OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • Profile of Timotei79 »
  • Show Posts »
  • Topics
  • Profile Info
    • Summary
    • Show Stats
    • Show Posts...
      • Messages
      • Topics
      • Attachments

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

  • Messages
  • Topics
  • Attachments

Topics - Timotei79

Pages: [1]
1
Hardware and Performance / Sophos SG 450 Rev 1 - LCD - Anyone able to get it to work?
« on: July 10, 2024, 01:06:08 pm »
Hi,
I have a Sophos SG 450 Rev1 with OPNSense on it working flawlessly.
However I would like to use the LCD screen, has anyone had any luck or could someone advise how to go about diagnostics to reverse engineer it to work with LCDProc?

Thanks

2
Hardware and Performance / Repurposed SG450Rev1 - Uplink fails randomly
« on: April 10, 2024, 01:55:55 pm »
Hi,
Could someone suggest how to track down why my uplink to my modem goes down randomly?
Disconnectin and reconnecting the cable works, but I am trying to find out if I have a hardware problem or a software network driver issue causing hanging.

FYI the Sophos Flexiport card NICs are 'I350 Gigabit Network Connection'

Very frustrating!

Thanks in advance.

3
19.1 Legacy Series / OpenVPN:TCP/UDP: Socket bind failed on local address [AF_INET]
« on: June 25, 2019, 11:36:02 am »
Hi all,

hoping someone can point me in the right direction?

