Messages

1

General Discussion / Re: Unbound - generate keytag query _ta-4f66. NULL IN

« on: September 17, 2021, 08:42:43 am »

Seen the same log entries on my OPNsense system;

Some how Unbound stopped (RED) and this is in the log when starting at 2021-09-17T06:18:49 from the Dashboard;

2021-09-17T06:21:47   unbound[56365]   dhcpd entry changed bitmanEV.home.loc @ xxx.xxx.xxx.226.   
2021-09-17T06:21:38   unbound[80917]   [80917:2] info: generate keytag query _ta-4f66. NULL IN   
2021-09-17T06:21:38   unbound[80917]   [80917:1] info: generate keytag query _ta-4f66. NULL IN   
2021-09-17T06:21:38   unbound[80917]   [80917:0] info: start of service (unbound 1.13.2).   
2021-09-17T06:21:38   unbound[80917]   [80917:0] notice: init module 1: iterator   
2021-09-17T06:21:38   unbound[80917]   [80917:0] notice: init module 0: validator   
2021-09-17T06:21:34   unbound[95771]   daemonize unbound dhcpd watcher.   
2021-09-17T06:18:49   unbound[70713]   dhcpd entry changed bitmanEV.home.loc @ xxx.xxx.xxx.227.   
2021-09-17T01:00:15   unbound[50772]   [50772:0] info: 32.000000 64.000000 3   
2021-09-17T01:00:15   unbound[50772]   [50772:0] info: 16.000000 32.000000 14   
2021-09-17T01:00:15   unbound[50772]   [50772:0] info: 8.000000 16.000000 12   
2021-09-17T01:00:15   unbound[50772]   [50772:0] info: 4.000000 8.000000 13   
2021-09-17T01:00:15   unbound[50772]   [50772:0] info: 2.000000 4.000000 18   

2

21.1 Legacy Series / OPNsense 21.1.2-amd64 Upgrate gives a WARNING in log file

« on: February 24, 2021, 09:11:25 pm »

when upgrating from OPNsense 21.1.1-amd64 to OPNsense 21.1.2-amd64

seen this warning in the log file

configd not running? (check /var/run/configd.pid).
Starting configd.
Unable to lock on the pidfile.
/usr/local/etc/rc.d/configd: WARNING: failed to start configd
Reloading plugin configuration

is this an issue? or can this safely been ignored?


cheers,

3

21.1 Legacy Series / Re: Intermittent and transient network errors

« on: February 24, 2021, 09:05:09 pm »

4G modem as WAN / broadband

may be have a play with the MTU size?

4

18.1 Legacy Series / Re: How to start the installer script from the DVD iso image?

« on: June 13, 2018, 11:45:11 am »

talking about harsh...

5

Hardware and Performance / Re: opnsense travel router

« on: June 13, 2018, 09:46:51 am »

a Raspberry Pi ?

6

18.1 Legacy Series / Re: How to start the installer script from the DVD iso image?

« on: June 13, 2018, 12:02:13 am »

no, you have to boot the system as a live cd first and then install it... 

7

Dutch - Nederlands / Re: Unbound DNS service restarts meerdere keren per minuut

« on: June 12, 2018, 10:25:09 am »

is de WAN verbinding via DHCP van je provider? kijk eens in je logs om te zien of daar een renew request gedaan word

zelf heb ik TalkTalk en die gasten hebben hun DHCP lease op 480 sec staan (vraag me niet waarom) en dit resulteert in unbound opnieuw te starten. ik heb in unbound de WAN interface verwijderd

just my cents

8

18.1 Legacy Series / Re: New machines on network can't get traffic out for ~5 mins

« on: June 11, 2018, 11:31:49 am »

on your apu2 do you have the nic's in auto negotiate mode? it might be that there is some problem with link negotiation?

just a shot in the dark but you never know

9

Documentation and Translation / Re: Step 1 for "Configure IPv6 Tunnel Broker" fails

« on: June 02, 2018, 12:44:47 pm »

these are my settings to HE;

 Parent interface [WAN]

 GIF remote address [IPv4 address]

 GIF tunnel local address [IPv6 address]

 GIF tunnel remote address [IPv6 address] [/64]

 Description [What ever description]


good luck

10

Hardware and Performance / Re: Atom C3000 - do intel nics work?

« on: May 07, 2018, 11:03:51 pm »

indeed correct, best wait for 11.2

netgate just modded the 11.1 code for their XG-7100 and kept it for them selfs

We backported the C3000 support for hardware we're selling, and it's the only hardware that we have properly vetted the code with. FreeBSD is adding C3000 support to 11.2, so it will be more widely tested there on other hardware by FreeBSD users.

We have not seen any stability issues on the particular hardware in the XG-7100, which is where we've tested it.

11

18.1 Legacy Series / Re: Tunnelbroker IPv6 Issue

« on: April 27, 2018, 10:57:59 pm »

see my floating rule as that takes care of it

12

18.1 Legacy Series / Re: Tunnelbroker IPv6 Issue

« on: April 25, 2018, 02:07:53 pm »

i assume you did read this https://wiki.opnsense.org/manual/how-tos/ipv6_tunnelbroker.html and this https://doc.pfsense.org/index.php/Using_IPv6_with_a_Tunnel_Broker to get some idea's

my OPNsense system has the following Firewall Rules for the HE Tunnel;

 floating rule IPv6 IPv6-ICMP *
 IPv4 ICMP WAN

good luck

13

18.1 Legacy Series / Re: /etc/hosts

« on: April 24, 2018, 08:56:51 am »

to block ad's just use these DNS servers;

2a00:5a60::ad1:0ff

2a00:5a60::ad2:0ff

176.103.130.130

176.103.130.131

from https://adguard.com/en/adguard-dns/overview.html

14

General Discussion / Re: OPNSense with only one ethernet interface ?

« on: April 09, 2018, 07:18:43 pm »

if you got a managed switch at hand? it's called a firewall on a stick https://g33kr.net/how-tos/firewall-on-a-stick/

15

General Discussion / Re: For all ill-intentioned pfsense fans

« on: March 27, 2018, 08:36:23 am »

indeed... not sure if a post like this will do anything...

best to ignore and moderate IMHO