Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Topics - dm

Pages1
#1
21.7 Legacy Series / Webinterface not working properly after migration from 20.1 to 21.7
August 23, 2021, 10:25:25 AM
Hello,

we had opnsense 20.1 running without problems for about over a year, and now I made a fresh install of 21.7 on the same hardware (seccond device with same components) and importet the configuration from 20.1. When I connect to the webinterface it takes about a minute to accept my credentials. I determined, that it takes about a minute to open the Dashboard. Even when I switch from other areas back to it. It also takes about 20 sec. to open any of the the areas unter Firewall -> Rules, over one minute to open Status Overview for IPSec. The rest is fast as before. On 20.1 anything worked without problems. Are there known issues for this migration path or has anyone a idea what could be the problem?

Thanks.
#2
Virtual private networks / OpenVPN Connect - Connection Failed: CA not defined
June 18, 2021, 10:57:56 AM
Hello,

I am trying to make a VPN connection with username, password and client certificate, but when I try to connect I get this message:

Connection Failed
Error Message: ssl_context_error:
OpenSSL Context: CA not defined

This is how the VPN is configured:

On the Opnsense (v 20.1) I have a OpenVPN Server. Servermode is SSL/TLS + User Auth. The interface is the WAN Interface. TLS authentication is active. The right CA is activated.  As server certificate the certificate for the VPN is activated. Certificate depth is One (Client + Server). I added a new user, gave him a password and created a user certificate. Whe I created the user certificate I created an internal certificate with the CA of the VPN and the type client certificate. I exported the archive and importet it in the client. I added the user certificate in the client and in the profile. When I try to connect I get the error. Any ideas what the problem might be. Thanks.

Darius
#3
Hardware and Performance / LACP on 10Gbit Ethernet-Card is only working with promiscuous mode enabled
July 30, 2020, 02:39:54 PM
Hi,

I have a HP Proliant DL 380 Gen9 with 4x Broadcom NetXtreme BCM5719 Gigabit Ethernet (integrated NICs) and 4x Broadcom NetXtreme II BCM57810 10 Gigabit Ethernet (2x Dualport PCIe Cards installed). My switch is HPE FlexNetwork 5130 (JG941A).

I can't get LACP working with the 10Gbit Cards without enabling promiscuous mode in FreeBSD over ifconfig lagg0 promisc. With the 1Gbit Cards it's no Problem. There I do not have to enable promiscuous mode.

I tried two ports of the same 10 Gbit card in one LAGG and one port of each card. In both cases it doesent work. If only one ethernet cable is connectet it doesen't work ether.

Has anyone an idea how to fix this? I am also glad to hear about tips to troubleshoot this issue.

Thanks Darius
Pages1