Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - Meik

Pages: [1]

22.7 Legacy Series / [Fixed] Unbound did not start - how to debug?

« on: August 10, 2022, 03:48:02 pm »

Hello 👋

I have two OPNsense, which only hang with one interface in the network, on which the unbound service no longer starts since the 22.x.
Both installed on a Hyper-V 2012R2 and 2019 host.

Code: [Select]

Date
Severity
Process
Line
2022-08-10T14:24:33	Error	configd.py	[305016fc-62f2-4ec1-8c49-9f09771a06c8] Script action stderr returned "b"pgrep: Cannot open pidfile `/var/run/unbound.pid': No such file or directory""	
2022-08-10T14:24:33	Notice	configd.py	[305016fc-62f2-4ec1-8c49-9f09771a06c8] request Unbound status	
2022-08-10T14:24:28	Debug	configd.py	OPNsense/Unbound/* generated //usr/local/etc/unbound_dhcpd.conf	
2022-08-10T14:24:28	Debug	configd.py	OPNsense/Unbound/* generated //var/unbound/root.hints	
2022-08-10T14:24:28	Debug	configd.py	OPNsense/Unbound/* generated //usr/local/etc/unbound.opnsense.d/miscellaneous.conf	
2022-08-10T14:24:28	Debug	configd.py	OPNsense/Unbound/* generated //usr/local/etc/unbound.opnsense.d/domainoverrides.conf	
2022-08-10T14:24:28	Debug	configd.py	OPNsense/Unbound/* generated //var/unbound/private_domains.conf	
2022-08-10T14:24:28	Debug	configd.py	OPNsense/Unbound/* generated //usr/local/etc/unbound.opnsense.d/dot.conf	
2022-08-10T14:24:28	Debug	configd.py	OPNsense/Unbound/* generated //tmp/unbound-blocklists.conf	
2022-08-10T14:24:28	Notice	configd.py	generate template container OPNsense/Unbound/core	
2022-08-10T14:24:28	Notice	configd.py	[9290ca78-7411-4ef0-976a-28e390648445] generate template OPNsense/Unbound/*	
2022-08-10T00:12:22	Notice	configd.py	[0b216cc1-e978-4b48-8ded-18428ea0abe2] Unbound cache flush	
2022-08-09T20:45:57	Notice	configd.py	[c7bf4753-f82c-4712-aeba-db93fee1cc8b] Unbound cache flush
------------------------
PID
USERNAME
PRI
NICE
SIZE
RES
STATE
C
TIME
WCPU
COMMAND
	14274	root	102	0	32M	19M	CPU0	0	80:30	99.62%	/usr/local/sbin/unbound-checkconf /var/unbound/unbound.conf
	14167	root	52	0	13M	2284K	wait	0	0:00	0.00%	/bin/sh /usr/local/opnsense/scripts/unbound/start.sh
	14121	root	52	0	13M	2144K	wait	0	0:00	0.00%	/usr/local/bin/flock -n -E 0 -o /tmp/unbound_start.lock /usr/local/opnsense/scripts/unbound/start.sh

The Unbound Protocol is empty (cleared, but it comes no new entry's).

Reset to Factory-Default and reconfigure interface only, Unbound did not start.

How to search, why Unbound did not start.

Thanks for help - Meik

18.1 Legacy Series / SIP ALG issue after Upgrade /& Config import, Hyper-V Gen2 runs good!

« on: February 02, 2018, 08:17:51 pm »

Hi there,

I have a Problem with our 3CX after upgrading from 17.7.12 to 18.1.1
The Firewall Checker say SIP ALG failed
--> https://www.3cx.com/docs/firewall-checker/#h.ikh44hto4r56

Before with 17.7.12, no issue.

I have tested:
Upgrade 17.17.12 (on 2016 Hyper-V Gen1) to 18.1.1, failed :-(
Backup and Restore on a new 18.1.1 (on 2016 Hyper-V Gen2), failed :-(

Check the "Firewall, Settings, Advanced, --> Firewall Optimization: conservative", (normally the Thing, where it hangs)

Any ideas?

Thanks, Meik

---

18.x runs von Hyper-V 2016 Gen2 (Secure Boot Disabled, like all Linux Guests) good, no issue in the moment

17.7 Legacy Series / DHCP lease with . (DOT) crashes Unbound DNS if Register DHCP-Leases in DNS...

« on: October 22, 2017, 09:03:53 pm »

Hi @all,

I have a OPNsense with DHCP und Unbound DNS running.

and, I have a DHCP Client (Snom Phone with a . (DOT) in the Name):

unbound: [10850:0] error: error parsing local-data at 16 'Snom-Heavy-C..crasydomain.org IN A 10.1.32.213': Empty Label

Not the best Name (now reconfigured), but this brings the Unbound DNS to Crash, if "Register DHCP-Leases in DNS-Resolver" is enabled.
In the gui I can't remove the entry's (delete the Lease in DHCP not working), the only possible way to bring back Unbound DNS i to deactivate "Register DHCP-Leases in DNS-Resolver".

1. any way to drop the wrong entry to bring back "Register"
2. ToDo: Create a filter to put only valid Names in the DNS

Thansk for Help - Meik

17.7 Legacy Series / FreeBSD freeze at boot, from image it runs fine

« on: September 08, 2017, 09:06:10 pm »

Hi in the round...

if Running OPNsense from image, all fine*, but if installing (mbr/gpt testet) the system freeze on boot at the FreeBSD boot screen.

I'm installing on a KVM-VM over the QEMU-Console

I search around in the issues and forum, but no thing works.
things like Type: set comconsole="efi", ...
at the console befor the FreeBSD boot screen all endless :-(

Thanks - Meik

17.7 Legacy Series / Disable HTTP_REFERER from the Shell

« on: September 08, 2017, 07:29:23 pm »

Hi all,

i would install a 17.7 on a vserver at my Provider.

there is a special, they route the public ip to a private 172.1.1.1
i only have one Network Interface so i set wan to the "Internet" IP.

when i would access the Webinterface this comes:

Quote

The HTTP_REFERER "http://1.2.3.4/" does not match the predefined settings. You can disable this check if needed under System: Settings: Administration.

Is there a way to disable the HTTP_REFERER check from the Shell, or include the "real" secound IP to it?.

Thanks for helping ways :-)
Meik

Pages: [1]