Messages

1

20.1 Legacy Series / OPNsense doesn't boot with a lot of FW rules & os-wireguard plugin

« on: March 03, 2020, 01:26:51 pm »

Hi OPNsense team,

I haven’t filed a bug yet since I’m not sure if this is a known behavior or something else.

I installed os-wireguard plugin on my testing OPNsense 20.1 and after reboot OPNsense console terminal stopped and froze in the last phase before showing login dialog.

I was thinking that's strange so I installed os-wireguard on different box and everything was OK. No issues during reboot. I spent some time by testing and I found that when I have a box with a lot of FW rules (approx 600 rules), installation of os-wireguard (just installation and reboot, without activation of the VPN) brakes it. I left one box with a lot of rules booting and it actually finished booting but the last step (before showing Login dialog) took more than an hour...

Could anyone please test it?

Thank you.

Kind regard,
Luk

2

17.7 Legacy Series / What to do after cloning (SD card -> dd -> SD card) / (VM disk copy)

« on: December 08, 2017, 05:50:52 pm »

Hi all,

I'd like to simplify and speed up installation of several virtual and physical OPNsense boxes. I'd like to install OPNsense once and then copy VM disk or copy (dd) SD card into another SD card.

1. What should I do after cloning? From my Linux experience I know that I have to re-generate SSH host keys:

Code: [Select]

# rm /etc/ssh/ssh_host_*Something else?

2. Is it possible to change XML on the clone before first boot?
I know I can boot it and import but it'd be easier to do it before (offline) by modifying filesystem.

Thank you for any tips.

3

17.1 Legacy Series / Re: A lot of VLANs = slow GUI

« on: June 19, 2017, 09:52:04 am »

I didn't find this post for some reason, thank you for the link!

I'll test the patch.

Looking forward for to the 17.7 release ;-).

4

17.1 Legacy Series / [SOLVED] A lot of VLANs = slow GUI

« on: June 18, 2017, 10:26:20 am »

First I’d like to thank you for OPNsense and this great forum and support. My post might sound negative but I don’t mean it. I’m very grateful for OPNsense.

I need to define a lot of VLANs and interfaces on top of them (each with own subnet). I was tired of “clicking” to add more VLANs so I carefully edited and imported XML and I defined approx. 150 VLANs. After that GUI became very slow when I try to apply changes. For example when I change FW rule and apply changes then it takes approx. 1 - 1.5 minute to finish.

I wasn’t sure what is causing the slow GUI so just for test I added another approx 400 VLANs (total 512, just VLANs, I didn’t assign interfaces) and I checked that when I click on Apply I need to wait 4 - 4.5 minutes before internet browser finishes loading.

And reboot is very slow too but that doesn’t bother me.

I’m sure that OPNsense has enough resources. I use approx. 10% RAM and I have 4 XEON cores.

I understand that I probably overloaded the system and that there is no solution to speed it up. But if there is a solution that I’d like to ask you to share it with me.

Thank you,
Lukas

5

17.1 Legacy Series / Get current status/health of HA configuration

« on: April 04, 2017, 08:37:53 pm »

Hi all,
Could you please help me with HA configuration?

I followed instructions in the OPNsense documentation and I also read pfSense book about HA. Yesterday I finished configuration and everything seems to work – NAT, DHCP, it’s all good.

When I navigate on Master node to: System-High Availability-Status then I can see the current status of services and Backup node version.
But If I check the System-High Availability-Status section on a Backup node then I can see just:

The backup firewall is not accessible or not configured.

I don’t understand whether this is correct behavior (and you can see the status only on Master) or whether I made a mistake in configuration.
Could you please tell me is it possible to see the status from Backup node? Is it possible somehow to get it programmatically (at least from Master)? Maybe from a shell in a console?

Thank you.
Lukas