Topics

My colo provider just turned on IPv6 and I *THINK* I have everything set up so that OPNSense should advertise the /56 I have.  HOWEVER my FreeBSD boxes sitting behind it are NOT picking up the advertisements.

If I statically assign IPv6's they work.

Is there a known issue on 24.7.3_1?

Every upgrade (not just 24.7.x) times out on the netflow backup.  I'll have to go in and kill the bsdtar/sqlite3 processes.  Is there something to be done here?

***GOT REQUEST TO UPDATE***
Currently running OPNsense 22.7.8 (amd64/OpenSSL) at Sun Nov 20 00:29:06 CST 2022
Updating OPNsense repository catalogue...
OPNsense repository is up to date.
All repositories are up to date.
Updating OPNsense repository catalogue...
OPNsense repository is up to date.
All repositories are up to date.
Checking for upgrades (2 candidates): .. done
Processing candidates (2 candidates): .. done
Checking integrity... done (0 conflicting)
The following 2 package(s) will be affected (of 0 checked):

Installed packages to be UPGRADED:
   bash: 5.2.2_1 -> 5.2.9
   freeradius3: 3.0.25 -> 3.2.1

Number of packages to be upgraded: 2
[1/2] Upgrading freeradius3 from 3.0.25 to 3.2.1...
===> Creating groups.
Using existing group 'freeradius'.
===> Creating users
Using existing user 'freeradius'.
===> Setting user and group in radiusd.conf
[1/2] Extracting freeradius3-3.2.1: .......... done
You should remove /usr/local/etc/raddb if you don't need it any more.
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/libfreeradius-dhcp.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/libfreeradius-dhcp.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/libfreeradius-dhcp.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/libfreeradius-eap.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/libfreeradius-eap.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/libfreeradius-eap.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/libfreeradius-radius.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/libfreeradius-radius.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/libfreeradius-radius.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/libfreeradius-server.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/libfreeradius-server.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/libfreeradius-server.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/proto_dhcp.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/proto_dhcp.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/proto_dhcp.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/proto_vmps.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/proto_vmps.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/proto_vmps.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_always.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_always.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_always.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_attr_filter.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_attr_filter.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_attr_filter.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_cache.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_cache.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_cache.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_cache_rbtree.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_cache_rbtree.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_cache_rbtree.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_chap.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_chap.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_chap.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_counter.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_counter.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_counter.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_cram.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_cram.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_cram.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_date.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_date.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_date.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_detail.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_detail.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_detail.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_dhcp.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_dhcp.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_dhcp.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_digest.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_digest.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_digest.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_dynamic_clients.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_dynamic_clients.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_dynamic_clients.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_fast.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_fast.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_fast.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_gtc.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_gtc.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_gtc.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_md5.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_md5.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_md5.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_mschapv2.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_mschapv2.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_mschapv2.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_peap.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_peap.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_peap.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_pwd.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_pwd.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_pwd.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_sim.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_sim.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_sim.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_tls.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_tls.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_tls.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_ttls.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_ttls.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_eap_ttls.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_exec.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_exec.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_exec.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_expiration.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_expiration.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_expiration.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_expr.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_expr.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_expr.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_files.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_files.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_files.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_ippool.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_ippool.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_ippool.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_krb5.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_krb5.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_krb5.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_ldap.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_ldap.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_ldap.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_linelog.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_linelog.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_linelog.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_logintime.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_logintime.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_logintime.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_mschap.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_mschap.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_mschap.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_otp.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_otp.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_otp.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_pam.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_pam.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_pam.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_pap.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_pap.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_pap.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_passwd.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_passwd.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_passwd.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_perl.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_perl.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_perl.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_preprocess.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_preprocess.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_preprocess.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_radutmp.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_radutmp.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_radutmp.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_realm.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_realm.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_realm.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_replicate.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_replicate.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_replicate.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_soh.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_soh.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_soh.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sometimes.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sometimes.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sometimes.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql_map.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql_map.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql_map.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql_mysql.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql_mysql.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql_mysql.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql_null.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql_null.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql_null.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql_sqlite.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql_sqlite.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sql_sqlite.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sqlcounter.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sqlcounter.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sqlcounter.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sqlippool.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sqlippool.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_sqlippool.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_test.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_test.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_test.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_totp.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_totp.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_totp.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_unix.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_unix.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_unix.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_unpack.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_unpack.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_unpack.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_utf8.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_utf8.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_utf8.so
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_wimax.a
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_wimax.la
freeradius3-3.0.25: missing file /usr/local/lib/freeradius-3.0.25/rlm_wimax.so
freeradius3-3.0.25: missing file /usr/local/share/examples/freeradius/raddb/mods-available/cache_eap
freeradius3-3.0.25: missing file /usr/local/share/examples/freeradius/raddb/mods-available/otp
freeradius3-3.0.25: missing file /usr/local/share/examples/freeradius/raddb/mods-config/sql/main/sqlite/process-radacct-refresh.sh
freeradius3-3.0.25: missing file /usr/local/share/examples/freeradius/raddb/mods-enabled/cache_eap
freeradius3-3.0.25: missing file /usr/local/share/licenses/freeradius3-3.0.25/GPLv2
freeradius3-3.0.25: missing file /usr/local/share/licenses/freeradius3-3.0.25/LICENSE
freeradius3-3.0.25: missing file /usr/local/share/licenses/freeradius3-3.0.25/catalog.mk
pkg-static: Fail to set time on /var/run/radiusd:No such file or directory
Starting web GUI...done.
Generating RRD graphs...done.
***DONE***

