Messages

Hello,
we use two DEC4280 as HA with CARP. I just found out, that all three checkboxes to disable hardware offload are set by default on this factory image. Do you know why?
For the Forum search the full texts:

• Disable hardware checksum offload (i) Checking this option will disable hardware checksum offloading. Checksum offloading is broken in some hardware, particularly some Realtek cards. Rarely, drivers may have problems with checksum offloading and some specific NICs.
• Disable hardware TCP segmentation offload (i) Checking this option will disable hardware TCP segmentation offloading (TSO, TSO4, TSO6). This offloading is broken in some hardware drivers, and may impact performance with some specific NICs.
• Disable hardware large receive offload (i) Checking this option will disable hardware large receive offloading (LRO). This offloading is broken in some hardware drivers, and may impact performance with some specific NICs.

Help site: https://docs.opnsense.org/manual/interfaces_settings.html

okay thank you, that would be okay.
https://github.com/opnsense/plugins/issues/4955

Hi,
we use the OPNsense Bussiness Editon with the Web Application Firewall based on Apache. Our apps need some special headers to work (because of that the setting " Header Security" is set to off).
Is it possible to manual set some headers to increase security?
Strict-Transport-Security, X-Frame-Options, Content-Security-Policy, Referrer-Policy
Thank You!