"
Thanks so much!!
I know this is a dumb question but if I don't use DHCPD?
I know this is a dumb question but if I don't use DHCPD?
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#2
High availability / Re: Is is possible to convert this setup to HA?
June 19, 2025, 12:21:30 AM
Thanks!
#3
High availability / Is is possible to convert this setup to HA?
June 18, 2025, 06:20:42 AM
I currently use Opnsense and have been for over a year. Previously I used Pfsense. The OPnsense setup is a VM and works great.
Currently, the Opnsense VM serves as the internet gateway for our network. It also has two public facing IP addresses. One is the WAN and one is a virtual IP address.
The two public IP addresses are static IP addresses and both have ports forwarded to internal devices.
These are the fictitious addresses:
LAN = 192.168.1.50
WAN=12.345.67/24
WAN2 (virtual IP)= 12.345.68/24
I don't have a third public ip address available.
Currently I have this VM installed on two hosts with identical setups. I can start one and it works, I can then stop it and start the other and it works. I just want to have it so that if one dies, the other will take over and vice versa.
Is that possible?
Thanks!
Currently, the Opnsense VM serves as the internet gateway for our network. It also has two public facing IP addresses. One is the WAN and one is a virtual IP address.
The two public IP addresses are static IP addresses and both have ports forwarded to internal devices.
These are the fictitious addresses:
LAN = 192.168.1.50
WAN=12.345.67/24
WAN2 (virtual IP)= 12.345.68/24
I don't have a third public ip address available.
Currently I have this VM installed on two hosts with identical setups. I can start one and it works, I can then stop it and start the other and it works. I just want to have it so that if one dies, the other will take over and vice versa.
Is that possible?
Thanks!
#4
25.1, 25.4 Production Series / Lockup: Kernel error netmap_transmit full hwcur 411 hwtail 411 qlen 1023
June 11, 2025, 03:40:16 PM
Last week, my OPensense VM locked up tight as a drum. When I looked at the VM, errros similar to below were flying by:
2025-06-07T09:55:48-04:00 Notice kernel 548.746013 [4335] netmap_transmit em1 full hwcur 411 hwtail 411 qlen 1023
2025-06-07T09:55:48-04:00 Notice kernel 547.903036 [4335] netmap_transmit em1 full hwcur 411 hwtail 411 qlen 1023
2025-06-07T09:55:47-04:00 Notice kernel 547.324230 [4335] netmap_transmit xem1 full hwcur 411 hwtail 411 qlen 1023
I rebooted the VM and all was well.
Yesterday it happened again.
I run Zenarmor on the LAN and Suricata on the WAN.
Ive been using this same VM for almost a year and it has always worked great.
This info is on the dashboard
Versions
OPNsense 25.1.7_4-amd64
FreeBSD 14.2-RELEASE-p3
OpenSSL 3.0.16
Memory = 36.25%
Disk = 14%
Firewall states = 0.20%
Any ideas?
Thanks!
2025-06-07T09:55:48-04:00 Notice kernel 548.746013 [4335] netmap_transmit em1 full hwcur 411 hwtail 411 qlen 1023
2025-06-07T09:55:48-04:00 Notice kernel 547.903036 [4335] netmap_transmit em1 full hwcur 411 hwtail 411 qlen 1023
2025-06-07T09:55:47-04:00 Notice kernel 547.324230 [4335] netmap_transmit xem1 full hwcur 411 hwtail 411 qlen 1023
I rebooted the VM and all was well.
Yesterday it happened again.
I run Zenarmor on the LAN and Suricata on the WAN.
Ive been using this same VM for almost a year and it has always worked great.
This info is on the dashboard
Versions
OPNsense 25.1.7_4-amd64
FreeBSD 14.2-RELEASE-p3
OpenSSL 3.0.16
Memory = 36.25%
Disk = 14%
Firewall states = 0.20%
Any ideas?
Thanks!
#5
Zenarmor (Sensei) / Zenarmor block google
February 23, 2025, 07:52:09 PM
I'm testing Zenarmor. AD DNS forwards dns requests to Opnsense which is running Zenarmor. As soon as Zenarmor starts, it will no machines can resolve google.com (or www.google.com); you can't go there with a browser nor can you ping it. If I stop Zenarmor, google.com starts working again.
If I log into Zenarmor and go to live sessions, there is nothing under threats or blocks that shows it being blocked.
If I log into Zenarmor and go to live sessions, there is nothing under threats or blocks that shows it being blocked.
Pages1
