1
18.7 Legacy Series / Re: opnsense freezes
« on: January 13, 2019, 07:57:21 pm »
I am now looking at Fedora since other vm's running on the system are starting to show the same behavior. I'll move the Opnsense to my SmartOS box..
Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
2
18.7 Legacy Series / Re: opnsense freezes
« on: January 11, 2019, 01:47:36 pm »
Not sure what you mean by "Haven't Tried"? I would think if I had a processor issue things would be more consistent IE Opnsense wouldn't work at all. This processor is at the high end of the atom family.
I am running virtio drivers and haven't gone back to Suricata. May look at it once the drivers are settled. I'll take a closer look at console messages and maybe setup a log server just to see if there is anything interesting. One thing I find interesting, the freeze always happens early in the morning.
I am running virtio drivers and haven't gone back to Suricata. May look at it once the drivers are settled. I'll take a closer look at console messages and maybe setup a log server just to see if there is anything interesting. One thing I find interesting, the freeze always happens early in the morning.
3
18.7 Legacy Series / Re: opnsense freezes
« on: January 11, 2019, 05:18:06 am »
Like I wrote before I have run Opnsense under KVM for 2 years and just recently I have been getting the hangs. If this is a CPU issue it has to be something new. I have run all 17 and 18 versions and its just recently have I been having issues. I am running an Intel C2758 Atom. It should be fine. I haven't been watching that closely but when I started on the vitrualized path IDS/IPS had to run on a physical nic. Things must have changed since.
4
18.7 Legacy Series / Re: opnsense freezes
« on: January 08, 2019, 03:05:32 pm »
I can't run suricata since I am running in a VM. I have plenty of memory, both disk and core.
5
18.7 Legacy Series / Re: opnsense freezes
« on: January 07, 2019, 01:33:10 am »
Nothing at that link applies
6
18.7 Legacy Series / opnsense freezes
« on: January 06, 2019, 01:46:33 pm »
For the last few years I have run Opnsense under KVM. For the past few months randomly Opnsense stops working. It loses the wan interface, and I can't log in fully. I can bring up an SSH session type in the user name and password but then it hangs. I have waited for up to 15 minutes but I never get to the console GUI. Trying the web admin is similar. The system is not completely unresponsive since I can reboot cleanly via virsh reboot.
Any idea how I might be able to shoot this issue? I am running 18.7.9.
Any idea how I might be able to shoot this issue? I am running 18.7.9.
7
18.1 Legacy Series / My upgrade experience from 17 to 18.1
« on: February 05, 2018, 04:13:26 pm »
I run Opnsense as a Fedora 26 sever KVM Guest. So far no issues. I decided to take the plunge and upgrade to 18.1 today. The upgrade was ultimately successful but I had to manually power cycle the VM 3 times before all completed. The auto reboot mechanisms didn't seem to work.
I'm just posting this as an FYI. If there are logs you want me to collect I am happy to do so. I have a backup setup running as a SmartOS KVM guest which I need to upgrade. Not sure if I will run into the same issue but if you want me to monitor something just in case I get the same hang let me know. I'll do the upgrade sometime later this week.
I'm just posting this as an FYI. If there are logs you want me to collect I am happy to do so. I have a backup setup running as a SmartOS KVM guest which I need to upgrade. Not sure if I will run into the same issue but if you want me to monitor something just in case I get the same hang let me know. I'll do the upgrade sometime later this week.
8
17.7 Legacy Series / Re: State Table Size
« on: October 28, 2017, 05:25:35 pm »
I am looking for usage % like in the gui or a usage value.
9
17.7 Legacy Series / State Table Size
« on: October 28, 2017, 03:57:19 pm »
Is there a way to show this from the command line?
10
17.1 Legacy Series / Re: Can't upgrade from 17.1.3 to 17.1.4
« on: April 10, 2017, 05:56:49 pm »
franco,
Thanks for the tip, worked fine. I don't have any custom packages. Only thing I changed after going to 17.1.3 was to add a USB Ethernet adapter to create a Guest network..
Thanks for the tip, worked fine. I don't have any custom packages. Only thing I changed after going to 17.1.3 was to add a USB Ethernet adapter to create a Guest network..
