"
Hi! Are there any differences between setup MultiWAN according wiki manual and 18.7.2 release? Trying to configure on 18.7.2, but with no success
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages1
#2
18.1 Legacy Series / Can't access Virtual IP subnet with Captive Portal enabled
March 25, 2018, 12:01:29 PM
Hi,
i have 172.16.0.0/21 LAN subnet with enabled Captive Portal for users. LAN interface also have Virtual IP (alias) 10.90.90.89, and I can't access resources in 10.90.90.x subnet from firewall.
Ping output:
After disabling Captive portal everything works fine. Do I need to add some firewall rule enable to bypass Captive Portal for this subnet? Or is there may be some another solution?
i have 172.16.0.0/21 LAN subnet with enabled Captive Portal for users. LAN interface also have Virtual IP (alias) 10.90.90.89, and I can't access resources in 10.90.90.x subnet from firewall.
Ping output:
Code Select
# ping 10.90.90.95
PING 10.90.90.95 (10.90.90.95): 56 data bytes
ping: sendto: Permission denied
ping: sendto: Permission denied
ping: sendto: Permission denied
^C
--- 10.90.90.95 ping statistics ---
3 packets transmitted, 0 packets received, 100.0% packet lossAfter disabling Captive portal everything works fine. Do I need to add some firewall rule enable to bypass Captive Portal for this subnet? Or is there may be some another solution?
#3
16.7 Legacy Series / OPNSense and Munin
October 20, 2016, 09:27:14 PM
Hi all!
It's possible to install (or add package to official repositories of OPNSense) munin-node package in behalf of grab statistics from gateway machine?
It's possible to install (or add package to official repositories of OPNSense) munin-node package in behalf of grab statistics from gateway machine?
#4
16.7 Legacy Series / [SOLVED] Setup NAT for single LAN-user
September 04, 2016, 05:26:30 PM
Hi everyone,
I've OPNsense running as non-transparent proxy server for LAN users, outbound NAT is fully disabled in Settings. How i can enable NAT for certain ip in LAN network? What rules need to add to Firewall? Maybe make some other settings?
Thanks!
I've OPNsense running as non-transparent proxy server for LAN users, outbound NAT is fully disabled in Settings. How i can enable NAT for certain ip in LAN network? What rules need to add to Firewall? Maybe make some other settings?
Thanks!
#5
16.7 Legacy Series / [SOLVED] Squid proxy crashing (unexpected read from basicauthenticator)
August 24, 2016, 09:03:05 AM
Hi,
some days ago Squid proxy began to crash periodically (NOT every day) somewhere about after 1 AM with next entries in cache.log:
...and entries repeating indefinitely. What could be the problem??
Thanks!
some days ago Squid proxy began to crash periodically (NOT every day) somewhere about after 1 AM with next entries in cache.log:
Code Select
2016/08/24 00:01:11 kid1| WARNING: basicauthenticator #Hlpr1334 exited
2016/08/24 00:01:11 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/08/24 00:01:11 kid1| Starting new helpers
2016/08/24 00:01:11 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/08/24 00:01:12 kid1| helperHandleRead: unexpected read from basicauthenticator #Hlpr1335, 325 bytes '
Warning: require_once(script/load_phalcon.php): failed to open stream: No such file or directory in /usr/local/etc/inc/legacy_bindings.inc on line 30
Fatal error: require_once(): Failed opening required 'script/load_phalcon.php' (include_path='.:/usr/local/share/pear') in /usr/local/etc/inc/legacy_bindings.inc on line 30
'
2016/08/24 00:01:12 kid1| WARNING: basicauthenticator #Hlpr1335 exited
2016/08/24 00:01:12 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/08/24 00:01:12 kid1| Starting new helpers
2016/08/24 00:01:12 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/08/24 00:01:12 kid1| helperHandleRead: unexpected read from basicauthenticator #Hlpr1336, 325 bytes '
Warning: require_once(script/load_phalcon.php): failed to open stream: No such file or directory in /usr/local/etc/inc/legacy_bindings.inc on line 30
Fatal error: require_once(): Failed opening required 'script/load_phalcon.php' (include_path='.:/usr/local/share/pear') in /usr/local/etc/inc/legacy_bindings.inc on line 30
'
...and entries repeating indefinitely. What could be the problem??
Thanks!
#6
16.7 Legacy Series / Unexpected packet loss on WAN after 16.7 update
August 01, 2016, 02:28:14 PM
Hi,
today at 3 AM I updated my OPNSense machine to 16.7 from 16.1.20 v and encountered a problem with big packet loss on WAN interface (to H/W router), which has not previously been observed. Router and switch are working normally, users of LAN2 has no problem or packet loss to router; problem started after OPNSense update finished. Attached screenshots show this problem on graphs. Also attached network scheme. What could be the problem?
P.S. SSH connection from Internet to opnsense also very unstable, using of the terminal is very hard...
