All appears to be working, so low priority issue but... on boot it seems to spend an extended amount of time on "Generating /etc/resolv.conf" maybe 1-2minutes, WAN is down during this time.
I don't see any errors, once it gets passed that the wan comes up, but boot sits on "Reconfiguring IPv4 on em0" and again on Reconfiguring IPv6 on em0 for a similar amount of time/delay.
I'm not well versed in the shell but if there's a log file or something that can help with debugging I'll give it a go.
As of 02/19/2020 have upgraded to 20.1 and have had same issue with long delays during boot still with these items. Works fine after boot though.
Running 18.1.12 on generic hardware, recently (sat 7/21) updated from 18.1.9 that was running fine for a month or so. Well, Just a few mins ago users (ie, my family, this is a home / small business deployment) noticed that websites were not responding, quick diagnostic showed I wasn't getting DNS resolution. I logged into the web interface and went to Services \ Unbound DNS \ General and the service start button on the top was Red. I clicked the "play" button and it started and DNS was working fine. I haven't logged into the router and am the only one with access so it wasn't stopped manually.
I then went into the system \ log files \ general and didn't see any error messages but the last one pertaining to DNS was Jul 26 17:29:21 opnsense: /usr/local/etc/rc.dyndns: Dynamic DNS: (Success) IP Address Updated Successfully! which would be a different service so I believe it would be unrelated.
Is there any other log files, perhaps from the shell in var \ log that I can review that might show why the DNS service stopped functioning? I'm not super versed in Unix so might be a simple thing I'm missing.
I've got alerts setup so that I get notified when a wan interface has high latency or goes down. I was curious if there's a way to get the IP Address of the WAN included when it comes back up? 99% of the time it's the same IP but it'd be nice to know if the ISP changes it.
I know I can use Dynamic DNS, I'm not sure I want to expose that I have services running on my network by using that option.
Not a big deal, but I figured someone may know more about scripting than I do that could point me in the right direction if it's even possible.
Finally getting around to trying out a VPN setup, and for my needs IPSEC is what I wanted to use. Following the guide https://wiki.opnsense.org/manual/how-tos/ipsec-road.html when I get to the Phase-2 section it suggests setting the PFS Key Group to "Off" however, there is no "off" option available in my screen. (Under VPN \ IPSEC \ Tunnel Settings \ Phase 2).
I triple checked the other settings were all matching and I'm not sure if that value is going to affect the final results yet, but figured if I'm not doing something wrong I'd post here for documentation update awareness?
I just updated from 17.x to 18.1.2 today and all seems well. Props to all those who worked on this project!
2 Questions:
1) Is there any way to adjust the VGA console resolution? I have tried vidcontrol -i MODE to list alternative modes and none appear in the results (I just the column headers for the modes and nothing else). I have an intel celeron J1800 based device with VGA output. My LCD monitor is aliasing the text pretty badly so it's difficult to read when I do need to use it, regardless of whether or not I use EFI Console or VGA Console in the System: Settings: Administration for primary console and Use the virtual terminal driver (vt) is enabled. I don't want to break future upgrade path by messing with the kernel / boot configurations, but perhaps there is something I missed that may be worth looking into. I'm willing to experiment a bit if it's not too crazy.
2) On a similar path, is there any way to leverage my local VGA console to show log messages or system health / statistics without logging into the console as root and running something like systat -ifstat? I looked into creating a new user account but it seems like I'd need to assign admin level accounts to login to the local console (This is a controlled / personal install and I'm not all that worried about physical security, but I am aware of the risks). Maybe there's another way I'm not familiar. Perhaps best to just leave it alone? Just had to ask as I'm curious.
I'm trying to figure out what's causing a strange crash behavior since I upgraded firmware and packages/etc a couple days ago. I also was setting some NAT Port Forwards around the same time so it could be that, disabling those for now... but the symptom is that I lose access to the GUI, SSH, and local console are all frozen. Some internet services will keep running, for example I could still connect to one PC via team viewer and it could still get on the internet but other devices were offline.
Both crashes happened around 11:30 EST based on a gap in services in the System Health screen.
I had 23days of straight uptime prior to the upgrade 2 days ago and all I adjusted were firewall rules in NAT to enable port forwarding.
Anyway, I don't think anyone will be able to offer any advice on what to do to fix the problem, but what I was looking for was advice on what log files I can review that will go back far enough that I can see what happened prior to the crash OR if there's something I can enable in settings such that it'll archive log files periodically so I don't lose them on a reboot?
Thanks in advance.
[Resolved] System crashed during a reboot, reinstalled software from scratch and seems to be working fine. Not sure if upgrade from web interface may have caused an issue or if internal SSD had errors but there was data corruption issues after reported. I have had close to 4 days uptime since the last reboot after the reinstall. After I did the base install I did all the updates from the shell/ssh login and everything is on the same version as it was when I encountered the issue above. [/End Update]