In the current 22.1.8 the firewall will NOT allow SSH or HTTPS connections to it's LAN IP Addresses
even though there is an EXPLICIT rule allowing ANY IPv6 from my home block to "THIS FIREWALL" any / any.

This USED TO WORK.

Ideas?

What all do you need from me to diagnose?

FTR: IPv6 beyond the FW works just fine.  It's just access to the FW itself.

root@fw:~ # last -n 20
root       pts/1    76.250.255.117         Wed May 25 16:46   still logged in
root       pts/1    76.250.255.117         Wed May 25 16:46 - 16:46  (00:00)
root       pts/1    2602:fcdb:0:10::53:2   Wed May 25 16:23 - 16:24  (00:00)
ler        pts/1    76.250.255.117         Wed May 25 16:19 - 16:20  (00:00)
ler        pts/1    76.250.255.117         Wed May 25 15:55 - 15:55  (00:00)
root       pts/1    76.250.255.117         Wed May 25 15:24 - 15:25  (00:00)
root       pts/1    76.250.255.117         Wed May 25 15:07 - 15:08  (00:00)
root       pts/1    76.250.255.117         Wed May 25 15:05 - 15:05  (00:00)
root       pts/1    76.250.255.117         Wed May 25 15:03 - 15:04  (00:00)
root       pts/0    2602:fcdb:0:10::53:2   Wed May 25 15:00 - 16:47  (01:46)
root       pts/0    76.250.255.117         Wed May 25 14:54 - 14:55  (00:00)
root       pts/0    76.250.255.117         Wed May 25 12:43 - 12:43  (00:00)
root       pts/0    76.250.255.117         Wed May 25 12:42 - 12:42  (00:00)
root       pts/0    76.250.255.117         Wed May 25 12:41 - 12:41  (00:00)
root       pts/0    76.250.255.117         Wed May 25 12:19 - 12:34  (00:15)
root       pts/0    76.250.255.117         Wed May 25 12:18 - 12:18  (00:00)
shutdown time                              Wed May 25 12:14
root       pts/0    2600:1700:210:b18f:b92 Wed May 25 10:39 - 10:39  (00:00)
root       pts/0    2600:1700:210:b18f:b92 Wed May 25 10:39 - 10:39  (00:00)
root       ttyv0                           Wed May 25 09:05 - 09:07  (00:01)

Note prior to the shutdown, the 2600:1700 addresses, from the SAME mac at home after the reboot
it only works for the IPv4 address.

