Messages

how did you remove Sensei/ZenArmor?  IIRC the pkg remove *SHOULD* delete the tmpfs.

Done & thanks!

i tried all the options and NONE of them removed the package.

That did *NOT* fix it.

Other ideas?

$ sudo pkg remove os-sensei-db
No packages matched for pattern 'os-sensei-db'

Checking integrity... done (0 conflicting)
1 packages requested for removal: 0 locked, 1 missing
$

and the plugins page is attached, and does NOT give a way to remove it.

Your zone is DNSSEC signed, but you are missing one key piece, the DS record to validate that
the key with tag 2371, algorithm 13 is a valid key.

If you need help, ping me.

https://dnsviz.net/d/nab.sunnyvalley.cloud/dnssec/

that was the piece I was missing.  Happily up, modulo the whine about os-sensei-db missing on the plugins page.

Can I get some help to figure out what's going on?

(I reinstalled OPNSense, and moved where it is located physically)

what all do you need?

I *CAN* grant access if needed/wanted.

apparently what I needed was to turn off the REPLY-TO on the WAN -- works a treat now.

Thanks, ALL!

unfortunately, the colo doesn't provide OOB serial, but thanks for the suggestion.

I will try this later this week when I head over to the Colo when I can keep access local.  I've set that option.

@franco any comments here?

Um, these are *NOT* private IP's.  (192.147.25.0/24, 216.82.192.224/28)

and I don't have one currently and if I turn PF back on, I will *LOSE* access to it, as it's in a colo
20 miles away.

there are those too.  and the established etc TCP sessions should allow it.

LITERALLY NOTHING GOES OUT FROM THE LAN TO THE WAN WITH PF ON. 

I'VE BEEN DOING THIS FOR A LONG TIME.

https://www.lerctr.org/~ler/wan_rules.png
https://www.lerctr.org/~ler/LAN_rules.png

anything that goes OUT to the WAN gets denied by default deny rule.

ANYTHING

and there are out rules for all interfaces with ANY ANY and all protocols, etc.