"
I am a noob. The problem is that I have to do a power switch to reset WG. How do I reset WG more easily? Somethings I have to do several reboots to get WG connect.
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
#2
25.1, 25.4 Production Series / Wireguard widget
April 11, 2025, 05:23:58 PM
How do restart wireguard from the dashboard lobby widget?
#3
General Discussion / Re: ssh not working
November 23, 2024, 03:57:38 PM
Fixed. Surricata was blocking the ssh connection.
#4
General Discussion / ssh not working
November 22, 2024, 04:10:51 PM
24.7.9_1 I can longer putty in,
If I reset to factory settings and enable ssh, there are no problems.
Diffed current *.ml and factory *.xml and looked at the ssh section. There are no diffrences.
Used the following settings:
System -> Settings -> Administration -> Secure Shell is enabled and LAN is in the "Listen Interfaces".
System: Log Files: Audit
2024-11-22T09:53:37-05:00 Error sshd-session error: kex_exchange_identification: read: Operation timed out
2024-11-22T09:51:43-05:00 Notice audit user root@10.59.11.213 changed configuration to /conf/backup/config-1732287103.1748.xml
in /api/syslog/settings/set /api/syslog/settings/set made changes
2024-11-22T09:51:40-05:00 Error sshd-session error: kex_exchange_identification: read: Operation timed out
Yes, I am running wireguard,surricata,zenarmour, and adguard.
Never had issues ssh into opnsense.
If I reset to factory settings and enable ssh, there are no problems.
Diffed current *.ml and factory *.xml and looked at the ssh section. There are no diffrences.
Used the following settings:
System -> Settings -> Administration -> Secure Shell is enabled and LAN is in the "Listen Interfaces".
System: Log Files: Audit
2024-11-22T09:53:37-05:00 Error sshd-session error: kex_exchange_identification: read: Operation timed out
2024-11-22T09:51:43-05:00 Notice audit user root@10.59.11.213 changed configuration to /conf/backup/config-1732287103.1748.xml
in /api/syslog/settings/set /api/syslog/settings/set made changes
2024-11-22T09:51:40-05:00 Error sshd-session error: kex_exchange_identification: read: Operation timed out
Yes, I am running wireguard,surricata,zenarmour, and adguard.
Never had issues ssh into opnsense.
#5
Zenarmor (Sensei) / Re: 1.18 Wireguard is disconnected
November 02, 2024, 12:24:12 PM
Is my deployment mode and WG interface selection correct? On the lan, I am using intrusion detection with Surricata.
#6
Virtual private networks / Monit WG does not start
October 13, 2024, 06:17:14 PM
Updated to 24.7
WG goes into loop and need to use monit
Followed the link
https://forum.opnsense.org/index.php?topic=35919.0
I needed to use lower case 's' and not upper case
/usr/local/sbin/pluginctl -S wireguard
Start: /bin/sh -c '/usr/local/sbin/pluginctl -s wireguard start xxxx-xx-tt-yy-uuuuuuu'
Stop: /bin/sh -c '/usr/local/sbin/pluginctl -s wireguard stop xxxx-xx-tt-yy-uuuuuuu'
I get a monit status error
Any suggestion ?
WG goes into loop and need to use monit
Followed the link
https://forum.opnsense.org/index.php?topic=35919.0
I needed to use lower case 's' and not upper case
/usr/local/sbin/pluginctl -S wireguard
Start: /bin/sh -c '/usr/local/sbin/pluginctl -s wireguard start xxxx-xx-tt-yy-uuuuuuu'
Stop: /bin/sh -c '/usr/local/sbin/pluginctl -s wireguard stop xxxx-xx-tt-yy-uuuuuuu'
I get a monit status error
Any suggestion ?
#7
Virtual private networks / Re: WireGuard -> Tunnel status information for automatic restart by monit
October 12, 2024, 02:34:12 PM
How did u setup the WG monitor? I used this link
https://forum.opnsense.org/index.php?topic=35919.0
https://forum.opnsense.org/index.php?topic=35919.0
#8
24.1, 24.4 Legacy Series / Audit health log error(?)
May 04, 2024, 05:49:51 PM
I am getting an error in the audit health log. What is it?
Running wireguard, intrusion detection,zenarmour.