11
17.1 Legacy Series / Can't upgrade from 17.1.3 to 17.1.4 [SOLVED]
« on: April 10, 2017, 04:29:46 pm »
I am trying to upgrade from 17.1.3 to 17.1.4 but it gets stuck. I tried from the GUI and the console without success. From the GUI I see this
There are 38 updates available, total download size is none. This update requires a reboot.
Then I hit the Upgrade Now Button
and the log shows
is it safe to run pkg set -v 0 opnsense??
There are 38 updates available, total download size is none. This update requires a reboot.
Then I hit the Upgrade Now Button
and the log shows
Code: [Select]
***GOT REQUEST TO UPGRADE: all***
Updating OPNsense repository catalogue...
OPNsense repository is up-to-date.
All repositories are up-to-date.
Updating OPNsense repository catalogue...
OPNsense repository is up-to-date.
All repositories are up-to-date.
Checking for upgrades (46 candidates): .......... done
Processing candidates (46 candidates): ........ done
Checking integrity... done (1 conflicting)
- py27-setuptools-32.1.0_1 conflicts with py27-setuptools27-32.1.0 on /usr/local/bin/easy_install
Cannot solve problem using SAT solver, trying another plan
Checking integrity... done (0 conflicting)
The following 38 package(s) will be affected (of 0 checked):
Installed packages to be REMOVED:
py27-sqlite3-2.7.13_7
opnsense-17.1.3
py27-setuptools27-32.1.0
New packages to be INSTALLED:
py27-setuptools: 32.1.0_1
Installed packages to be UPGRADED:
squid: 3.5.24 -> 3.5.24_2
png: 1.6.28 -> 1.6.29
pkgconf: 1.3.0_3 -> 1.3.0,1
php70-zlib: 7.0.16 -> 7.0.17
php70-xml: 7.0.16 -> 7.0.17
php70-sqlite3: 7.0.16 -> 7.0.17
php70-sockets: 7.0.16 -> 7.0.17
php70-simplexml: 7.0.16 -> 7.0.17
php70-session: 7.0.16 -> 7.0.17
php70-pdo: 7.0.16 -> 7.0.17
php70-openssl: 7.0.16 -> 7.0.17
php70-mcrypt: 7.0.16 -> 7.0.17
php70-ldap: 7.0.16 -> 7.0.17
php70-json: 7.0.16 -> 7.0.17
php70-hash: 7.0.16 -> 7.0.17
php70-gettext: 7.0.16 -> 7.0.17
php70-filter: 7.0.16 -> 7.0.17
php70-dom: 7.0.16 -> 7.0.17
php70-curl: 7.0.16 -> 7.0.17
php70-ctype: 7.0.16 -> 7.0.17
php70: 7.0.16 -> 7.0.17
opnsense-update: 17.1.3 -> 17.1.4
opnsense-lang: 17.1.3 -> 17.1.4
ntp: 4.2.8p9_4 -> 4.2.8p10_2
lzo2: 2.09 -> 2.10_1
Installed packages to be REINSTALLED:
py27-ujson-1.35 (direct dependency changed: py27-setuptools)
py27-requests-2.11.1 (direct dependency changed: py27-setuptools)
py27-pytz-2016.10,1 (direct dependency changed: py27-setuptools)
py27-netaddr-0.7.18 (direct dependency changed: py27-setuptools)
py27-MarkupSafe-1.0 (direct dependency changed: py27-setuptools)
py27-Jinja2-2.8 (direct dependency changed: py27-Babel)
py27-Babel-2.3.4 (direct dependency changed: py27-setuptools)
openvpn23-2.3.14_1 (options changed)
dnsmasq-2.76,1 (options changed)
Number of packages to be removed: 3
Number of packages to be installed: 1
Number of packages to be upgraded: 25
Number of packages to be reinstalled: 9
The operation will free 20 MiB.
pkg-static: Cannot delete vital package: opnsense!
pkg-static: If you are sure you want to remove opnsense,
pkg-static: unset the 'vital' flag with: pkg set -v 0 opnsense
Starting web GUI...done.
Generating RRD graphs...done.
