Topics

I'm seeing DNS queries for A and AAAA records for jetstream.tour.in. tour.in doesn't exist. In 'Reporting', it accounted for somewhere around 10 percent of passed domains (making it the largest by far) before I put it in a blocklist. I'm almost certain that I don't have any malware on any of my devices. Has anyone else encountered this domain?

I noticed a couple weeks ago that clients connected to my VLANs weren't receiving IPv6 addresses from my Windows DHCP servers. They do receive IPv4 addresses just fine. I think the Windows DHCP servers are configured correctly, so I'm wondering if there's something wrong with my OPNsense system. I have router advertisements set to 'Managed' for the LAN (clients there get assigned IPv6 addresses without any issues) and the two VLANs. 'Advertise Default Gateway' is checked, no route advertisements are specified, and 'Do not send any DNS configuration to clients' is checked. But, if radvd is set to 'Assisted', 'Unmanaged', or 'Stateless', the VLAN clients will get IPv6 addresses using SLAAC, not through the Windows servers though. DHCRelay is configured with the IPv4 and IPv6 addresses of the two Windows DHCP servers. I use Ubiquiti Networks Unifi switches, and DHCP snooping is disabled for both VLANs. 'Rogue DHCP Server Detection' is also disabled. A packet capture shows that there are DHCPv6 solicitations that are being transmitted from the clients (destination of ff02::1:2). Am I missing something here?

Thanks!

I'm using an AT&T residential gateway in passthrough and am using a DHCPv6 client configuration file override to get a few IPv6 prefix delegations. Since AT&T's gateway device clears all prefix delegations when it is rebooted, I lose IPv6 connectivity until I do a manual reset of the WAN interface in the OPNsense GUI, either by disabling and reenabling the WAN interface, or by doing a quick 'Save' and 'Apply changes'. IPv6 is restored, because the configuration file is reloaded, and OPNsense re-requests the delegations.

Is there any way to have this process happen automatically when OPNsense sees that the WAN connection is dropped and reestablished?

Thanks!

Is anyone else experiencing this? dhcrelay in 24.1.6 is pegged at 100 percent usage. The NIC (igb1) is passed through to the OPNsense VM guest (running on Windows Server 2022 in Hyper-V) and has the LAN plus two VLANs running through it. 'Activity' shows that it is the LAN's dhcrelay process.

I've come over from pfSense, and I was wondering if OPNsense is planning on adding ChaCha20-Poly1305 as a supported IKEv2 cipher suite, and maybe accelerating it using the Intel multi-buffer crypto for IPsec library. I use both Wireguard and IPsec for VPNs.

Hello!

I was trying out OPNSense running under Hyper-V on Windows Server 2022 with an Intel X710-T4L using PCI passthrough for two out of the four ports. I get this error message, and while the system boots, I have no network interfaces:

Code Select Expand

ixl0: PF reset failure I40E_ERR_RESET_FAILED

This occurs with both ixl0 and ixl1 when booting either 23.7 Production, or 24.1 Development. A screenshot is attached.

Is there a way to fix this?

Thanks!