Topics

EDIT2: Turns out this  was a bug. Zenarmor support were fantastic and they released a fix.


EDIT: I was running netmap driver for zenarmor in native mode, I switched to emulated and it's been stable over the last few hours since switching. I suspect there is  more to this, because if the native driver was so broken as to flap a link ever 30 minutes I'm sure it would be a  known issue. For now I have a workaround, but this isn't resolved  really.

LAN interface igb0 flaps every 30 minutes, pretty much to the second. The WAN interface on the same NIC does not flap. It flaps in a tight cluster of 3 or 4 flaps, then is fine for 30 minutes. It's been doing this for at least 1 week.

Additional changes in this timeframe were a Zenarmor install. I don't know if it was doing it prior, it could have been. 

Given the frequency, this doesn't look to be physical, switch port sees no errors of any kind (apart from logging the flaps).

I keep coming across an EEE energy saving feature that may be a cause, but doesn't seem clear (if possible) to disable on 25.x ?

Anything else I can do to troubleshoot this please?
   
igb driver. Dell K9CR1 INTEL I350T4 Quad Port
OPNsense 25.1.9

I suspect I have some malware running within my network. Small home office setup. < 30 devices.

Would Zenarmor help me track this down?

Thinking of going to zenarmor home, have an existing Opensense install, do I have to recreate existing rules in zenarmor or does it layer on top  somehow?

I finally got around to swapping in an i350 'igb' card from an 'em' based card

I had a few gotchas that make sense in hindsight.

I expected to swap my previous card for the i350 card. Knowing the drivers and interface names would be different I planned to connect via the servers onboard NIC I have configured for management.

I found that after swapping the em card for the igb card I could not connect to my management interface. On connecting a monitor and keyboard I realized why

Previous interfaces were em0,em1,em2 and em3 on the EM quad card. The management NIC on the motherboard had been assigned em4. However once the quad port nic em interfaces were no longer there, the management nic got allocated as em0.

My plan was to edit the config following the swap and replace mentions  of em in the config with igb. I just had to do this via a monitor and keyboard as the management nic address changing caught me out. 

Also editing the config file and replacing the nic interfaces worked well.

Currently running a quad Intel 82571EB nic any benefit to switching it for an  I350T4 I have sitting around?

Thinking of trying Zenarmor

Firewall machine is a dedicated Intel i7 7600U with 24gb.

Supports a small home network on 1000/1000 fiber and around 18 client devices. No VPN.

I have a pretty basic setup on 24.1, any war stories or issues on the built in upgrade to be aware of?

I do regular backups.

How should I approach a quad port nic replacement for a different chipset of card? Is it a matter of reassigning the interfaces? I can get back in using the onboard NIC for management, the quad card is used for production traffic.

I have a PPPoE interface that runs on a VLAN, I find after a restart I do not have internet connectivity from the LAN network as the gateway is not selected as the default route.

Once I manually reload the PPPoE interface it then enters the route table internet reachability from the LAN is restored.

Is there some config change I can make to avoid this?