Messages

Since the upgade to 19.7 I get the following error above the firewall rule table (which is broken sometimes btw):

Warning: Invalid argument supplied for foreach() in /usr/local/opnsense/mvc/app/library/OPNsense/Firewall/Plugin.php on line 134

How to fix? ;-)

Same issue here

Thanks for the response

Didn't change anything.

Another thing to make it even more strange. I tried google.nl like 5 times in Safari and no go. While curl works just fine.

The tried Firefox again and it work for about three times. And then it stopped working. Same error.

As said, DNS works fine all the time. Could it have to do with some TCP buffers or something similar?

No I have the same issue

Strangely enough a curl from my MacBook commandline works just fine. But via three different browsers I have this issue.

And literally happened directly after the upgrade. Before that all was fine.

And when I connect my laptop directly to my cable modem it also works perfectly fine. I can not think of any other reason then the 19.1 upgrade

I made some traffic captures and at first glance I see a tcp window update and after that many TCP retransmissions.

Where as the successful session via curl just shows the 'normal behaviour'

Same issue here

Also I see blocked localhost traffic in the firewall log, that i never saw before the upgrade. And some blocked VLAN traffic

I can share logs if needed

Hi all,

I have a question. I would like to know if my setup is correct.

Reason for asking is because I recently changed a few things, but now I have intermittent connectivity issues when connected via wifi. And I didn't have these issues before the changes. And now I can't find the cause.

I bought a appliance with opnsense pre-installed. It has 6 Gb ports.

What I want is a LAN (containing both wired as well as wireless connected devices), a VLAN for IoT devices and a VLAN for Wifi guests.

My setup is as follows:

Cablemodem (bridge modus)
            |
OPNSENSE appliance
            |
Several devices

Port2 on my opnsense box acts as the WAN port and receives a public IP (DHCP) from my provider.

On ports 3-6 I have several devices connected, like a NAS, DTV device etc. On port 1 I have a Unifi wifi AP connected.

Now I have created a bridge interface, containing interfaces 1,3,4,5 and 6 for the LAN. That bridge has a fixed private IP and I have DCHP server setup on this interface.

Because I want to have 3 separate wifi networks, I have created 2 VLAN's with parent interface port 1 (to which the unifi is connected). Both VLAN's have a fixed private IP and DHCP servers are setup.

On the unifi I have 3 wifi networks; wifi, wifi-iot tagged with VLAN1 and wifi-guest is tagged with VLAN2.

I think this should work, but as said I'm experiencing intermittent connectivity issues on wifi.

If there is someone that could just think with me here and maybe has some remarks then that would be highly appreciated !

Thanks in advance

Sven

I'm currently logging a lot which makes it a bit hard to find those lines back. I rebooted my opnsense box last night since it was unstable (all since upgrade to 18.1), and it seems OK now.

I will keep an eye on it and report back if I see this happening again

It seems similar indeed.

I see it all the time now. For all sorts of rules the Live View messes it up and showing strange results.

Hi all,

Just upgraded (Currently running OPNsense 18.1.1-amd64) and I see something weird in the new log Live View.

Attached 3 files, fw_rules.png, fw_log.png and fw_log2.png

In fw_log.png you will see:
Blocked on interface VLAN99, source 192.168.x.20 to destination 192.168.1y.y port 8880 rule description 'Allow guestnet to guestportal'

In fw_rules you see the second rule says:
Allow from source VLAN99 net to destination 192.168.1y.y port 8880 rule description 'Allow guestnet to guestportal'

So in logging it seems traffic is blocked by a rule that actually allows the traffic.

Am I missing something here ?

And to make it more strange, when I change the logging page to show 5000 lines and look for the lines in fw_log.png, I see again something strange, see fw_log2.png

Any idea?

Hi,

I have the exact same 'issue'.

And do you also see a drop in speed? I have a 400 Mb/s subscription, but with Suricata enabled (in IPS mode with 9 rulesets) I get around 120 Mb/s. And when I disable the Intrusion Detection service it immediately goes back to around 400 Mb/s