Topics

1

20.7 Legacy Series / [SOLVED] GEOIP blocking no longer working 20.7

« on: July 31, 2020, 11:15:42 pm »

Upgrade appeared to go to plan except for the following rules which used to allow traffic from just a few specific countries now block everything so no external access to my firewall.

I have disabled them and all traffic flows again


EDIT : After re-saving the GOIP alias it started working again 

2

20.1 Legacy Series / Lost WAN Access - 20.1.1

« on: February 21, 2020, 01:22:43 pm »

In the early hours of this morning, I noticed that I had lost WAN access.

When checking my monitoring systems I could see that I was still able to ping my firewall from external locations and all LAN access was as expected. Just no access to the internet.

I signed into the firewall GUI from the LAN and all the gateways and connections were showing as active, but still no WAN access.

I used a serial cable connection to sign in to the console then issued a reboot of from the GUI to see what messages appeared.

Nothing happened.  The console gave no indication the system was rebooting. So I issued console option 6 and the reboot started. However this also hung whilst closing down the processes - Sorry don't remember which point as I then did a power cycle.

During the power cycle, I got a message of "damage tar "repeatedly
So hit control C from the console and the startup completed. Subsequent powerups and restarts have been fine

If from the console I issue

# find . -name *.core

I get

./python3.7.core

Do you want a copy of this core file it's circa 23MB

3

20.1 Legacy Series / Remote Syslog Settings - 20.1.RC

« on: January 27, 2020, 02:27:02 pm »

Can't find anything in the 20.1 release notes but GUI in 19.7 at

System: Settings: Logging had a section for remote syslog

at 20.1.RC its missing and only Local Logging options exist

Did I miss something ?

4

20.1 Legacy Series / 20.1.r_6

« on: January 27, 2020, 11:16:28 am »

As per subject line. I was running dev versions of 20.1

Switch back to Production in GUI and did the upgrade

My console is showing

OPNsense 20.1.r_6-amd64
FreeBSD 11.2-RELEASE-p16-HBSD
OpenSSL 1.1.1d 10 Sep 2019

Is that right ? was expecting rc1

5

19.7 Legacy Series / [Solved] Sonos on VLANS

« on: December 28, 2019, 12:31:56 pm »

So I'm almost there in getting Sonos on a separate VLAN to be controllable via the iPhone app on another VLAN

I found this article https://forum.netgate.com/topic/139218/sonos-speakers-and-applications-on-different-subnets-vlan-s

yes I know its from the darkside

But my only issue is I can only get it to work when I run it in debug mode ie I start pmid with the -d parameter which means it runs in the foreground on the console and fills it with diagnostics messages

Anyone managed to get it working ?

6

19.7 Legacy Series / Ghost gateway issue 19.7.1

« on: July 25, 2019, 05:33:23 pm »

I set up a new gateway for some testing. I created it in GUI and saved it but it did not appear in the gateway list

At first I thought I had not created properly and was about to try again it but dpinger seems to be trying to monitor it see images - gateway marked "Test"

Now I cant figure out how to delete it 

7

19.7 Legacy Series / Upgrade to 19.7 lost ipv6

« on: July 17, 2019, 04:00:13 pm »

After upgrading to 19.7 I still get an IPv6 address on LAN and can ping this IPv6 address from remote locations

However no devices on LAN are being given IPv6 address

I noticed dhcp6d server was not running and is stopped after each reboot until manually started

But even after manually starting dhcp6d server not clients are being given IPv6 address

Cant see anything obvious on logs

EDIT: it appears there is no /etc/dhcp6v.conf file being created anymore suspect thats not helping

EDIT2: clients that had IPv6 before the update have kept them and function correctly although I suspect they will lose that connectivity when the lease expires 


EDIT3: See my workaround in my last post

8

19.7 Legacy Series / [SOLVED] VLAN interfaces

« on: July 10, 2019, 02:35:09 pm »

After upgrade to 19.7.rc1 all my VLANs with the exception of the default LAN where inoperable, no access to them and devices on then not able to reach the internet. No obvious error messages i could see.

