Messages

121

General Discussion / Muliple gateways

« on: December 19, 2022, 11:50:04 pm »

Hi,
I have 2 internet connections. One static and one dynamic. The static one is being used now and all internet traffic passes to my servers and LAN. I want to add a dynamic WAN and have all the LAN traffic and media servers use the dynamic interface and my email and web servers use the static interface. When I setup a second WAN interface, a new gateway appears and I lose all internet traffic.

What I want to do is have the faster dynamic WAN for my media servers and LAN and use the static WAN for my web and email servers. How do I separate them?

I do not want load balancing, I just want to control which devices uses which WAN. Is this even possible or do I need to run two firewalls?

122

Intrusion Detection and Prevention / Re: Suricata IPS 10Gbps

« on: December 16, 2022, 06:40:21 pm »

I have a mix of 10GBs, 25Gbs, and 40Gbs NICs. I use Intel X710-DA2 for the LAN interface in the OPNsense firewall. Servers have XVV710, X710, and Chelsio T580. All work fine with IDS.

123

Intrusion Detection and Prevention / social-networking block Tiktok

« on: December 16, 2022, 06:29:18 pm »

I noticed that OPNsense-App-detect/social-networking rules does not include TikTok. Where can I put in a request to add Tiktok to the rules?
Thanks

124

22.7 Legacy Series / Re: after 22.7.9 update the gateway suddenly dies after 1 day or so

« on: December 16, 2022, 04:26:55 pm »

Thanks. That is what I was looking for. Worked like a charm.

125

22.7 Legacy Series / Re: after 22.7.9 update the gateway suddenly dies after 1 day or so

« on: December 15, 2022, 11:18:09 pm »

I installed with ZFS. So the snapshots are automatic? If so, how do you reinstall using snapshot. In TrueNAS, I can rollback or clone. How would you do that with OPNsense?

I wouldn't mind attempting an update again to 22.7.9_3 if I knew I could easily rollback. And just using the config backup doesn't always work. Updating to 22.7.9_3 gave me file issues. Changing the config.xml doesn't change back the OPNsense version. I had to do a fresh install of 22.7, then update to 22.7.8 then apply the config restore. Twice.

I had two main issues with 22.7.9_3. Suricata had issues, and the GUI was very sluggish. Even reverting to Suricata 6.0.8_1 had issues. Took 5+ minutes to load the firmware status and other pages were very slow to load. 22.7.8 is quick and works. I wish the logs were helpful, but nothing to see there in trying to resolve the issues. Must have something to do with the configurations. On two other system with same hardware, the upgrade to 22.7.9_3 went fine. But those don't use IDS and have mostly a default configuration with one LAN and one WAN and only a few NAT rules added. The system that has the issue has 2 WAN's, Mutiple Gateways, 4 LAN's, and complex rules.

126

22.7 Legacy Series / Re: after 22.7.9 update the gateway suddenly dies after 1 day or so

« on: December 14, 2022, 10:26:06 am »

Ok, thanks. Thought I was missing something.

127

22.7 Legacy Series / Re: after 22.7.9 update the gateway suddenly dies after 1 day or so

« on: December 14, 2022, 10:02:08 am »

So how do you take snapshots. Is that a plug-in? I have been looking for a way to do bare metal backups of OPNsense.

128

22.1 Legacy Series / Re: After update, problems with LAN/WAN Interfaces

« on: December 12, 2022, 07:26:19 pm »

The latest update caused all kinds of issues here. Suricata was one of them so I reverted back to 6.0.8 and that seemed to work until everyone started using the servers this morning. Gateway was messed up. and external ports were no longer getting through. Reverted back to OPNsense 22.7.8 and restored the configuration and now everything back to normal. 22.7.9 is a disaster.

129

22.7 Legacy Series / Re: after 22.7.9 update the gateway suddenly dies after 1 day or so

« on: December 11, 2022, 10:03:35 pm »

I had to goto my backup hardware, install and update OPNsense, restore configuration, then did the opnsense-revert suricata, which worked. Everything seems ok now using Suricata 6.0.8_1. This site is the only one I have using IDS. All the others updated without incident. I will not do another update on this system until I know the Suricata issues are resolved. Probably a good idea to look at the forum after a new release comes out. My bad.

130

22.7 Legacy Series / Re: after 22.7.9 update the gateway suddenly dies after 1 day or so

« on: December 10, 2022, 11:12:27 pm »

opnsense-revert -r 22.7.8 suricata runs for a couple minutes, then fails with timed out

Then tried changing repository and all I get are dots. after 10 minutes on third row of dots.

131

22.7 Legacy Series / Re: after 22.7.9 update the gateway suddenly dies after 1 day or so

« on: December 10, 2022, 10:57:40 pm »

Very strange, I disabled Suricata, rebooted and after 5 minutes Unbound came back.
Do I need to revert back to Suricata 6.0.8. I tried opnsense-revert suricata. Just hangs.

132

22.7 Legacy Series / Re: after 22.7.9 update the gateway suddenly dies after 1 day or so

« on: December 10, 2022, 10:36:10 pm »

Most pages are now inaccessible. Can't get any firmware pages to show up. Think I will try to go back to 27.7.8
This update is a disaster.

133

22.7 Legacy Series / Re: after 22.7.9 update the gateway suddenly dies after 1 day or so

« on: December 10, 2022, 10:19:07 pm »

I updated to 22.7.9_3 from 22.7.8. Unbound will not start now. Tried rebooting multiple times. Everything looks like it is running, but I know I will hit a wall because Unbound no long runs.

134

22.7 Legacy Series / Re: rebooted by root

« on: December 10, 2022, 10:00:57 pm »

Audit logs shows nothing at that time. General logs are cleared after reboot.
No one but me has access and no one rebooted manually. I am updating to latest version today.

135

22.7 Legacy Series / rebooted by root

« on: December 09, 2022, 06:07:13 pm »

Noticed in the logs this critical error 'rebooted by root'
Happening at least once a day. What does this mean, and how do I research it further?
I included other events near the same time from the log.