Have setup OpenVPN client to use ExpressVPN as per their instructions. It worked a couple of times but now I get the following errors:
Code: [Select]
Jun 25 09:17:12 openvpn[38277]: Exiting due to fatal error
Jun 25 09:17:12 openvpn[38277]: TCP/UDP: Socket bind failed on local address [AF_INET]10.***.0.**:0: Can't assign requested address (errno=49)
Jun 25 09:17:12 openvpn[38277]: Socket Buffers: R=[42080->524288] S=[57344->524288]
Jun 25 09:17:12 openvpn[38277]: TCP/UDP: Preserving recently used remote address: [AF_INET]185.***.110.***:1195
Jun 25 09:17:12 openvpn[38277]: Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Jun 25 09:17:12 openvpn[38277]: Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Jun 25 09:17:12 openvpn[38277]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
Jun 25 09:17:12 openvpn[38277]: MANAGEMENT: unix domain socket listening on /var/etc/openvpn/client1.sock
Jun 25 09:17:12 openvpn[15394]: library versions: OpenSSL 1.0.2s 28 May 2019, LZO 2.10
Jun 25 09:17:12 openvpn[15394]: OpenVPN 2.4.7 amd64-portbld-freebsd11.2 [SSL (OpenSSL)] [LZO] [LZ4] [MH/RECVDA] [AEAD] built on Jun 4 2019
Jun 25 09:17:12 openvpn[15394]: WARNING: file '/var/etc/openvpn/client1.up' is group or others accessible
Jun 25 09:17:12 openvpn[5889]: SIGTERM[hard,] received, process exiting
Jun 25 09:17:10 openvpn[5889]: /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkdown ovpnc1 1500 1557 10.****.0.** 10.***.0.** init
Jun 25 09:17:10 openvpn[5889]: Closing TUN/TAP interface
Jun 25 09:15:10 openvpn[5889]: /usr/local/etc/inc/plugins.inc.d/openvpn/ovpn-linkup ovpnc1 1500 1557 10.***.0.** 10.***.0.** init
Jun 25 09:15:10 openvpn[5889]: /sbin/ifconfig ovpnc1 10.***.0.** 10.***.0.** mtu 1500 netmask 255.255.255.255 up
Jun 25 09:15:10 openvpn[5889]: TUN/TAP device /dev/tun1 opened
Jun 25 09:15:10 openvpn[5889]: TUN/TAP device ovpnc1 exists previously, keep at program end
Jun 25 09:15:10 openvpn[5889]: Incoming Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Jun 25 09:15:10 openvpn[5889]: Outgoing Data Channel: Cipher 'AES-256-GCM' initialized with 256 bit key
Jun 25 09:15:10 openvpn[5889]: Data Channel: using negotiated cipher 'AES-256-GCM'
Jun 25 09:15:10 openvpn[5889]: OPTIONS IMPORT: data channel crypto options modified
Jun 25 09:15:10 openvpn[5889]: OPTIONS IMPORT: adjusting link_mtu to 1629
Jun 25 09:15:10 openvpn[5889]: OPTIONS IMPORT: peer-id set
Jun 25 09:15:10 openvpn[5889]: OPTIONS IMPORT: --ifconfig/up options modified
Jun 25 09:15:10 openvpn[5889]: OPTIONS IMPORT: compression parms modified
Jun 25 09:15:10 openvpn[5889]: OPTIONS IMPORT: timers and/or timeouts modified
Jun 25 09:15:10 openvpn[5889]: Options error: option 'route' cannot be used in this context ([PUSH-OPTIONS])
Jun 25 09:15:10 openvpn[5889]: Options error: option 'dhcp-option' cannot be used in this context ([PUSH-OPTIONS])
Jun 25 09:15:10 openvpn[5889]: Options error: option 'redirect-gateway' cannot be used in this context ([PUSH-OPTIONS])
Jun 25 09:15:10 openvpn[5889]: PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1,dhcp-option DNS 10.***.0.*,comp-lzo no,route 10.***.0.*,topology net30,ping 10,ping-restart 60,ifconfig 10.***.0.** 10.***.0.**,peer-id 26,cipher AES-256-GCM'
Jun 25 09:15:10 openvpn[5889]: SENT CONTROL [Server-4262-1a]: 'PUSH_REQUEST' (status=1)
Jun 25 09:15:08 openvpn[5889]: [Server-4262-1a] Peer Connection Initiated with [AF_INET]185.**.110.***:1195
Jun 25 09:15:08 openvpn[5889]: Control Channel: TLSv1.2, cipher TLSv1/SSLv3 ECDHE-RSA-AES256-GCM-SHA384, 2048 bit RSA
Jun 25 09:15:08 openvpn[5889]: VERIFY OK: depth=0, C=VG, ST=BVI, O=ExpressVPN, OU=ExpressVPN, CN=Server-4262-1a, emailAddress=support@expressvpn.com
Jun 25 09:15:08 openvpn[5889]: VERIFY X509NAME OK: C=VG, ST=BVI, O=ExpressVPN, OU=ExpressVPN, CN=Server-4262-1a, emailAddress=support@expressvpn.com
Jun 25 09:15:08 openvpn[5889]: VERIFY EKU OK
Jun 25 09:15:08 openvpn[5889]: ++ Certificate has EKU (str) TLS Web Server Authentication, expects TLS Web Server Authentication
Jun 25 09:15:08 openvpn[5889]: Validating certificate extended key usage
Jun 25 09:15:08 openvpn[5889]: VERIFY KU OK
Jun 25 09:15:08 openvpn[5889]: VERIFY OK: depth=1, C=VG, ST=BVI, O=ExpressVPN, OU=ExpressVPN, CN=ExpressVPN CA, emailAddress=support@expressvpn.com
Jun 25 09:15:08 openvpn[5889]: WARNING: this configuration may cache passwords in memory -- use the auth-nocache option to prevent this
Jun 25 09:15:08 openvpn[5889]: TLS: Initial packet from [AF_INET]185.**.110.***:1195, sid=88eea284 5df0331e
Jun 25 09:15:08 openvpn[5889]: UDP link remote: [AF_INET]185.**.110.***:1195
Jun 25 09:15:08 openvpn[5889]: UDP link local: (not bound)
Jun 25 09:15:08 openvpn[5889]: Socket Buffers: R=[42080->524288] S=[57344->524288]
Jun 25 09:15:08 openvpn[5889]: TCP/UDP: Preserving recently used remote address: [AF_INET]185.**.110.***:1195
Jun 25 09:15:08 openvpn[5889]: Incoming Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Jun 25 09:15:08 openvpn[5889]: Outgoing Control Channel Authentication: Using 512 bit message hash 'SHA512' for HMAC authentication
Jun 25 09:15:08 openvpn[5889]: NOTE: the current --script-security setting may allow this configuration to call user-defined scripts
IP addresses in above obfuscated.

Reading another post:https://forum.opnsense.org/index.php?topic=6376.0 suggested restarting dpinger, however I cannot find any mention of dpinger in the services, I tried re-installing the package with no luck.

Here is a screenshot of the OpenVPN connection status page:


Completetly stuck and dont know what to do now? HELP!

Pages: [1]
OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2