Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Topics - gh0st

#1
Hi!

Have Wireguard working but one huge problem, with Wireguard enable all javascripts is blocked which is a huge blocker. When I disable Wireguard everything is working as it should.

So the blocker is Wireguard, but I can't see what is causing this issue? Can't find anything on the net either.
#2
So, I'm looking for a solution how to solve this...

We are today using Google Drive for storage of alot of files like most people do.
But, the speed for some files are horrible, and not because of our Internet speed, just Google it and you will see alot of topics about slow speed on Google Drive.

Now I'm looking to cache around 70-100 GB of files either on our FW or a server on our network to speed things up. But is this doable?

Is Squid up for the task or not?
#3
I find it when Googling and ends up here: https://github.com/opnsense/ports/tree/master/net-mgmt. But can't find the package/plugin to install it!  ???
#4
Finally I've found out what's causing the wiped dashboard for me, and that's when the Confirm form resubmission appears and I press Contiune.

When pressing Contiune, the dashboard is wiped completly clean from all widgets and I have to start over! WT*

Why?  :o This happend also on the previous version 18.7.X and now on 19.1.X.
#5
18.7 Legacy Series / Allow Netflix how when using VPN?
January 30, 2019, 09:17:08 PM
Hi all!

So, I'm trying to find a solution to solve this because turning off the VPN is nothing I would like to do.
The Nvidia Shield has static IP, and I followed this guide:


Navigate to Firewall -> Rules -> LAN.
Click Add
Leave everything default except changing the source to your device's static IP and the Gateway to WAN_DHCP (or whatever it's called).  (If you have more than one, create an Alias first in Firewall -> Aliases -> View, click Add.  Type host, add however many lines for however many streaming devices you have, click save, and use that Alias as the source.)
Click Save.


But the Nvidia Shield is still getting the VPN public IP, and not the WAN Gateway from our ISP.  :o

What am I missing?
#6
Hi all!

I'm using Manual outbound NAT rule generation due to OpenVPN, and now I need to solve this small problem because I have an internal server I need to reach using it's domain name.

I can only find solutions for pfSense, and not OPNsense on Google!  :o

Can someone please point me in the right direction to solve this?
#7
18.7 Legacy Series / Completly wiped dashboard by itself!
December 12, 2018, 07:11:52 PM
Evening!

Today when I logged in to my OPNsense box, the dashboard was complete wiped and no widget was available. Need to re-add them again, and don't know what caused this wipe at all!
#8
So, yesterday I was forced to move one of our firewalls and did a proper shutdown, and moved it to the new place. Started it, and no Internet what so ever until I found that all rules for NAT outbound was deleted...

We are using OVPN as our main VPN provider, and we are using NAT outbound rules for it to work.

Can this be a feature implimation to export the rules or not? And why did they get deleted?
#9
Dunno what's wrong, because ICMP rule are working fine when testing. But not when I'm open up port 22 and redirects it to the right server on my network...

Have re-done the rules a couple of times now, but the only rule for me that works is the one for ICMP.
#10
Hi!

Dunno what's the problem is? If it's OPNsense or OpenVPN (OVPN as provider)?
Because each morning we have lost connection to Internet, and are forced to restart the OpenVPN service to get access to it again.

Any clues to solve this? Or how we can do an automatic restart of the service each morning?
#11
Hi!

Using OVPN as our VPN provider, and are now setting it up at another location. The problem is that when changing to Manual outbound NAT rule generation (no automatic rules are being generated), all rules are wiped.

Also, the checkbox to clone them is gone from prev releases!

How do I solve this now?
#12
Hi!

When trying to install OPNsense on a Gen10 it get stucks on:
pci0: <ACPI PCI bus> on pcib0

This is a common problem running thru the BSD-flavours, and is there any fix for this?
#13
Did a fresh install earlier today and during the install I set a new password for root user, but now when I try to login with the password the portal refuse to recognize it.

How come? Wrong keyboard mapping or what?
#14
This has been going on for some while, and with no response from OVPN that is my provider for this I'll hope some ppl on the forum can sort this out...

It all ends up with err_connection_refused in Chrome for some sites, and even thou I have wiped the cache it still throws a err_connection_refused UNTIL i restart the OpenVPN service in OPNsense!  :o
#15
This is a behaviour OPNsense has started to do the latest week...

