Messages

1

19.1 Production Series / Re: OPNSense Nano

« on: May 22, 2019, 04:51:34 pm »

It's indeed largely the same. It only has one partition nowadays as chemlud mentions and gained growfs support over the years.

There are no missing features, just other setup defaults.

Be aware of recent inode shortage due to fun with Python 2 + Python 3 in the same image, but there is a test image around.


Cheers,
Franco

2

19.1 Production Series / Re: SQUID + LDAP error since upgrade.

« on: May 22, 2019, 04:47:08 pm »

Hi Nuno,

As I said the code is the same. It simply goes through an additional layer of authentication now which doesn't mean there couldn't be a problem with it. Question is why is there no error? Do you see LDAP queries being sent?

You can test this internally using:

# opnsense-login -s squid -u username


Cheers,
Franco

3

General Discussion / Re: Chromecast between diffrent subnet?

« on: May 22, 2019, 02:42:11 pm »

Hi Mikael,

Try the os-mdns-repeater plugin.


Cheers,
Franco

4

19.1 Production Series / Re: [SOLVED] How to start/stop/restart sshd with Monit in GUI

« on: May 22, 2019, 02:39:00 pm »

Oh, doesn't patch cleanly because of require header stuff....maybe fetch the raw file instead:

# cd /usr/local/sbin
# fetch https://raw.githubusercontent.com/opnsense/core/master/src/sbin/pluginctl
# chmod 755 pluginctl


Cheers,
Franco

5

19.1 Production Series / Re: SQUID + LDAP error since upgrade.

« on: May 22, 2019, 02:36:01 pm »

Hi,

PAM should do the same as auth.php now but with less friction. LDAP is still handled in PHP code and it might be that 19.1.4 -> 19.1.7 leaves the opportunity open for breakage not related to auth.php removal in particular.

You can use "opnsense-revert -r 19.1.6 opnsense" et al to pinpoint the change. That would be helpful to know before proceeding.


Cheers,
Franco

6

19.1 Production Series / Re: BUG: log files views not shown correct after 19.1.8 update

« on: May 21, 2019, 06:45:53 pm »

Small GUI hiccup, mea culpa

https://github.com/opnsense/core/issues/3493

(patch inside)


Cheers,
Franco

7

German - Deutsch / Re: VPN: OpenVPN: Verbindungsstatus

« on: May 21, 2019, 06:44:32 pm »

Hallo,

Müsste https://github.com/opnsense/core/issues/3223 sein -- OpenVPN läuft, aber die PID Datei stimmt nicht.

Ein Fix ist für 19.1.9 geplant...


Grüsse
Franco

8

19.1 Production Series / Re: IGMPv3 (SSM)

« on: May 21, 2019, 06:40:13 pm »

There are no plans because nobody stepped up to do it. I don't have the setup, which made supporting igmpproxy all the more harder over the years. And, personally, I do not wish to repeat that experience with mcproxy.

All help is welcome, starting with mcproxy build testing on FreeBSD... making a port... adding a binary package to OPNsense... building a new plugin and eventually superseding igmpproxy.


Cheers,
Franco

9

Hardware and Performance / Re: performance Intel Atom D525

« on: May 21, 2019, 06:35:13 pm »

While the box has 4 cores the CPU is not very potent. IDS and web proxy will push it to its limits quickly, especially if you want to do AV scanning as well and / or HTTPS interception.


Cheers,
Franco

10

General Discussion / Re: [SOLVED] Problem creating a usb install media

« on: May 21, 2019, 06:33:02 pm »

Fixed it for you:

> A problem still exists with the current VGA.

There is no additional data here and it does not belong into a thread marked as solved not replied to for almost 2 years.


Cheers,
Franco

11

19.1 Production Series / Re: OpenVPN tls-crypt instead of tls-auth

« on: May 21, 2019, 06:30:52 pm »

You can use OpenVPN manually like on FreeBSD with rc.conf and manual config files. The GUI will definitely overwrite its own generated files for safety.

Or open a feature request (if one does not exist yet) describing the config changes that you want to make. It would help a great deal to implement the feature if the user know what needs to be changed in the config.

https://github.com/opnsense/core/issues/new?assignees=&labels=&template=feature_request.md&title=


Cheers,
Franco

12

19.1 Production Series / Re: [SOLVED] strange log file

« on: May 21, 2019, 06:28:58 pm »

No problem, see https://github.com/opnsense/core/issues/3493

# opnsense-patch 95b4ae2

13

General Discussion / Re: no US based HTTPS Mirrors?

« on: May 21, 2019, 06:27:42 pm »

US mirrors might work in HTTPS instead of HTTP. Worth editing the URL to see so change to "(other)" to edit it manually.

That being said HTTPS offers marginal benefits. These do not necessarily include privacy or integrity.

privacy: the contents of the mirror is static, people will be able to figure out what you download and how much of it.

integrity: everything is signed and verified with RSA keys.


Cheers,
Franco

14

19.1 Production Series / Re: strange log file

« on: May 21, 2019, 06:23:39 pm »

It's just a display bug in the GUI. I don't have the reference handy. Will be fixed in 19.1.9.


Sorry for the trouble,
Franco

15

19.1 Production Series / Re: IGMPv3 (SSM)

« on: May 21, 2019, 06:21:50 pm »

Hi there,

I'm also disappointed... merely because there's no contributor here who has both the knowledge and the time to do it. If that is our standard of disappointment and disdain we are truly doomed as the world keeps on turning to mock us ever so subtly.


Cheers,
Franco