Topics

I have Opnsense 21.1.8_1-amd64 installed on APU2 board. I have also setup working Graylog 4.0.9 server, which I have used to log all messages from different servers and devices.

I tried to get opnsense to send audit and openvpn logs (system ->settings->logging /targets options) to graylog, but it sends only openvpn logs. All other servers are working as expected and those can send logs to graylog, but opnsense doesn't. I have setup opnsense to send logs to syslog UDP input, but only openvpn logs are coming in.

I also noticed that opnsense sends some of the openvpn logs to the graylog. For example it does not send this openvpn log event "openvpn[37083]    USERHERE/IPHERE:PORT SIGTERM[soft,remote-exit] received, client-instance exiting", but this is sent to graylog "openvpn[37083]   MANAGEMENT: CMD 'quit'".

The weird part is that it worked yesterday when I setup remote logging, but after I changed graylog ip address (as the server was moved) it stopped to work and opnsense sent only some of the messages (only openvpn logs).

This is what I have tried so far:
-remove logging and recreate the settings-
-reboot
-restart services

I have attached screenshots of the opnsense setup and events from graylog that are sent to graylog.

I have haproxy running in opnsense system. Opnsense offloads the SSL and passes the connection nextcloud, which is located in the docker container. Is there any possibility to pass real client IP address to this nextcloud setup?

I have Opnsense 19.7 installed on APU2 board. I have also setup working Graylog 2.4.7 server, which I have used to log all messages from different servers for many years.

I now tried to get opnsense to send logs (settings ->logging->remote logging options) to graylog, but it doesn't seem to be sending any logs at all. All other servers are working as expected and those can send logs to graylog, but opnsense doesn't. I have setup opnsense to send logs to syslog UDP input, but nothing is coming in. Any suggestions what I'm doing wrong in here? I also checked opnsense firewall log, but nothing is being sent out to graylog according to those logs.

[nano]

I yesterday tried to install OPNsense to my APU2 board, but got an error message saying "Mounting from ufs:/dev/ufs/OPNsense_Install failed with error 19.". This is what I have tried so far:
-boot from 3 different usb sticks (sandisk, samsung and lexar) all usb sticks had over 1gb space
-tinycore boots ok
-i managed to install opnsense nano image to msata disk with tinycore from usb stick. but i need the full version. Or is there possibility to change nano to full version somehow?
-used command at the boot loader: set kern.cam.boot_delay="10000"
-tried 17.1 and 17.7 amd64 serial images: OPNsense-17.7.5-OpenSSL-serial-amd64.img.bz2 and OPNsense-17.1.4-OpenSSL-serial-amd64.img.bz2.
-I have another APU2 board working, but can't remember which opnsense version I used back then. That board gives same errors with those 3 usb sticks.
-Used DD and win32imager to write the image to usb sticks



<sup>Trying to mount root from ufs:/dev/ufs/OPNsense_Install [ro,noatime]...
mountroot: waiting for device /dev/ufs/OPNsense_Install ...
Mounting from ufs:/dev/ufs/OPNsense_Install failed with error 19.

Loader variables:
  vfs.root.mountfrom=ufs:/dev/ufs/OPNsense_Install
  vfs.root.mountfrom.options=ro,noatime

Manual root filesystem specification:
  <fstype>:<device> [options]
      Mount <device> using filesystem <fstype>
      and with the specified (optional) option list.

    eg. ufs:/dev/da0s1a
        zfs:tank
        cd9660:/dev/acd0 ro
          (which is equivalent to: mount -t cd9660 -o ro /dev/acd0 /)

  ?               List valid disk boot devices
  .               Yield 1 second (for background tasks)
  <empty line>    Abort manual input

mountroot></sup>