Nov 4 20:32:32 opnsense: /usr/local/etc/rc.newwanip: On (IP address: 10.128.242.23) (interface: OPT1[opt1]) (real interface: ovpnc1).
Nov 4 20:32:32 opnsense: /usr/local/etc/rc.newwanip: IP renewal is starting on 'ovpnc1'
Nov 4 20:32:32 configd.py: [bce5f636-c7ba-4fd4-b1e8-e90b5387a4a2] rc.newwanip starting ovpnc1
Nov 4 20:32:32 kernel: ovpnc1: link state changed to UP
Nov 4 20:32:30 configd.py: [5e3ce8de-6d8c-4103-aa20-b1321fa8c936] Reloading filter
Nov 4 20:32:30 kernel: ovpnc1: link state changed to DOWN
Nov 4 20:03:48 opnsense: /usr/local/etc/rc.newwanip: On (IP address: 10.128.80.11) (interface: OPT1[opt1]) (real interface: ovpnc1).
Nov 4 20:03:48 opnsense: /usr/local/etc/rc.newwanip: IP renewal is starting on 'ovpnc1'
Nov 4 20:03:48 configd.py: [b2973947-dea0-474e-9de1-1ee4f6d5e78d] rc.newwanip starting ovpnc1
Nov 4 20:03:48 kernel: ovpnc1: link state changed to UP
Nov 4 20:03:46 configd.py: [e6cee557-fa5b-47b7-a853-a8e879f22b06] Reloading filter
Nov 4 20:03:46 kernel: ovpnc1: link state changed to DOWN
Nov 4 19:24:34 opnsense: /usr/local/etc/rc.newwanip: On (IP address: 10.128.194.8) (interface: OPT1[opt1]) (real interface: ovpnc1).
Nov 4 19:24:34 opnsense: /usr/local/etc/rc.newwanip: IP renewal is starting on 'ovpnc1'
Nov 4 19:24:34 configd.py: [304bcb06-9621-4cf5-9957-4b5963a56942] rc.newwanip starting ovpnc1
Nov 4 19:24:34 kernel: ovpnc1: link state changed to UP
Nov 4 19:24:32 configd.py: [4c548643-c6f5-43b9-8100-23acbed4a365] Reloading filter
Nov 4 19:24:32 kernel: ovpnc1: link state changed to DOWN


I'm running the 17.7, and this behaviour was also on the 17.4 before the update.
#16
Hi all!

I'm trying to understand why OPNsense is loosing connectivity to Internet all the time. We are running OpenVPN and we can have connectivity to Internet a couple of days and all of the sudden it looses it completly. To get it back we are forced to reboot it, and then we can use it like it is suppose to be and couple of more days until it looses the Internet again.

Any clues?
#17
17.1 Legacy Series / 2 different configd.py errors!
June 24, 2017, 10:35:36 AM
configd.py: [1f8571d8-3c02-4859-aa24-994a5b429c98] Script action failed with Command 'pkg rquery "%n|||%v|||%c|||%sh|||0|||%L"' returned non-zero exit status 74 at Traceback (most recent call last): File "/usr/local/opnsense/service/modules/processhandler.py", line 477, in execute stdout=output_stream, stderr=error_stream) File "/usr/local/lib/python2.7/subprocess.py", line 541, in check_call raise CalledProcessError(retcode, cmd) CalledProcessError: Command 'pkg rquery "%n|||%v|||%c|||%sh|||0|||%L"' returned non-zero exit status 74

configd.py: [19379ec9-e808-4d76-941c-faac67d2def6] Script action stderr returned "pkg: Repository OPNsense load error: access repo file(/var/db/pkg/repo-OPNsense.sqlite) failed: No such file or directory"

Running the latest updates:
OPNsense 17.1.8-amd64
FreeBSD 11.0-RELEASE-p10
OpenSSL 1.0.2l 25 May 2017
#18
The operation will free 20 MiB.
[1/40] Upgrading ca_root_nss from 3.29.3 to 3.30...
[1/40] Extracting ca_root_nss-3.30: ........ done
pkg-static: Cannot delete vital package: opnsense!
pkg-static: If you are sure you want to remove opnsense,
pkg-static: unset the 'vital' flag with: pkg set -v 0 opnsense
Starting web GUI...done.
Generating RRD graphs...done.
***DONE***


How do we solve this then?  :o
#19
17.1 Legacy Series / Changed GUI ports, no acces anymore!
February 01, 2017, 02:17:52 PM
Running 17.1.r1 and all is nearly 100% fine and working.

Needed to swap ports for the GUI, and replaced the HTTPS first and all worked like a charm.
After I changed to HTTP and 8080, now I can't no longer access the GUI.

The last solution is to wipe and reset it thru the terminal, but as I wrote, it's the last solution.

Any tips?
#20
Hi all!

Have downloaded the OPNsense-16.7-OpenSSL-cdrom-amd64.iso.bz2 and unpacked it. Right now I have losed about 5 DVD+r discs because it refuse to boot on my server.

Downloading the VGA image ATM and are going to test that one! But the image above is a non working for me.