Topics

1

22.7 Production Series / telegraf output bytes send end recv are cummulativ

« on: August 20, 2022, 09:48:21 pm »

Hello
i have activated telegraf the network traffic part

i found out
there is only one port and no label which port it is! Belive it is the WAN Port, hope so!??
then bytes send and recv are cumulativ!
Packets send and recv are cumulativ, too!

but in the opnSense Gui Reporting Traffic the data looks the way i wish

have a nice day
vinc

2

22.7 Production Series / [Solved]Disk Usage 100% /var/log

« on: August 20, 2022, 08:47:08 am »

Hello
in the GUI i have seen

Disk Usage
100% /var/log [tmpfs] (2.0G/2.0G)

is there not a auto merge to not get full of disk space?
is it possible to delete them from the Gui? and where?
is it possible to delete it from cli and how?

have a nice day
vinc

3

22.7 Production Series / [solved] telegraf not starting but also no error found

« on: August 20, 2022, 08:43:15 am »

hello
wished to config telegraf to send some information to my server.

i use influx1.8 and done this
# influx
# show databases
# create database fw03
# create user ufw03 with password 'mypassword'
# show databases
# show users

at the end the database is there.

i did add the parameter above into opnSense - but telegraf is not starting at all.

is there some more do configure on the influxDB?
how to check if connection happen?

the system log give no information.

have a nice day
vinc

4

22.7 Production Series / OPNSense Monitoring with TIG which version to go?

« on: August 15, 2022, 08:50:09 pm »

Hello

for opnSense monitoring i wish to create a VM and Install
TIG =
Telegraf
InfluxDB
Grafana

and of course more if needed.

but opnSense works best white which version?

should i use
InfluxDB 2.3 Open Source
Grafana v9.0.7
Telegraf open source data collector v1.23.3
?
have a nice day
vinc

5

22.1 Legacy Series / Problem FW stop for new connection

« on: June 13, 2022, 08:44:10 pm »

hello
i still have the Problem, PC or iot can't reconnect to the WLAN or LAN itself.
the FW hangs - i also can't login, not by guy nor by serial Port.
only reboot the fw by force - disconect the power, and reboot helps
This happen all 10day or 2 week

OPNsense 22.1.8_1-amd64
FreeBSD 13.0-STABLE
OpenSSL 1.1.1o 3 May 2022


i posted the problem on May
https://forum.opnsense.org/index.php?topic=28235
all update done but still have the Problem

6

General Discussion / delet older files

« on: May 05, 2022, 04:41:56 pm »

Hello
Nothing to do with OpnSense! But maybe some nerds could help

i have a vm with jellyfin watching movies i have e directory filling up with some *.ts files.
until the older are deleted by the system or the disk run full.

is there a command to
find in a directory the oldest not used file and only keep the newest 10 or 20 files?

have a nice day
vinc

7

22.1 Legacy Series / laptop lost conection only FW reset help

« on: May 05, 2022, 04:20:07 pm »

hello
i have a strange problem.
some times i can't login into my network. reboot of the laptop nothing help - but iot device are still working and doing communication - into the lan but also sending telegram without problem.
rebooting the FW help. After this all is fine!

today again
tryed to connect with consol cable but could not login and got a

FreeBSD/amd64 (FW-03) (ttyu0)

login: root
Password:
pid 259 (php), jid 0, uid 0, was killed: out of swap space
pid 199 (opnsense-pam), jid 0, uid 0, was killed: out of swap space

OPNsense 22.1.6-amd64
FreeBSD 13.0-STABLE
OpenSSL 1.1.1n 15 Mar 2022

why this happen since a couple of week - but a couple of year befor never hat this kind of problem?

have a nice time
vinc

8

20.7 Legacy Series / can't Login after update

« on: April 06, 2021, 08:56:50 pm »

hello
i have done the update to
OPNsense 20.7.8_4 (amd64/OpenSSL) ***
but after a long reboot, i can't login
not on the GUI not on the Terminal

how to hack it?

have a nice day
vinc

9

21.1 Legacy Series / error on update

« on: April 06, 2021, 08:53:10 pm »

hello
doing a update to the newest version i got in the Cosole some error

Stopping clamav_freshclam.
Waiting for PIDS: 75595.
>>> Invoking stop script 'backup'
>>> Invoking backup script 'captiveportal'
>>> Invoking backup script 'dhcpleases'
>>> Invoking backup script 'duid'
>>> Invoking backup script 'netflow'
[HBSD SEGVGUARD] [syslog-ng (81489)] Suspending execution for 600 seconds after 5 crashes.
 -> pid: 81489 ppid: 88751 p_pax: 0xa50<SEGVGUARD,ASLR,NOSHLIBRANDOM,NODISALLOWMAP32BIT>
[HBSD SEGVGUARD] [syslog-ng (88751)] Preventing execution due to repeated segfaults.
 -> pid: 88751 ppid: 1 p_pax: 0xa50<SEGVGUARD,ASLR,NOSHLIBRANDOM,NODISALLOWMAP32BIT>

what should i do now?
have a nice day
vinc

10

20.7 Legacy Series / MuninNode not stable working

« on: November 02, 2020, 09:43:25 pm »