<SOMETHING> in 22.1.8 broke <SOMETHING>

Update to 1.11.2, and got the following ERRORS:

Resuming Zenarmor packet engine, restarting with the new engine...
eastpect is not running
Starting eastpect.
Registering plug-in to the OPNsense firmware system...done
Done & sync heartbeat ...
Checking integrity... done (0 conflicting)
Deinstallation has been requested for the following 1 packages:

Installed packages to be REMOVED:
   go: 1.18,1

Number of packages to be removed: 1

The operation will free 312 MiB.
[1/1] Deinstalling go-1.18,1...
[1/1] Deleting files for go-1.18,1: .......... done
Checking all packages: .......... done
py37-markupsafe has a missing dependency: python37
py37-markupsafe has a missing dependency: py37-setuptools
py37-markupsafe is missing a required shared library: libpython3.7m.so.1.0

>>> Missing package dependencies were detected.
>>> Found 2 issue(s) in the package database.

pkg-static: No packages available to install matching 'python37' have been found in the repositories
pkg-static: No packages available to install matching 'py37-setuptools' have been found in the repositories
>>> Summary of actions performed:

python37 dependency failed to be fixed
py37-setuptools dependency failed to be fixed

>>> There are still missing dependencies.
>>> Try fixing them manually.

>>> Also make sure to check 'pkg updating' for known issues.
The following package files will be deleted:
   /var/cache/pkg/git-2.35.1~26a1b8de46.txz
   /var/cache/pkg/git-2.35.1.txz
   /var/cache/pkg/p5-Error-0.17029~c0effbc2dd.txz
   /var/cache/pkg/os-sensei-agent-1.11.2.txz
   /var/cache/pkg/p5-Error-0.17029.txz
   /var/cache/pkg/os-sensei-agent-1.11.2~bcfbc97ee6.txz
   /var/cache/pkg/os-sensei-1.11.2~7059f60084.txz
   /var/cache/pkg/os-sensei-1.11.2.txz
The cleanup will free 65 MiB
Deleting files: ........ done
All done
Nothing to do.
Starting web GUI...done.
Generating RRD graphs...done.
***DONE***

What's busted here?

If I try to turn on alias stats, I get a page fault panic.

Textdumps:
https://www.lerctr.org/~ler/stats.crashes.tar.gz

Ideas?

Is there a known issue where eastpect dies on a signal 11 (SIGSEGV)?

This is happening a LOT on my OPNSense.

https://www.lerctr.org/~ler/zenarmor_crash.png

Your zone is DNSSEC signed, but you are missing one key piece, the DS record to validate that
the key with tag 2371, algorithm 13 is a valid key.

If you need help, ping me.

https://dnsviz.net/d/nab.sunnyvalley.cloud/dnssec/

Can I get some help to figure out what's going on?

(I reinstalled OPNSense, and moved where it is located physically)

what all do you need?

I *CAN* grant access if needed/wanted.

I need NO-NAT, but the ability to have firewall rules.  I've looked at past posts, and BELIEVE I've done everything right, but if pf is enabled, it does NOT pass traffic.  If I disable pf it works fine.

HELP.

attached is the current state

How can I force pkg -4 for the updates?

I finally got to the bottom of my IPv6 all of a sudden NOT working from my LAN.  If I turn OFF the Zenarmor Packet Engine it works as it's supposed to. if I turn ON the Packet Engine, my IPv6 doesn't work any more.

I filed a bug report from the UI, but wanted to post here as well.

With the latest fun & frolic from Log4Shell, is/are there any rules/help from Sensei/Zenarmor?

2021-12-17T16:56:10   config[94229]   [2021-12-17T16:56:10-06:00][error] Model OPNsense\AcmeClient\AcmeClient can't be saved, skip ( Phalcon\Validation\Exception: [OPNsense\AcmeClient\AcmeClient:validations.validation.40427357-883c-4c8c-8df2-b023ff9fd31f.tlsalpn_acme_interface] option not in list
2021-12-17T16:56:10   config[94229]   [2021-12-17T16:56:10-06:00][error] [OPNsense\AcmeClient\AcmeClient:validations.validation.40427357-883c-4c8c-8df2-b023ff9fd31f.tlsalpn_acme_interface] option not in list
2021-12-17T16:56:06   config[13249]   [2021-12-17T16:56:06-06:00][error] Model OPNsense\AcmeClient\AcmeClient can't be saved, skip ( Phalcon\Validation\Exception: [OPNsense\AcmeClient\AcmeClient:validations.validation.40427357-883c-4c8c-8df2-b023ff9fd31f.tlsalpn_acme_interface] option not in list
2021-12-17T16:56:06   config[13249]   [2021-12-17T16:56:06-06:00][error] [OPNsense\AcmeClient\AcmeClient:validations.validation.40427357-883c-4c8c-8df2-b023ff9fd31f.tlsalpn_acme_interface] option not in list

What do I need to do here?

