Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - rost

#16
Sep  2 16:31:21 host kernel: ovpnc1: link state changed to DOWN
Sep  2 16:31:21 host devd: Executing '/usr/local/opnsense/service/configd_ctl.py interface linkup stop ovpnc1'
Sep  2 16:31:21 host configd.py: [1271be97-b1cf-40c3-945b-1945c5ed560a] Linkup stopping ovpnc1
Sep  2 16:31:21 host configd.py: [45e2bf8f-17c5-4a9e-a115-3157dfe8ebac] Reloading filter
Sep  2 16:31:22 host opnsense: /usr/local/etc/rc.linkup: Hotplug event detected for MSKVPN(opt1) but ignoring since interface is configured with static IP ( )
Sep  2 16:31:22 host configd.py: [2d801076-ca34-4802-88c3-b5420316182a] Reloading filter
Sep  2 16:31:46 host kernel: ovpnc1: link state changed to UP
Sep  2 16:31:46 host devd: Executing '/usr/local/opnsense/service/configd_ctl.py interface linkup start ovpnc1'
Sep  2 16:31:46 host configd.py: [60b2100d-1aa2-4bdb-b4f3-02168b1c18ed] Linkup starting ovpnc1
Sep  2 16:31:46 host configd.py: [5a6730c7-88ac-4f84-9ca4-8bea6d89ad2b] rc.newwanip starting ovpnc1
Sep  2 16:31:46 host opnsense: /usr/local/etc/rc.linkup: Hotplug event detected for MSKVPN(opt1) but ignoring since interface is configured with static IP ( )
Sep  2 16:31:46 host opnsense: /usr/local/etc/rc.newwanip: rc.newwanip: Informational is starting ovpnc1.
Sep  2 16:31:46 host opnsense: /usr/local/etc/rc.newwanip: rc.newwanip: on (IP address: 192.168.100.4) (interface: MSKVPN[opt1]) (real interface: ovpnc1).
Sep  2 16:31:46 host opnsense: /usr/local/etc/rc.newwanip: Creating rrd update script
Sep  2 16:31:48 host configd.py: [f2414d2f-a7be-4fa3-a57f-cc6670ea58e7] Reloading filter

then ping ok
ok
ok
ok
then stop but no new log in system.log
#17
restart tunnel
5 sec ping ok then stop
16:18:51.545298 IP 192.168.11.203 > 192.168.1.201: ICMP echo reply, id 4624, seq 10, length 64
16:18:52.475740 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 11, length 64
16:18:52.544891 IP 192.168.11.203 > 192.168.1.201: ICMP echo reply, id 4624, seq 11, length 64
16:18:53.477135 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 12, length 64
16:18:53.534857 IP 192.168.11.203 > 192.168.1.201: ICMP echo reply, id 4624, seq 12, length 64
16:18:54.477935 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 13, length 64
16:18:54.548026 IP 192.168.11.203 > 192.168.1.201: ICMP echo reply, id 4624, seq 13, length 64
16:18:55.479261 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 14, length 64
16:18:55.556716 IP 192.168.11.203 > 192.168.1.201: ICMP echo reply, id 4624, seq 14, length 64
16:18:56.480209 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 15, length 64
16:18:56.548472 IP 192.168.11.203 > 192.168.1.201: ICMP echo reply, id 4624, seq 15, length 64
16:18:57.482132 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 16, length 64
16:18:57.549698 IP 192.168.11.203 > 192.168.1.201: ICMP echo reply, id 4624, seq 16, length 64
16:18:58.483375 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 17, length 64
16:18:58.549833 IP 192.168.11.203 > 192.168.1.201: ICMP echo reply, id 4624, seq 17, length 64
16:18:59.485467 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 18, length 64
16:18:59.540277 IP 192.168.11.203 > 192.168.1.201: ICMP echo reply, id 4624, seq 18, length 64
16:19:00.486975 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 19, length 64
16:19:01.494607 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 20, length 64
16:19:02.502478 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 21, length 64
16:19:03.510620 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 22, length 64
16:19:04.518497 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 23, length 64
16:19:05.526296 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 24, length 64
16:19:06.534480 IP 192.168.1.201 > 192.168.11.203: ICMP echo request, id 4624, seq 25, length 64

