly done, same as ssh but i have access over ssh).Nobody can help me?
EDIT2: Solved now unwanted wan acces by setting custom port for WebUI and blocking this port in firewall on wan side. This is just workaround for this bug. Now access from wan is blocked and lan access working.
Tired different browsers with no success.
EDIT: i get same situation after fresh install. Still have access over ssh but dont know what can i do to restore user interface. Just updated opnsense to 24.1.8 installed os-realtek-re and disabled user interface access over wan (it properly done, same as ssh but i have access over ssh).Nobody can help me?
EDIT2: Solved now unwanted wan acces by setting custom port for WebUI and blocking this port in firewall on wan side. This is just workaround for this bug. Now access from wan is blocked and lan access working.
4
24.1 Legacy Series / Re: Realtek NIC tunnables.
« on: May 24, 2024, 12:01:02 am »
When i disabled energy efficient ethernet in intel nic with my previous x86 router i have more responsive internet and gaming. Also different flow controll setting give different bufferbloat tests results. But no problems at all currently on mentioned nic/driver. I dont know do the realtek has similiar tunnables.
EDIT: After installation of os-realtek-re vendor drivers i got this tunnables:
I dont know what they do but i dont see nothing responsible for EEE and flow controll.
But i must say that bufferbloat is slightly better with new drivers also games works slightly better. Almost forgot to say that cpu usage during speed test is lower.
EDIT: After installation of os-realtek-re vendor drivers i got this tunnables:
Code: [Select]
dev.re.1.wake: 0
dev.re.1.msix_tbl: -1
dev.re.1.pci_regs: -1
dev.re.1.ext_regs: -1
dev.re.1.pcie_phy: -1
dev.re.1.tx_desc: -1
dev.re.1.rx_desc: -1
dev.re.1.eth_phy: -1
dev.re.1.registers: -1
dev.re.1.stats: -1
dev.re.1.driver_var: -1
dev.re.1.%parent: pci3
dev.re.1.%pnpinfo: vendor=0x10ec device=0x8168 subvendor=0x10ec subdevice=0x0123 class=0x020000
dev.re.1.%location: slot=0 function=0 dbsf=pci0:3:0:0 handle=\_SB_.PC00.RP12.PXSX
dev.re.1.%driver: re
dev.re.1.%desc: Realtek PCIe GbE Family Controller
dev.re.0.wake: 0
dev.re.0.msix_tbl: -1
dev.re.0.pci_regs: -1
dev.re.0.ext_regs: -1
dev.re.0.pcie_phy: -1
dev.re.0.tx_desc: -1
dev.re.0.rx_desc: -1
dev.re.0.eth_phy: -1
dev.re.0.registers: -1
dev.re.0.stats: -1
dev.re.0.driver_var: -1
dev.re.0.%parent: pci1
dev.re.0.%pnpinfo: vendor=0x10ec device=0x8168 subvendor=0x10ec subdevice=0x0123 class=0x020000
dev.re.0.%location: slot=0 function=0 dbsf=pci0:1:0:0 handle=\_SB_.PC00.RP04.PXSX
dev.re.0.%driver: re
dev.re.0.%desc: Realtek PCIe GbE Family Controller
dev.re.%parent:
I dont know what they do but i dont see nothing responsible for EEE and flow controll.
But i must say that bufferbloat is slightly better with new drivers also games works slightly better. Almost forgot to say that cpu usage during speed test is lower.
5
24.1 Legacy Series / Realtek NIC tunnables.
« on: May 23, 2024, 11:43:40 pm »
Is there are some new tunnables for os-realtek-re drivers? Im currently using default installation with bsd re driver. How i can list possible nic tunnables? I tried:
Code: [Select]
sysctl dev.reAnd there was few of them. Nothing usefull. Installing os-realtek-re drivers changes something?