Quick save of the effected VLAN interfaces from the console resolved the issue. Any logs I can provide that might help ?

9

19.1 Legacy Series / [SOLVED] WOL plugin error after upgrade to 19.1.5_1

« on: April 05, 2019, 09:49:57 pm »

Getting this error

 [05-Apr-2019 20:47:25 Europe/London] PHP Warning:  count(): Parameter must be an array or an object that implements Countable in /usr/local/www/widgets/widgets/wake_on_lan.widget.php on line 64

Tried a reinstall of the plugin but same issue

10

19.1 Legacy Series / 19.1.2 and LibreSSL

« on: February 28, 2019, 09:08:59 pm »

Trying to break it in light of the release notes and LibreSSL move from 2.7 to 2.8

BUT I CANT !!!

Nice job guys :-)

11

19.1 Legacy Series / [SOLVED] OPENVPN client Export verify-x509 issue

« on: February 04, 2019, 01:05:13 pm »

at 18.7 the VPN client export used

verify-x509-name [FQDN] name

Now it uses

verify-x509-name "/C=GB/ST=[state]/L=[place]/O=[org]/emailAddress=[email]/CN=[FQDN]" subject

this is causing the server to reject the connection

changing back to

verify-x509-name [FQDN] name

and all works again

12

19.1 Legacy Series / [Solved] 19.1.RC Insight Aggregator dumping

« on: January 21, 2019, 08:17:01 pm »

Since upgrading the Insight aggregator stops just after starting and the logs show.

Jan 21 19:13:52   kernel: pid 84883 (python2.7), uid 0: exited on signal 11 (core dumped)
Jan 21 19:13:50   flowd_aggregate.py: start watching flowd
Jan 21 19:12:45   flowd_aggregate.py: startup, check database.

13

18.7 Legacy Series / [SOLVED] IGMPproxy wont start after upgrade from 18.7.6 to 18.7.7

« on: November 12, 2018, 02:09:02 pm »

Get this error - dump report submitted as well

[12-Nov-2018 13:38:53 Europe/Paris] PHP Fatal error:  Uncaught Error: Call to undefined function get_configured_interface_list() in /usr/local/etc/inc/plugins.inc.d/igmpproxy.inc:80
Stack trace:
#0 /usr/local/etc/inc/services.inc(1963): igmpproxy_configure_do()
#1 /usr/local/www/status_services.php(45): service_control_start('igmpproxy', Array)
#2 {main}
  thrown in /usr/local/etc/inc/plugins.inc.d/igmpproxy.inc on line 80

14

18.7 Legacy Series / VPN Multi WAN

« on: October 16, 2018, 11:12:27 pm »

Any reason why I can’t set up a single vpn server that would accept a connection over either wan in multi wan setup ?

Second FTTP connection arrives soon so planning ahead :-)

15

18.7 Legacy Series / Why I'm here and loving every minute - Thank you

« on: August 05, 2018, 06:25:49 pm »

Ok so why this post. Simply to say thank you to @franco and the team here at OPNsense

@Marjohn and I, mainly @Marjohn56 to be fair, had been working on pfSense for a number of months enabling it to work correctly with Orange FTTP in France This meant modifications to dhclient and dhcp6c binaries as well as other tweaks.

Whilst we got it working over at pfSense the acceptance of the changes Marjohn56 made to the binaries was slow and at times almost hard work to get accepted. Add to that the Mods over at pfSense becoming almost confrontational. So @Marjohn56 suggested a move to OPNsense which we made a few months ago. From day 1 our interactions with and interest from @franco began. WOW what a difference. Instead of the indifference, we met with support. So much so that in a short space of time we have move from a pfSense system that required binaries to be replaced and patches after every upgrade to a system on OPNSense that is now fully supports Orange France FTTP without modification.

At no point was @franco dismissive of our ideas in fact he encourage our efforts.

So as of 18.7 I can out of the box connect to Orange France and enjoy my 500/250 connection

Loving it here. Now what can I break :-)