Thanks!
today at 3 AM I updated my OPNSense machine to 16.7 from 16.1.20 v and encountered a problem with big packet loss on WAN interface (to H/W router), which has not previously been observed. Router and switch are working normally, users of LAN2 has no problem or packet loss to router; problem started after OPNSense update finished. Attached screenshots show this problem on graphs. Also attached network scheme. What could be the problem?
P.S. SSH connection from Internet to opnsense also very unstable, using of the terminal is very hard...
Thanks!
#7
16.7 Legacy Series / [SOLVED] Russian (cyrillic) font is ugly in Dashboard
August 01, 2016, 06:53:12 AM
Hi,
tonight I'm updated my gateway from 16.1.20 to 16.7 version. All services continue works fine, but in Russian interface (cyrillic font) fonts looks very ugly (serif font vs. sans-serif in English version). This bug also was in previous release, but I hoped this bug was fixed in new release. I'v attached screenshot with problem.
Hope that you fix this in the near future.
tonight I'm updated my gateway from 16.1.20 to 16.7 version. All services continue works fine, but in Russian interface (cyrillic font) fonts looks very ugly (serif font vs. sans-serif in English version). This bug also was in previous release, but I hoped this bug was fixed in new release. I'v attached screenshot with problem.
Hope that you fix this in the near future.
#8
16.1 Legacy Series / [SOLVED] Scheduling system upgrade & reboot
July 23, 2016, 11:55:20 AM
Is it possible to schedule the system upgrade and automatically reboot, for example, at 4 o'clock AM? Web interface allows to do this things only by hand, but I need to upgrade gateway while the least number of users accessing to Internet through it.
Thanks!
Thanks!
#9
16.1 Legacy Series / Problems with ipcacheParse in Squid Proxy
May 19, 2016, 10:46:10 AM
Hi,
I have OPNsense 16.1.14-amd64 configured with Squid proxy (latest release - 3.5.19) and constantly views records in cache.log such as:
DNS entries in log not related between themselves. Mainly all works well, but what is the reason of these records? Maybe something configured wrong (e.g. DNS service)?
I have OPNsense 16.1.14-amd64 configured with Squid proxy (latest release - 3.5.19) and constantly views records in cache.log such as:
Code Select
2016/05/19 10:57:41 kid1| ipcacheParse: No Address records in response to 'iphone-ld.apple.com'
2016/05/19 10:50:16 kid1| ipcacheParse: No Address records in response to 'sn3301.storage.live.com'
2016/05/19 10:50:16 kid1| ipcacheParse: No Address records in response to 'sn3301.storage.live.com'
2016/05/19 10:49:28 kid1| ipcacheParse: No Address records in response to 'update.fr1.drweb.com'
2016/05/19 10:49:28 kid1| ipcacheParse: No Address records in response to 'update.fr1.drweb.com'
2016/05/19 10:48:47 kid1| ipcacheParse: No Address records in response to 'update.kz.drweb.com'
2016/05/19 10:43:19 kid1| ipcacheParse: No Address records in response to 'secure-ams.adnxs.com'DNS entries in log not related between themselves. Mainly all works well, but what is the reason of these records? Maybe something configured wrong (e.g. DNS service)?
#10
16.1 Legacy Series / [SOLVED] Problems with Squid proxy (squid.auth-user.php processes)
April 21, 2016, 09:26:57 PM
Just installed OPNsense 16.1.11_1-amd64 on new server and Squid proxy server (3.5.16) configured as Forward Proxy with basic authentication (local database). Everything configured and works well, but i'm confused with following strings fills /var/log/squid/cache.log:
cache.log
Basicauthenticator exited every 1 minute and start again. What is the cause of this strange error?? Please help!
PS. All system packages updated to last versions.
cache.log
Code Select
2016/04/21 22:21:20 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/04/21 22:21:20 kid1| Starting new helpers
2016/04/21 22:21:20 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/04/21 22:21:20 kid1| WARNING: basicauthenticator #Hlpr509 exited
2016/04/21 22:20:20 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/04/21 22:20:20 kid1| Starting new helpers
2016/04/21 22:20:20 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/04/21 22:20:20 kid1| WARNING: basicauthenticator #Hlpr508 exited
2016/04/21 22:19:20 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/04/21 22:19:20 kid1| Starting new helpers
2016/04/21 22:19:20 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/04/21 22:19:20 kid1| WARNING: basicauthenticator #Hlpr507 exited
2016/04/21 22:18:20 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/04/21 22:18:20 kid1| Starting new helpers
2016/04/21 22:18:20 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/04/21 22:18:20 kid1| WARNING: basicauthenticator #Hlpr506 exited
2016/04/21 22:17:20 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/04/21 22:17:20 kid1| Starting new helpers
2016/04/21 22:17:20 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/04/21 22:17:20 kid1| WARNING: basicauthenticator #Hlpr505 exited
2016/04/21 22:16:19 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/04/21 22:16:19 kid1| Starting new helpers
2016/04/21 22:16:19 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/04/21 22:16:19 kid1| WARNING: basicauthenticator #Hlpr504 exited
Basicauthenticator exited every 1 minute and start again. What is the cause of this strange error?? Please help!
PS. All system packages updated to last versions.
Pages1