Hello

i use the MuninNode plugin which did work nice but since a couple of weeks i stopps working, but not allways and not all parts. see picture added.

there would also be a wish to remove some graphs! As example some removed vlan traffic/error graph.
Or add new added VLAN traffic/error.

OPNsense 20.7.4-amd64
FreeBSD 12.1-RELEASE-p10-HBSD
LibreSSL 3.1.4

11

Web Proxy Filtering and Caching / Starting frontend xxxx: cannot bind socket

« on: November 02, 2020, 09:33:14 pm »

Hello

i wished to add HAProxy to point to a VM on my Setup.
i followed this wonderfull tutorial in German https://schulnetzkonzept.de/opnsense
I think i have done it right but the HAProxy don^t start

/usr/local/etc/rc.d/haproxy: WARNING: failed to start haproxy

i have also a error like

kernel   arp: 32:ea:39:26:d2:c1 attempts to modify permanent entry for 10.147.42.195 on igb1

this ip would be the VM i wish to add to HAProxy

and another error but not sure if it belongs to my HAProxy error

configctl[67179]   error in configd communication Traceback (most recent call last): File "/usr/local/opnsense/service/configd_ctl.py", line 68, in exec_config_cmd line = sock.recv(65536).decode() socket.timeout: timed out

any idea how to find out why HAProxy not start?

have a nice day
vinc

OPNsense 20.7.4-amd64
FreeBSD 12.1-RELEASE-p10-HBSD
LibreSSL 3.1.4

12

20.7 Legacy Series / update problem [HBSD SEGVGUARD]

« on: October 23, 2020, 08:42:51 pm »

Hello
doing a update
the process hangs at this place

Code: [Select]

[63/67] Extracting os-haproxy-2.25: .......... done
Stopping configd...done
Starting configd.
Keep version OPNsense\HAProxy\HAProxy (2.10.0)
Reloading plugin configuration
Configuring system logging...done.
Reloading template OPNsense/HAProxy: OK
Reloading template OPNsense/Syslog: OK
[HBSD SEGVGUARD] [syslog-ng (69496)] Suspending execution for 600 seconds after 5 crashes.
 -> pid: 69496 ppid: 49740 p_pax: 0xa50<SEGVGUARD,ASLR,NOSHLIBRANDOM,NODISALLOWMAP32BIT>
[HBSD SEGVGUARD] [syslog-ng (49740)] Preventing execution due to repeated segfaults.
 -> pid: 49740 ppid: 1 p_pax: 0xa50<SEGVGUARD,ASLR,NOSHLIBRANDOM,NODISALLOWMAP32BIT>
any idea whats the Problem?

have a nice day
vinc

13

20.7 Legacy Series / iot VLAN should not go into the LAN

« on: October 14, 2020, 08:53:18 am »

Hello
i have a WLAN with SSID "iot" on a VLAN 42!
on the opnSense i got the VLAN as network and conected to the LAN Port.
DHCP is giving out IP Adress to the iot SSID from the VLAN 42

Now i have LAN where the computer/laptop are.

now the rule about this vlan should be
1) no access from vlan42 to LAN
2) access from vlan42 to WAN
3) access from LAN to vlan42 (else i can't configure theme)

Thanks for your help and feedback

vinc

14

20.7 Legacy Series / Munin agent broken not all port shown

« on: October 07, 2020, 03:07:40 pm »

Hello
since the Update
the Munin Agent do not send information on new added VLAN "Ports" traffic!
And there is also a function missing to remove old VLAN ID Traffic grafics!

have a nice day
vinc

15

20.7 Legacy Series / opnSense and UCS - Radius/DHCP/VPN rights

« on: August 30, 2020, 05:57:46 pm »

Hello

I have UCS (Univention Corporate Server) running with User Management.
I also run a opnSense FW.

first,
i manage Radius and DHCP on my opnSense, would it be wise to move this function to the UCS itself?
It is possible to hold them on both place like a master and Backup system? if yes how?

Then
i have also the VPN on my opnSense, how to manage the userrights for VPN over UCS and giving the Information to the opnSense, how to add the Certificate back to the user. Goal would be a login into the VPN and get the cert.

How did you solved this challange?

have a nice day
vinc