Messages

Have you solved it?

Ich habe ein Issue angelegt: https://github.com/opnsense/plugins/issues/4574

Wir sehen den Fehler auch - mit tcp-request. In der resultierenden Konfiguration unter /usr/local/etc/haproxy.conf steht dann in dem Frontend-Block:

Code Select Expand

frontend SPT_443
    [...]
    use_backend VM_STAGE_01 if acl_67c5d8cad8ddc7.22108280
    # WARNING: pass through options below this line
    tcp-request inspect-delay 5s
    tcp-request content accept if { req.ssl_hello_type 1 }

HAProxy erwartet wohl use_backend als letzte Zeile in einem Frontend-Block. Das Plugin müsste das lösen.

Thank you, this is much easier then installation of waagent from repo.

Nevertheless, I experience the same behaviour with the package or the latest version from repo. Meanwhile i found out that the static routes to Azure infrastructure was not created by waagent and after setting them manually communication with Hypervisor to mount the virtual cdrom at initial provisioning worked. Some other tweaks where necessary like copying rsa key files from /conf/sshd to /usr/local/etc/ssh otherwise waagent stopped working and tried again 15 seconds later and then the virtual cdrom is not available anymore which results to a problem with the vm in the Azure Portal. Uff.

To summarise, we now have an acceptable working setup, but it doesn't feel very good and clean. 

I have a problem with waagent on my opnsense custom image. Current waagent reports a failure to mount a cdrom:

In the Azure Portal:
OS Provisioning failed for VM 'vm-fw3' due to an internal error: [ProtocolError] [CopyOvfEnv] Error mounting dvd: [OSUtilError] Failed to mount dvd device Inner error: [['mount', '-o', 'ro', '-t', 'udf,iso9660,vfat', '/dev/cd0', '/mnt/cdrom/secure']] returned 1: stdout: stderr: mount_udf: /dev/cd0: Device not configured .

In waagent.log:

2025-03-01T20:39:54.495854Z ERROR Daemon Daemon Event: name=WALinuxAgent, op=Provision, message=Provisioning failed: [ProtocolError] [CopyOvfEnv] Error mounting dvd: [OSUtilError]
 Failed to mount dvd device
Inner error: [['mount', '-o', 'ro', '-t', 'udf,iso9660,vfat', '/dev/cd0', '/mnt/cdrom/secure']] returned 1:
 stdout:

stderr: mount_udf: /dev/cd0: Device not configured

Anyone?

Did you solve this? We currently aim to migrate from pfSense Plus and miss this features. Show stopper.

FreeBSD does support your hardware. With the tunables added. That's just configuration - the default has changed to EFI console.

Yes, you are right.

I added the values to tuneables and rebooted. Serial is still working and /boot/device.hints does still have "isa" and "hint.uart.0.at". I will cross check with and without tuneables.

So current FreeBSD is not supporting older hardware anymore?

Setting this in /boot/device.hint from

hint.uart.0.at="acpi"
hint.uart.1.at="acpi"

to

hint.uart.0.at="isa"
hint.uart.1.at="isa"

fixed the problem for me. I wonder if this file will be overwritten with the next update? I am not very familiar with FreeBSD. Can it be made permanent for my hardware in the OPNsense GUI in System/Settings/Tuneable?

My upgrade to 25.1 (from a 24.7 serial console) worked well on a 2013 Deciso AMD machine. For me it's just the effect with the serial interface in 25.1 that you described.

After an update to 25.1, the serial console is no longer interactive, i.e. I see the output during the boot process, but I cannot log in. There is no prompt, the output stops at 'lo=: link state changed to UP'. It seems that there is a bug in version 25.1. Another person in the german forum reported a simillar issue.

The interactive serial console worked for years up to version 25.1. Now no interaction is possible.

My console settings are as follows:

Console

Console driver
- [y] Use the virtual terminal driver (vt)

Primary Console
- Serial Console

Secondary Console
- VGA Console

Serial Speed
- 115200

USB-based serial
- [n] Use USB-based serial ports

Console menu
- [n] Password protect the console menu

Ich habe das gleiche Problem in einer anderen Situation. Nach einem Update auf 25.1 ist die serielle Console nicht mehr interaktiv, d.h. ich sehe den Output bspw. beim Bootvorgang, kann mich aber nicht anmelden. Es kommt kein Prompt, die Ausgabe bleibt bei "lo=: link state changed to UP" stehen. Es sieht so aus, dass in der Version 25.1 ein Fehler ist.

Zusammengefasst: die interaktiven serielle Konsole funktionierte seit Jahren bis zur Version 25.1. Jetzt ist keine Interaktion mehr möglich.

Meine Console-Settings sind so:

Console

Console driver
- [y] Use the virtual terminal driver (vt)

Primary Console
- Serial Console

Secondary Console 
- VGA Console

Serial Speed
- 115200

USB-based serial
- [n] Use USB-based serial ports

Console menu
- [n] Password protect the console menu

We have a production firewall and a backup firewall which are identically set up. A custom backup script is configured on each system, triggered by a cron job. On the production firewall, the cron job sends a mail. On the backup system, the mail is not being sent.

We cannot find the reason for that. Where in the system is the behavior of cron configured?

Thank you, that worked  8)

After reboot.

Thank you, that worked  8)