Messages

Good stuff

Disable said extensions and see if the queries stop. It's almost certain that one of them is the cause. Be careful :)

Services > Router Advertisements:

    Interface: LAN
    Mode: *Unmanaged*

I would roll back to 25.7.11_9, delete your wan mtu and leave it blank, reboot. Then update to 26.1 and re-enter your wan mtu 1508. Maybe there's some shenanigans during the update

I'm on BT PPPOE (Openreach) and just set the wan mtu to 1508 without any issues on websites. Are you on Zen Openreach or Zen City Fibre?

I don't know for sure because I only switched to DNSmasq RA after 26.1. I've since switched back to radvd which fixed all my problems

Are you using DNSmasq Router Advertisements or RADVD? I was seeing some peculiarities on some websites unless I explicity set the RA MTU in DNSmasq. Switch to RADVD (if you're using DNSmasq RA) and see if your issues persist

I don't know if related or not but... https://forum.opnsense.org/index.php?topic=50551.0

Thanks very much for the pointers, I will go through it thoroughly tomorrow.

Ok, thanks meyergru. Leaving it blank (default) gives me issues with Microsoft websites. I would be interested in knowing what the default MTU value is but I'm unable to find any such documentation.

And since dnsmasq dhcp will be the default option for most home networks going forward I think it would be helpful if there was at least a note in the opnsense docs regarding this. Unless I've just run into a bug.

Hello. Today i switched over from radvd to dnsmasq RA but when I try to access any Microsoft website it fails to resolve over ipv6 (i think it eventually falls back to ipv4 and resolves after 30+ secs). Changing the RA MTU in DNSmasq from default (1500?) to 1492, to match my WAN MTU (Calculated PPP MTU) fixes this problem.
So my question is am I correct in thinking DNSmasq RA MTU should match the WAN MTU or are my assumptions wrong here.
Thanks for any help.

Ok, Thanks Franco. I'll just keep an eye on it for now then

Hello and congrats on 26.1 releasing. Thanks for all the hard work!
I'm using radvd with DNSmasq and after updating from 26.1 rc2 my logs are filling up (every minute) with these two radvd warnings that weren't previously there on rc2.

our AdvPreferredLifetime on igb1 for 2a00:23c7:bbbb:d800:: doesn't agree with fe80::bbbb:bbbb:fe67:8b81
our AdvCurHopLimit on igb1 doesn't agree with fe80::bbbb:bbbb:fe67:8b81

Connectivity seems fine, I'm not observing any anomalies. Just wanted to report just in case. I haven't touched router advertisements since rc2. I use 'assisted' mode and everything is as default.

Firefox by default uses DoH (Cloudflare) but can be turned off to use system DNS. May be worth flushing the browser and system dns caches and testing again.

Just wanted to show my appreciation, and my results, from following the docs that even a layman like me could understand. :)

The orange and purple arrows are the latency under load (bufferbloat)
First, my test results without any traffic shaping present
You cannot view this attachment.

My result after following the docs and using the advised -15% BW . I also have Control Plane shaping for ipv6-icmp which has 1mb up and down
You cannot view this attachment.

And lastly, my result after further tweaking (-5% BW) to take some of that bandwidth back
You cannot view this attachment.

It's a great result so thank you to all involved for making this so easy for me to understand and implement!

Cheers