Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Topics - denmmx

#1
18.7 Legacy Series / MultiWAN setup 18.7.2
September 21, 2018, 10:06:55 AM
Hi! Are there any differences between setup MultiWAN according wiki manual and 18.7.2 release? Trying to configure on 18.7.2, but with no success
#2
Hi,
i have 172.16.0.0/21 LAN subnet with enabled Captive Portal for users. LAN interface also have Virtual IP (alias) 10.90.90.89, and I can't access resources in 10.90.90.x subnet from firewall.

Ping output:
# ping 10.90.90.95
PING 10.90.90.95 (10.90.90.95): 56 data bytes
ping: sendto: Permission denied
ping: sendto: Permission denied
ping: sendto: Permission denied
^C
--- 10.90.90.95 ping statistics ---
3 packets transmitted, 0 packets received, 100.0% packet loss


After disabling Captive portal everything works fine. Do I need to add some firewall rule enable to bypass Captive Portal for this subnet? Or is there may be some another solution?
#3
16.7 Legacy Series / OPNSense and Munin
October 20, 2016, 09:27:14 PM
Hi all!
It's possible to install (or add package to official repositories of OPNSense) munin-node package in behalf of grab statistics from gateway machine?
#4
Hi everyone,

I've OPNsense running as non-transparent proxy server for LAN users, outbound NAT is fully disabled in Settings. How i can enable NAT for certain ip in LAN network? What rules need to add to Firewall? Maybe make some other settings?

Thanks!
#5
Hi,
some days ago Squid proxy began to crash periodically (NOT every day) somewhere about after 1 AM with next entries in cache.log:

2016/08/24 00:01:11 kid1| WARNING: basicauthenticator #Hlpr1334 exited
2016/08/24 00:01:11 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/08/24 00:01:11 kid1| Starting new helpers
2016/08/24 00:01:11 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/08/24 00:01:12 kid1| helperHandleRead: unexpected read from basicauthenticator #Hlpr1335, 325 bytes '
Warning: require_once(script/load_phalcon.php): failed to open stream: No such file or directory in /usr/local/etc/inc/legacy_bindings.inc on line 30

Fatal error: require_once(): Failed opening required 'script/load_phalcon.php' (include_path='.:/usr/local/share/pear') in /usr/local/etc/inc/legacy_bindings.inc on line 30
'
2016/08/24 00:01:12 kid1| WARNING: basicauthenticator #Hlpr1335 exited
2016/08/24 00:01:12 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/08/24 00:01:12 kid1| Starting new helpers
2016/08/24 00:01:12 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/08/24 00:01:12 kid1| helperHandleRead: unexpected read from basicauthenticator #Hlpr1336, 325 bytes '
Warning: require_once(script/load_phalcon.php): failed to open stream: No such file or directory in /usr/local/etc/inc/legacy_bindings.inc on line 30

Fatal error: require_once(): Failed opening required 'script/load_phalcon.php' (include_path='.:/usr/local/share/pear') in /usr/local/etc/inc/legacy_bindings.inc on line 30
'


...and entries repeating indefinitely. What could be the problem??
Thanks!
#6
Hi,
today at 3 AM I updated my OPNSense machine to 16.7 from 16.1.20 v and encountered a problem with big packet loss on WAN interface (to H/W router), which has not previously been observed. Router and switch are working normally, users of LAN2 has no problem or packet loss to router; problem started after OPNSense update finished. Attached screenshots show this problem on graphs. Also attached network scheme. What could be the problem?

P.S. SSH connection from Internet to opnsense also very unstable, using of the terminal is very hard...

Thanks!
#7
Hi,
tonight I'm updated my gateway from 16.1.20 to 16.7 version. All services continue works fine, but in Russian interface (cyrillic font) fonts looks very ugly (serif font vs. sans-serif in English version). This bug also was in previous release, but I hoped this bug was fixed in new release. I'v attached screenshot with problem.
Hope that you fix this in the near future.
#8
Is it possible to schedule the system upgrade and automatically reboot, for example, at 4 o'clock AM? Web interface allows to do this things only by hand, but I need to upgrade gateway while the least number of users accessing to Internet through it.
Thanks!
#9
Hi,
I have OPNsense 16.1.14-amd64 configured with Squid proxy (latest release - 3.5.19) and constantly views records in cache.log such as:

2016/05/19 10:57:41 kid1| ipcacheParse: No Address records in response to 'iphone-ld.apple.com'
2016/05/19 10:50:16 kid1| ipcacheParse: No Address records in response to 'sn3301.storage.live.com'
2016/05/19 10:50:16 kid1| ipcacheParse: No Address records in response to 'sn3301.storage.live.com'
2016/05/19 10:49:28 kid1| ipcacheParse: No Address records in response to 'update.fr1.drweb.com'
2016/05/19 10:49:28 kid1| ipcacheParse: No Address records in response to 'update.fr1.drweb.com'
2016/05/19 10:48:47 kid1| ipcacheParse: No Address records in response to 'update.kz.drweb.com'
2016/05/19 10:43:19 kid1| ipcacheParse: No Address records in response to 'secure-ams.adnxs.com'


DNS entries in log not related between themselves. Mainly all works well, but what is the reason of these records? Maybe something configured wrong (e.g. DNS service)?

#10
Just installed OPNsense 16.1.11_1-amd64 on new server and Squid proxy server (3.5.16) configured as Forward Proxy with basic authentication (local database).  Everything configured and works well, but i'm confused with following strings fills /var/log/squid/cache.log:

cache.log

2016/04/21 22:21:20 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/04/21 22:21:20 kid1| Starting new helpers
2016/04/21 22:21:20 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/04/21 22:21:20 kid1| WARNING: basicauthenticator #Hlpr509 exited
2016/04/21 22:20:20 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/04/21 22:20:20 kid1| Starting new helpers
2016/04/21 22:20:20 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/04/21 22:20:20 kid1| WARNING: basicauthenticator #Hlpr508 exited
2016/04/21 22:19:20 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/04/21 22:19:20 kid1| Starting new helpers
2016/04/21 22:19:20 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/04/21 22:19:20 kid1| WARNING: basicauthenticator #Hlpr507 exited
2016/04/21 22:18:20 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/04/21 22:18:20 kid1| Starting new helpers
2016/04/21 22:18:20 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/04/21 22:18:20 kid1| WARNING: basicauthenticator #Hlpr506 exited
2016/04/21 22:17:20 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/04/21 22:17:20 kid1| Starting new helpers
2016/04/21 22:17:20 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/04/21 22:17:20 kid1| WARNING: basicauthenticator #Hlpr505 exited
2016/04/21 22:16:19 kid1| helperOpenServers: Starting 1/20 'squid.auth-user.php' processes
2016/04/21 22:16:19 kid1| Starting new helpers
2016/04/21 22:16:19 kid1| Too few basicauthenticator processes are running (need 1/20)
2016/04/21 22:16:19 kid1| WARNING: basicauthenticator #Hlpr504 exited


Basicauthenticator exited every 1 minute and start again. What is the cause of this strange error?? Please help!
PS. All system packages updated to last versions.