Messages

1

24.7 Production Series / src_port below 1024 (NFS)

« on: October 30, 2024, 03:25:39 pm »

Hello everyone. Can't really remember when it started, but with some 24.7 update.

I'm using NAS behind OPNsense and doing 2049 port (TCP/UDP) forward on WAN. Using NFS4 so everything seems fine.

So today I've noticed that when you connecting to 2049 port and using source port above 1024 - I can see traffic on firewall log. But when src_port is 848 - can't even see the traffic.

Opened few other ports and same behavior. When source port is below 1024 - no traffic on firewall log. When src_port is 1025 - port [tcp/nfsd] succeeded.

Were there any changes that could address this? I've read few changelogs but didn't find anything.

2

Hardware and Performance / Re: ASUS NUC 13 Rugged - cannot make working

« on: September 24, 2024, 10:42:36 pm »

This NUC is great candidate for small powerful firewall, but probably not now. I'm running fine on hypervisor. Have other SSD with OPNense installed. Will try next time, when some major release is out. Maybe ASPM selection in bios has no affect. Wonder what changes will 0040 BIOS introduce.

3

Hardware and Performance / Re: ASUS NUC 13 Rugged - cannot make working

« on: September 17, 2024, 07:14:36 pm »

No, I didn't get any speed issues. Cannot say that is was stable 2.5gig, but near 2gig.
What BIOS version You're using? Any VLANs or IPsec tunnels?

4

Hardware and Performance / Re: ASUS NUC 13 Rugged - cannot make working

« on: September 05, 2024, 10:50:31 am »

Thank You everyone for help. Tried disabling ASPM, changing PCIe settings. Disabling cores, intel speedstep. Updated to latest opnsense. changed ram, enabled/disabled ECC. Nothing. Tried locking interface speed to 1gig, 100mb.

Also noticed that when using this NUC 'Input Errors' are huge on both interfaces. For now I would state that tis NUC is unusable with opnsense. Unless it is used as hypervisor to host it.

Will try again, when ASUS release new BIOS.

5

Hardware and Performance / Re: ASUS NUC 13 Rugged - cannot make working

« on: August 19, 2024, 09:31:00 pm »

Thank you for Your reply. Yes, I have latest BIOS and tried meyergru tutorial on microcode. Microcode loaded, updated. Even verified. Currently testing "clumsy" setup:

Installed Windows 2019 Hyper-V, loaded all drivers. Created VM with OPNsense and added VLANS on hypervisor level (WAN+2x LAN) as VM interfaces. Quite overkill but still working. Even reach near 2gbps.

So I'm stuck at something not supported on the FreeBSD side. I would say that maybe I could try compiling latest driver for i226V? A bit overkill too, I would say.

6

Hardware and Performance / ASUS NUC 13 Rugged - cannot make working

« on: August 18, 2024, 11:24:05 pm »

Hello, I'm new on forum but with OPNsense more than 5 years. Usually my deployments end with some ITX board on RACK case. Some old i3 4xxx serries and few intel i210/i211 NICs. Sometimes cheapy realtek. Newer models with N100 are very cool, power usage wise and heat.

But currently I bought ASUS NUC 13 Rugged (BNUC13BRFA400B00IW) to try. Total disaster. It installs fine (some ACPI errors, had to use debug.acpi.disabled=1) . Even works few days. But then all the magic arrives. Whenever you give some load (in my case download even RHEL 5GB iso). WAN stops working. Gateway is offline, no errors, warnings in logs. NIC is online. fw_log incicate that requests sent, but gateway offline.

You can simply unplug wan network cable, and plug it again - everything works again for couple of hours.

CPU: Intel® Atom® x7425E
RAM: 8GB DDR5-4800
2 x Intel® Ethernet Controller I226-V
SSD: tried installing into eMMC and M.2 500GB WD_BLACK SSD
Provider: tried two providers. Both provide FTTH optic. One is using GPON based converter to cooper and DHCP assignment, other standard SFP optic converter and static IP assignment.

Tried disabling pretty much everything in BIOS. No change.