***DONE***is it safe to run pkg set -v 0 opnsense??
12
17.1 Legacy Series / Re: [Resolved] 17.1 Netflow/Insight
« on: March 23, 2017, 02:46:29 pm »
I have the same Insight failure after upgrading to 17.1.3. Works for a bit then get the no data error. Clear cache and its good for a bit.
13
17.1 Legacy Series / Re: Issue with AX88179 USB ethernet adapter
« on: March 05, 2017, 04:01:11 pm »
I got this one from Amazon https://www.amazon.com/gp/product/B00WHL9ENY/ref=oh_aui_search_detailpage?ie=UTF8&psc=1 (WEme USB 3.0 Type C to RJ45 Gigabit Ethernet Adapter)
This isn't the adapter I'm using but it is a realtek. I have it plugged into my Thinkpad Carbon X1. The one i am using for Opensense is generic and I ordered it long ago. No markings and I can't find the receipt.
One interesting thing about the adapter I am using is it screwed up my vlans. I had to run it through a dumb switch first then to the port based vlan (untagged). If I used the adapter directly in the port it caused all sorts of issues.
My wife and I were watching a show I recorded and have on our Plex server. It kept pausing. So this morning I did some investigation and found all sorts of vlan bleeding. Not sure how this could happen but it was. I disabled the switch port and then found this subnet was still messing up DHCP on our home network. I had to disable/enable the USB adapter in Opnsense for the two subnets DHCP server to get sorted. Really strange stuff. I'm sure their is an explanation but I can't figure it out.
While I was playing I found if I put a dumb switch in between the adapter and the netgear smart switch all worked fine. I have a mix of netgear and dlink smart switches on my network. I might try the dlink at some point and see if it has the same issue as the netgear. But anyway my isolated guest network is now working great and no issues on our home vlan. Just a heads up..
This isn't the adapter I'm using but it is a realtek. I have it plugged into my Thinkpad Carbon X1. The one i am using for Opensense is generic and I ordered it long ago. No markings and I can't find the receipt.
One interesting thing about the adapter I am using is it screwed up my vlans. I had to run it through a dumb switch first then to the port based vlan (untagged). If I used the adapter directly in the port it caused all sorts of issues.
My wife and I were watching a show I recorded and have on our Plex server. It kept pausing. So this morning I did some investigation and found all sorts of vlan bleeding. Not sure how this could happen but it was. I disabled the switch port and then found this subnet was still messing up DHCP on our home network. I had to disable/enable the USB adapter in Opnsense for the two subnets DHCP server to get sorted. Really strange stuff. I'm sure their is an explanation but I can't figure it out.
While I was playing I found if I put a dumb switch in between the adapter and the netgear smart switch all worked fine. I have a mix of netgear and dlink smart switches on my network. I might try the dlink at some point and see if it has the same issue as the netgear. But anyway my isolated guest network is now working great and no issues on our home vlan. Just a heads up..
14
17.1 Legacy Series / Re: Issue with AX88179 USB ethernet adapter
« on: March 04, 2017, 10:16:20 pm »
Just so happened I ran into the same issue. I switched to a Realtek USB 3 adapter instead of the AX88179 I had and it works just fine. I have a fan-less mini pc with dual nics so I had to go the USB route when setting up my guest wireless network.
I did have an issue, when I first plugged in and configured the adapter it work for a bit then stopped. I rebooted and all my adapters were re-swizzled. What was my WAN adapter became the LAN adapter, and the USB adapter had to be reconfigured. Once I sorted that out I did a power cycle to make sure things stayed and they did. Its all good now. Good luck.
I did have an issue, when I first plugged in and configured the adapter it work for a bit then stopped. I rebooted and all my adapters were re-swizzled. What was my WAN adapter became the LAN adapter, and the USB adapter had to be reconfigured. Once I sorted that out I did a power cycle to make sure things stayed and they did. Its all good now. Good luck.
15
17.1 Legacy Series / Re: Advice for integrating WiFi AP with OPNsense router
« on: February 06, 2017, 01:20:10 am »
Just be aware that creating a wireless bridge hurts performance a lot. At least it did in 16.7.x