I have allow IPv6 any to any set, and I can get a session established from outside to inside, but outbound seems to be blocked <SOMEWHERE>

How can I diagnose this?

this is on ATT Fiber, and it used to work.

21.7.6

It says it made a core dump, but I don't see one.  Anyone else seeing this?

I have a Protectli FW6B (I3-7100U/8G memory, 250G SSD) running the latest OPNSense.  Will Zenarmor work at a full gigabit line rate with this box?  The nic's are em driver.

Any gotchas? 

I do have another server I can offload the Elasticsearch to.

the page you direct to from this help page doesn't have the info anymore.  Where can I get the info for what is needed?

2021-10-18T16:39:25   opnsense[32558]   /status_services.php: Warning! dhcpd_dhcp6_configure() found no suitable IPv6 address on opt1   
2021-10-18T16:39:25   opnsense[32558]   /status_services.php: Warning! dhcpd_dhcp6_configure() found no suitable IPv6 address on opt3   
2021-10-18T16:38:43   dhcp6c[52920]   child: exec failed: Bad address   
2021-10-18T16:38:43   opnsense[63681]   plugins_configure newwanip (execute task : webgui_configure_do(,opt5))   
2021-10-18T16:38:43   opnsense[63681]   plugins_configure newwanip (execute task : vxlan_configure_interface())   
2021-10-18T16:38:42   opnsense[63681]   plugins_configure newwanip (execute task : unbound_configure_do(,opt5))   
2021-10-18T16:38:42   opnsense[63681]   /usr/local/etc/rc.newwanipv6: Dynamic DNS: Not updating home.lerctr.org A record because the IP address has not changed.   
2021-10-18T16:38:42   opnsense[63681]   /usr/local/etc/rc.newwanipv6: Dynamic DNS: Not updating home-fw.lerctr.org A record because the IP address has not changed.

What else do I need to supply?

I'm trying to follow this article:
https://forums.att.com/conversations/att-internet-email-security/ipv6-wan-address-125-block/60206fe564100a03adc851bc?page=2

and have the following dhcp6c.conf:
# Setup requests for the WAN interface.
interface em4 {
   # Request a single IPv6 address for WAN interface (RG responds with 2600:1702:xxxx:yyy0::48)
   send ia-na 10;
   # Request 8x /64 prefix delegations:
   send ia-pd 0;
   send ia-pd 1;
   send ia-pd 2;
   send ia-pd 3;
   send ia-pd 4;
   send ia-pd 5;
   send ia-pd 6;
   send ia-pd 7;
   send rapid-commit;
   request domain-name-servers;
   request domain-name;
   script "/var/etc/dhcp6c_opt5_script.sh";
   #script "/conf/set_wan_static_v6.sh";
};
# These blocks are required, and I should probably
# assign the prefixes to the LAN interfaces here.
# Since my /60 has not changed since I implemented
# this, I treat them as static and assign them as such.
id-assoc na 10 { };
id-assoc pd 0 {
   prefix-interface em0 {
      sla-id 8;
      sla-len 8;
   };
};
id-assoc pd 1 { };
id-assoc pd 2 { };
id-assoc pd 3 { };
id-assoc pd 4 { };
id-assoc pd 5 { };
id-assoc pd 6 { };
id-assoc pd 7 { };
#

the em0 interface doesn't seem to get an IPv6 address, and I'm not 100% certain I'm actually getting the PD.

Can anyone help me with:
1) how do I get dhcp6c to log something?
2) what am I missing?
3) getting radvd configured and running.

Thanks, as always.
21.7.3_1