6
24.1 Legacy Series / Re: Is it possible to enable deeper c-states?
« on: April 29, 2024, 10:40:53 pm »Code: [Select]
root@router:~ # pciconf -lcv | grep ASPM
link x4(x16) speed 5.0(8.0) ASPM L1(L0s/L1)
link x0(x1) speed 0.0(8.0) ASPM L0s/L1(L0s/L1)
link x0(x1) speed 0.0(8.0) ASPM L0s/L1(L0s/L1)
link x0(x4) speed 0.0(8.0) ASPM L0s/L1(L0s/L1)
link x4(x4) speed 5.0(5.0) ASPM L1(L0s/L1)
link x4(x4) speed 5.0(5.0) ASPM L1(L0s/L1)
hwpstate disabled for lower power draw Code: [Select]
sysctl dev.hwpstate_intel.<cpu>.epp=[0-100]changes nothing even on 100 value. When hwpstate is enabled processor wont drop clocks lower than 1593mhz. After disabling it it drops clocks to 800mhz when idle.after tunnable
Code: [Select]
sysctl hw.acpi.cpu.cx_lowest=Cmaxi get this:Code: [Select]
root@router:~ # sysctl dev.cpu | grep cx
dev.cpu.3.cx_method: C1/mwait/hwc C2/mwait/hwc C3/mwait/hwc
dev.cpu.3.cx_usage_counters: 440 60 3436
dev.cpu.3.cx_usage: 11.17% 1.52% 87.29% last 177us
dev.cpu.3.cx_lowest: C8
dev.cpu.3.cx_supported: C1/1/1 C2/2/151 C3/3/256
dev.cpu.2.cx_method: C1/mwait/hwc C2/mwait/hwc C3/mwait/hwc
dev.cpu.2.cx_usage_counters: 400 100 3017
dev.cpu.2.cx_usage: 11.42% 2.84% 85.73% last 139us
dev.cpu.2.cx_lowest: C8
dev.cpu.2.cx_supported: C1/1/1 C2/2/151 C3/3/256
dev.cpu.1.cx_method: C1/mwait/hwc C2/mwait/hwc C3/mwait/hwc
dev.cpu.1.cx_usage_counters: 570 28 3431
dev.cpu.1.cx_usage: 14.14% 0.69% 85.15% last 133us
dev.cpu.1.cx_lowest: C8
dev.cpu.1.cx_supported: C1/1/1 C2/2/151 C3/3/256
dev.cpu.0.cx_method: C1/mwait/hwc C2/mwait/hwc C3/mwait/hwc
dev.cpu.0.cx_usage_counters: 4008 13899 35455
dev.cpu.0.cx_usage: 7.51% 26.04% 66.44% last 448us
dev.cpu.0.cx_lowest: C8
dev.cpu.0.cx_supported: C1/1/1 C2/2/151 C3/3/256
lowest is c8 but supported lowest c3 i dont know why.
Opnsense not supporting c-states deeper than C3?
7
24.1 Legacy Series / igb vs igc network interfaces differences.
« on: April 29, 2024, 01:32:50 pm »
Is there any advantages by using igc (i-226-v) interface over igb (i350-t2) interface? Do the newer driver/chipset/technology can improve: power consumption, ping , cpu load , bufferbloat or any other cases? i350 is 13 years old so it can be any disadvantage comparing to the i-226-v? Any differences beetwen igb and igc driver? I currently have i350-t2 but can buy for few dollars per piece single slot pci-e i-226-v cards rom china. Is it worth/worthless? Main difference is 1Gb vs 2,5Gb interface speed.
8
Hardware and Performance / Re: Flow control - best practices
« on: April 29, 2024, 10:46:47 am »
If you have problems with bufferbloat enabling or leaving flow control at default + fq_codel shaper solves the bufferbloat issue. When i disabled flow control bufferbloat test results was bad.
9
24.1 Legacy Series / Re: LAN Port crashes on high usages
« on: April 29, 2024, 06:33:48 am »
Never use realtek on opnsense. You see how it works. Buy some intel network card. Im using intel i350-t2 and it works perfect. I buy this card cheap from second hand. Realtek cards are not well supported by opnsense and other bsd systems.
10
24.1 Legacy Series / Is it possible to enable deeper c-states?
« on: April 29, 2024, 06:05:48 am »
Is it posible to enable deeper c-states than C3 in opnsense? My opnsense detects only C3 as deepest c-state. Is it something blocked? I think my intel i5-6500 supports deeper c-states. But maybe this is blocked in bios. My opnsense instance is installed on Hewlett Packard elite desk 800 g2 sff. Im currently using C3 c-state. And my elite desk power draw is about 18 watts when idle.
Pages: [1]