It was not there after I started from 24_1-> 24_1_6. Only after I restored my Opnsense-config.xml file
>>> Check for missing or altered base files
Error 2 occurred.
etc/sysctl.conf:
size (299, 364)
sha256digest (0x45f469e7a9b4eef887bab7b55397305043fe101e1d6ce6f7e23d758e72f56dc6, 0x69344d6e7acbd6e60e93c10865e489c54293af7143ef5cc58127aa67175d0dd2)
>>> Check installed repositories
Running wireguard, intrusion detection,zenarmour.
It was not there after I started from 24_1-> 24_1_6. Only after I restored my Opnsense-config.xml file
>>> Check for missing or altered base files
Error 2 occurred.
etc/sysctl.conf:
size (299, 364)
sha256digest (0x45f469e7a9b4eef887bab7b55397305043fe101e1d6ce6f7e23d758e72f56dc6, 0x69344d6e7acbd6e60e93c10865e489c54293af7143ef5cc58127aa67175d0dd2)
>>> Check installed repositories
#10
Hardware and Performance / WiFi 7 PCI-e card
March 12, 2024, 11:56:23 PM
Has anyone tried to integrate this wifi 7 card into their opnsense system?
Just found this amazing item on AliExpress. Check it out! $29.87 | Comfast 8774Mbps WiFi 7 Intel BE200 Pcie Wireless Wifi Adapter Bluetooth 5.4 Tri Band 2.4G/5G/6GHz Wifi7 Card Win10/11 Linux
https://a.aliexpress.com/_mrvOh70
Just found this amazing item on AliExpress. Check it out! $29.87 | Comfast 8774Mbps WiFi 7 Intel BE200 Pcie Wireless Wifi Adapter Bluetooth 5.4 Tri Band 2.4G/5G/6GHz Wifi7 Card Win10/11 Linux
https://a.aliexpress.com/_mrvOh70
#11
24.1, 24.4 Legacy Series / Re: 24.1 - DHCP server moves to KEA - implications?
March 12, 2024, 07:28:00 PM
Hansen97124
Is it in between <reservations> and </reservations> tags?
Does the reservations show up in the kea reservation gui?
Are u sure the reservation subnet uuid is correct for your network?
Search on the subbnet uuid. 19b11319-3d95-40c0-8668-56b15a05a6c0
It should match ur network u declared earlier.
Is it in between <reservations> and </reservations> tags?
Does the reservations show up in the kea reservation gui?
Are u sure the reservation subnet uuid is correct for your network?
Search on the subbnet uuid. 19b11319-3d95-40c0-8668-56b15a05a6c0
It should match ur network u declared earlier.
#12
24.1, 24.4 Legacy Series / Re: 24.1 - DHCP server moves to KEA - implications?
March 11, 2024, 09:42:50 PM
Open the ur config-OPNsense*.xml, the reservation uuid is unique per reservation and should have one subnet uuid if they belong to that subnet.
</reservations>
<reservation uuid="6a688941-02f8-46aa-abc6-8121fa434809">
<subnet>7046c7cb-a9fb-4a50-8a49-3b6e77d42809</subnet>
<ip_address>192.168.1.100</ip_address>
<hw_address>90:a1:b1:c1:d1:e11</hw_address>
<hostname/>
<description/>
</reservations>
</reservations>
<reservation uuid="6a688941-02f8-46aa-abc6-8121fa434809">
<subnet>7046c7cb-a9fb-4a50-8a49-3b6e77d42809</subnet>
<ip_address>192.168.1.100</ip_address>
<hw_address>90:a1:b1:c1:d1:e11</hw_address>
<hostname/>
<description/>
</reservations>
#13
24.1, 24.4 Legacy Series / Re: [Solved] DNS over TLS is not working
March 11, 2024, 01:30:40 PM
I have a new issue. This morning the client could not do nslookup 8.8.8.8, the Firefox browser on max protection (nextDNs) said pick a new selection. I restarted the wireguard service and no dns. I had to reboot opnsense and everything worked. Any suggestions? The w11 nic connectivity always said it had internet access.
#14
24.1, 24.4 Legacy Series / Re: [Solved] DNS over TLS is not working
March 10, 2024, 05:27:16 PM
@CJ
I fixed my Firefox browser and selected maximum protection and selected NextDNS in the security and privacy settings. Thank u.
I fixed my Firefox browser and selected maximum protection and selected NextDNS in the security and privacy settings. Thank u.
#15
24.1, 24.4 Legacy Series / Re: 24.1.2 Wireguard does not work after updating
March 10, 2024, 02:25:03 PM
@Valentinas
What rule did u add to the wireguard ip pool? Can post a pic or provide details?
What rule did u add to the wireguard ip pool? Can post a pic or provide details?