#18
Firewall: Rules  tab OpenVPN
IPv4 *   *   *   *   *   *   none        (any any any)
#19
Help please understand what the problem is?
Configure OpenVPN: Client
When Tunnel Status Up, ping works the first few seconds and traceroute work the first few seconds then stop work. But Tunnel Status stay Up.
1    <1 мс    <1 мс    <1 мс  gw [192.168.1.1]
  2    46 ms     *       46 ms  192.168.100.1
  3    48 ms    47 ms    47 ms  192.168.11.203


192.168.1.0/24 link#1 U 409007999 1500 em0
192.168.1.1 link#1 UHS 0 16384 lo0
192.168.11.0/24 192.168.100.1 UGS 34 1500 ovpnc1
192.168.100.0/24 link#7 U 0 1500 ovpnc1
192.168.100.4 link#7 UHS 0 16384 lo0
#20
Found new interface opt in interfaces_assign   :o
Do i need enable this interface when assign to ovpnc1 ?
#21
OpenVPN, Client UDP, Status Up, Virtual Addr 192.168.100.4
192.168.100.0/24 link#7 U 4206 1500 ovpnc1
192.168.100.4    link#7 UHS 0 16384 lo0

How to add static route   :o
cisco cli# ip route 192.168.11.0 255.255.255.0 192.168.100.1
#22
Уже и не помню. После обновлений много поменялось.
Пока не до этого, но остальное что настраивал работает.

p.s. Интересно кто-то уже пилит перевод интерфейса? Я бы присоединился к это теме.
#23
And I had an error in the I always copy/past all url in Folder ID   ;D
Probably spent half an hour searching for the causes,  :o I read several times the wiki. On the third readingI have understood that you need a id, not the entire path to the folder.
#24
Little bug
I do update
Versions OPNsense 15.7.7_1-i386
FreeBSD 10.1-RELEASE-p16
OpenSSL 1.0.2d 9 Jul 2015

Then check next update and have message
"No active remote repositories configured."
go to the System: Settings: General, reselect "Firmware Mirror" and all worked.
#25
General Discussion / Re: Test Proxy Server
July 01, 2015, 02:20:51 PM
I certainly do not hurry.
I just wrote the information, maybe it would be helpful.
#26
General Discussion / Test Proxy Server
July 01, 2015, 01:48:25 PM
Can not start service squid

System Information:
FreeBSD 10.1-RELEASE-p12 #0 84c8e2b(master): Mon Jun 15 12:47:34 CEST 2015     root@sensey32:/usr/obj/usr/src/sys/SMP
OPNsense 15.1.12-eac7cdde6 (i386)
OpenSSL 1.0.2c 12 Jun 2015

PHP Errors:
[01-Jul-2015 14:43:01 Europe/Moscow] PHP Fatal error:  Uncaught exception 'Exception' with message 'Timeout (120) executing :proxy start' in /usr/local/opnsense/mvc/app/library/OPNsense/Core/Backend.php:90
Stack trace:
#0 /usr/local/etc/inc/util.inc(148): OPNsense\Core\Backend->configdRun('proxy start', false)
#1 /usr/local/etc/inc/service-utils.inc(401): configd_run('proxy start')
#2 /usr/local/www/status_services.php(43): service_control_start('squid', Array)
#3 {main}
  thrown in /usr/local/opnsense/mvc/app/library/OPNsense/Core/Backend.php on line 90
#27
There were error(s) loading the rules: pfctl: the sum of the child bandwidth higher than parent root_le2 - The line in question reads
  • :
    I don't know what it is but in any case, I will write here.
#28
How to limit download speed for one user (ip).
How to find manual or "howto" or any examples, don't understand how to use "Traffic Shaper"
How to find (create) Traffic Class, how to find (create) Traffic Policy, don't understand how attaching a Traffic Policy to an Interface
How to totall disable dragndrop on webgui (he's just disgusting)
There is a command line in opnsense like in vyos?

try create Limiter
Fatal error: Call to a member function children() on null in /usr/local/opnsense/mvc/app/library/OPNsense/Core/Config.php on line 100
#29
Полез проверять как работает Traffic Shaper  :o там какая-то беда прям.
Без инструкции нифига не понятно, зачем там все эти параметры и как их использовать!
Я всего-то хотел ограничить один адрес в скорости.